Bug 222160
| Summary: | Lack of TCP/UDP checksum recalculation in IPSec implementation | ||
|---|---|---|---|
| Product: | Base System | Reporter: | Victor Volpe <victor_volpe> |
| Component: | kern | Assignee: | Andrey V. Elsukov <ae> |
| Status: | Closed Not Accepted | ||
| Severity: | Affects Many People | CC: | emaste, eugen |
| Priority: | --- | ||
| Version: | 10.3-RELEASE | ||
| Hardware: | Any | ||
| OS: | Any | ||
|
Description
Victor Volpe
2017-09-09 04:20:50 UTC
Is r316770 the fix? https://svnweb.freebsd.org/changeset/base/316770 Andrey may have something to say on this topic. (In reply to Eugene Grosbein from comment #2) > Andrey may have something to say on this topic. I don't plan to merge something into stable/10. Feel free to do it if you want. (In reply to Ed Maste from comment #1) > Is r316770 the fix? https://svnweb.freebsd.org/changeset/base/316770 No, this one is unrelated. I think this should be r309808,312345 and some later fixes. It will be not easy to merge this feature without merging the whole IPsec stack implementation from head/. And this also requires some changes to IP/IP6 stack. You can just use stable/11 instead. (In reply to Andrey V. Elsukov from comment #3) > I don't plan to merge something into stable/10. Feel free to do it if you want. "If you want fixes, move to 11-STABLE." Great! So, previous versions must be discontinued as well! Thank you... not! |
