On Tue, Apr 01, 2008 at 12:23:10PM -0500, Joy Latten wrote: > The kernel crashes when ipsec passes a udp packet of about 14XX bytes > of data to aes-xcbc-mac. > > It seems the first xxxx bytes of the data are in first sg entry, > and remaining xx bytes are in next sg entry. But we don't > check next sg entry to see if we need to go look the page up. > > I noticed in hmac.c, we do a scatterwalk_sg_next(), to do this check > and possible lookup, thus xcbc.c needs to use this routine too. > > A 15-hour run of an ipsec stress test sending streams of tcp and > udp packets of various sizes, using this patch and > aes-xcbc-mac completed successfully, so hopefully this fixes the > problem. > > regards, > Joy > > Signed-off-by: Joy Latten <latten@xxxxxxxxxxxxxx> Applied to crypto-2.6. Thanks Joy! -- Visit Openswan at http://www.openswan.org/ Email: Herbert Xu ~{PmV>HI~} <herbert@xxxxxxxxxxxxxxxxxxx> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt -- To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
