From: Nicolas Dichtel <nicolas.dichtel@xxxxxxxxx> Date: Thu, 6 Sep 2012 13:40:29 -0400 > dst stored in struct sctp_transport needs to be recalculated when ipsec policy > are updated. We use flow_cache_genid for that. > > For example, if a SCTP connection is established and then an IPsec policy is > set, the old SCTP flow will not be updated and thus will not use the new > IPsec policy. > > Signed-off-by: Nicolas Dichtel <nicolas.dichtel@xxxxxxxxx> I don't like that SCTP need to perform special DST validation. The normal DST validation mechanism already in place should be sufficient. Otherwise this problem must exist in other protocols too, and fixing a tree wide issue privately inside of one protocol is not acceptable. -- To unsubscribe from this list: send the line "unsubscribe linux-sctp" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
