245369 – =sys-kernel/gentoo-sources-2.6.27* breaks loading ipsec policy

Bug 245369 - =sys-kernel/gentoo-sources-2.6.27* breaks loading ipsec policy

Summary: =sys-kernel/gentoo-sources-2.6.27* breaks loading ipsec policy

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	[OLD] Core system (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Gentoo Kernel Bug Wranglers and Kernel Maintainers

URL:	http://git.kernel.org/?p=linux/kernel...
Whiteboard:
Keywords:	InVCS

Depends on:
Blocks:

Reported:	2008-11-03 09:04 UTC by Petr Pisar
Modified:	2008-12-17 14:01 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Fix from David Miller's net-2.6 tree (fix_setkey_policy_set_breakage.patch,1.45 KB, patch) 2008-11-03 09:13 UTC, Petr Pisar	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Petr Pisar 2008-11-03 09:04:40 UTC

Linux 2.6.27 contains one-line bug which disallows IPsec policy loading.

Attempt to load a policy via setkey tools produces error:
setkey: invalid keymsg length

Also racoon daemon is affected. It loops indefinitely and consumes CPU cycles uselessly.

Reproducible: Always

Steps to Reproduce:




Fix has been accepted by David Miller. See the URL link.

Comment 1 Petr Pisar 2008-11-03 09:13:57 UTC

Created attachment 170600 [details, diff]
Fix from David Miller's net-2.6 tree

Copy of http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git;a=commit;h=920da6923cf03c8a78fbaffa408f8ab37f6abfc1

Comment 2 Mike Pagano gentoo-dev

2008-11-17 17:26:21 UTC

Patch included in gentoo-sources-2.6.27-r3 which is now in portage.