]> www.infradead.org Git - users/dwmw2/openconnect.git/commit
projects / users / dwmw2 / openconnect.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 6f394b5) | patch
Only add packet to oNCP control queue with nc and pulse protocols
authorCorey Wright <cwright@digitalocean.com>
Sun, 11 Aug 2019 10:00:04 +0000 (05:00 -0500)
committerDavid Woodhouse <dwmw2@infradead.org>
Mon, 12 Aug 2019 08:35:34 +0000 (10:35 +0200)
commit096902824a3e502e8f91dc439d05b96e98c50a71
tree2ec39480264c99cd5d9d347f86e1acc6f6c60e11tree
parent6f394b54b80f2bebb6af92d08d1dc07a0c57cb31commit | diff
Only add packet to oNCP control queue with nc and pulse protocols

Don't add packets to the oNCP control queue if not using Juniper
Network Connect or Pulse Connect Secure protocols otherwise a number
of packets equal to the maximum queue length can be queued and disable
reading from the TUN device for the duration of the VPN connection
because the packets will never get dequeued except when using those
two protocols.

Commit b4f50f8 broke OpenConnect transmitting across the GlobalProtect
protocol with ESP packets when:
1. The tun device has an IPv6 address (eg link local).
2. IPv6 packets (eg router solicitation) are transmitted in quantity
   equal to maximum queue length.

[dwmw2: Check the udp_send_probes function insted of two string compares]
Signed-off-by: Corey Wright <cwright@digitalocean.com>
Signed-off-by: David Woodhouse <dwmw2@infradead.org>
esp.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.