jimzah/freebsd-src
1
0
Fork 0
mirror of https://github.com/freebsd/freebsd-src.git synced 2024-12-03 06:12:46 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

backout my previous commit (KAME PR 296). foo != TUNNEL will

Browse Source 
forbid "ANY" SA from being used for tnunel mode.

Reported by:	Chris Cason <casonc@netplex.aussie.org>
This commit is contained in:
Hajimu UMEMOTO 2000-11-09 17:55:17 +00:00
parent 256de9e9ec
commit d80315aa1a
Notes: svn2git 2020-12-20 02:59:44 +00:00 
svn path=/head/; revision=68532
1 changed files with 0 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
sys/netinet6/ipsec.c
View File

@ -3148,8 +3148,6 @@ ipsec4_tunnel_validate(ip, nxt0, sav)
if (nxt != IPPROTO_IPV4)
return 0;
if (sav->sah->saidx.mode != IPSEC_MODE_TUNNEL)
return 0;
#ifdef _IP_VHL
hlen = _IP_VHL_HL(ip->ip_vhl) << 2;
#else
@ -3188,8 +3186,6 @@ ipsec6_tunnel_validate(ip6, nxt0, sav)
if (nxt != IPPROTO_IPV6)
return 0;
if (sav->sah->saidx.mode != IPSEC_MODE_TUNNEL)
return 0;
switch (((struct sockaddr *)&sav->sah->saidx.dst)->sa_family) {
case AF_INET6:
sin6 = ((struct sockaddr_in6 *)&sav->sah->saidx.dst);