Hi,
I dont see the freebsd ip stack processing ICMP_UNREACH_NEEDFRAG where
protocol is ESP/AH. ( The ipsec4_common_ctlinput is not implemented). If
this is right, how is the PMTU discovery done for ipsec traffic or is it
that freebsd is not doing that?.
Thanks
Reji
_
Hi,
This is regarding a lock order reversal which is already reported in
http://ipv4.sources.zabbadoz.net/freebsd/lor/134.html.
Pasting the witness backtrace here:
lock order reversal
1st 0xc1787144 inp (raw6inp) @ sys/netinet6/icmp6.c:1895
2nd 0xc1788090 inp (rawinp) @ sys/netinet6/icmp6.c:1895
Hi,
The key_do_allocsa_policy searches and deletes the non preferred sas if
there are multiple sas that match the search parameters . I see that if
there are multiple sas of same parameters established between end points,
this end up in deletion of all "outbound sa" but the preferred sa. Since
the
