| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 5 Sep 2018 09:40:45 +0200 From: Steffen Klassert <steffen.klassert@...unet.com> To: Sowmini Varadhan <sowmini.varadhan@...cle.com> CC: <netdev@...r.kernel.org>, <davem@...emloft.net> Subject: Re: [PATCH V2 ipsec-next 0/2] xfrm: bug fixes when processing multiple transforms On Mon, Sep 03, 2018 at 04:36:51AM -0700, Sowmini Varadhan wrote: > This series contains bug fixes that were encountered when I set > up a libreswan tunnel using the config below, which will set up > an IPsec policy involving 2 tmpls. > > type=transport > compress=yes > esp=aes_gcm_c-128-null # offloaded to Niantic > auto=start > > The non-offload test case uses esp=aes_gcm_c-256-null. > > Each patch has a technical description of the contents of the fix. > > V2: added Fixes tag so that it can be backported to the stable trees. > > Sowmini Varadhan (2): > xfrm: reset transport header back to network header after all input > transforms ahave been applied > xfrm: reset crypto_done when iterating over multiple input xfrms All applied to the ipsec tree, thanks a lot Sowmini!
Powered by blists - more mailing lists