CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2021/11/25 06:46:02
Modified files:
sys/net : if_bridge.c if_pfsync.c pfkeyv2.c
pfkeyv2_convert.c
sys/netinet : ip_ipsp.c ip_ipsp.h ip_spd.c ipsec_input.c
ipsec_output.c tcp_input.c tcp_output.c
udp_usrreq.c
Log message:
Implement reference counting for IPsec tdbs. Not all cases are
covered yet, more ref counts to come. The timeouts are protected,
so the racy tdb_reaper() gets retired. The tdb_policy_head, onext
and inext lists are protected. All gettdb...() functions return a
tdb that is ref counted and has to be unrefed later. A flag ensures
that tdb_delete() is called only once.
Tested by Hrvoje Popovski; OK sthen@ mvs@ tobhe@
