Browse files

l2tp: ensure sk->dst is still valid

When using l2tp over ipsec, the tunnel will hang when rekeying
occurs. Reason is that the transformer bundle attached to the dst entry
is now in STATE_DEAD and thus xfrm_output_one() drops all packets
(XfrmOutStateExpired increases).

Fix this by calling __sk_dst_check (which drops the stale dst
if xfrm dst->check callback finds that the bundle is no longer valid).

Cc: James Chapman <>
Signed-off-by: Florian Westphal <>
Acked-by: Eric Dumazet <>
Signed-off-by: David S. Miller <>
  • Loading branch information...
1 parent 8a6e77d commit 71b1391a41289735676be02e35239e5aa9fe6ba6 Florian Westphal committed with davem330 Nov 25, 2011
Showing with 1 addition and 1 deletion.
  1. +1 −1 net/l2tp/l2tp_core.c
@@ -1072,7 +1072,7 @@ int l2tp_xmit_skb(struct l2tp_session *session, struct sk_buff *skb, int hdr_len
/* Get routing info from the tunnel socket */
- skb_dst_set(skb, dst_clone(__sk_dst_get(sk)));
+ skb_dst_set(skb, dst_clone(__sk_dst_check(sk, 0)));
inet = inet_sk(sk);
fl = &inet->cork.fl;

0 comments on commit 71b1391

Please sign in to comment.