CVSROOT: /cvs
Module name: src
Changes by: m...@cvs.openbsd.org 2022/04/30 07:28:53
Modified files:
sys/netinet : ip_ipsp.c ip_ipsp.h
Log message:
When performing ipsp_ids_free(), grab `ipsec_flows_mtx' mutex(9) before do
`id_refcount' decrement. This should be consistent with `ipsp_ids_gc_list'
list modifications, otherwise concurrent ipsp_ids_insert() could remove
this dying `ids' from the list before if was placed there by
ipsp_ids_free(). This makes atomic operations with `id_refcount' useless.
Also prevent ipsp_ids_lookup() to return dying `ids'.
ok bluhm@
