[Ipsec-tools-devel] [PATCH] Bug fixes and cleanups
Brought to you by:
mit_warlord,
netbsd
Menu
▾
▴
[Ipsec-tools-devel] [PATCH] Bug fixes and cleanups
|
From: Timo T. <tim...@ik...> - 2008-04-04 07:36:23
|
Hi,
Bunch of bug fixes and cleanups.
ports-cleanup.diff:
- many places use switch (address_family) for setting/getting port
this replaces them to use set_port/extract_port. improves readability,
maintenance and reduces code size
- changes the byte order getbyaddrsport() returns for readability and
consistency. also this function had bug: sin{,6}_port (network byte
order) was compared to PORT_ISAKMP (host byte order)
- similar bug in ipsec_doi.c:ipsecdoi_checkid1() sin_port was not
converted to host byte order, but used as if it was in host byte order
ipsec-sa-compare-fix.diff:
- the patch i posted yesterday fixed to use extract_port()
close-on-exec.diff:
- set socket fd:s to be closed on exec. otherwise the phase1 up/down
script will inherit those fd:s and can cause havoc:
- send/receive stuff from system sockets (e.g. route socket)
- if the scripts blocks, it'll keep open the event pipes
open to racoonctl and in some cases can cause dead locks
event-fix.diff:
- my event patches used wrong event number definition for phase2 up
notification. this oneliner fixes it.
Cheers,
Timo
|