[PATCH 3/3] XFRM: Drop packets when replay counter would overflow

According to RFC4303, section 3.3.3 we need to drop outgoing packets which cause the replay counter to overflow: 3.3.3. Sequence Number Generation The sender's counter is initialized to 0 when an SA is established. The sender increments the sequence number (or ESN) counter for this

Re: [PATCH 3/3] XFRM: Drop packets when replay counter would overflow

On Thu, 20 Dec 2007, Paul Moore wrote: According to RFC4303, section 3.3.3 we need to drop outgoing packets which cause the replay counter to overflow: 3.3.3. Sequence Number Generation The sender's counter is initialized to 0 when an SA is established. The sender increments