Hi Dave: This series of patches completely replaces the ones I posted yesterday so you can delete the previous batch.
I'm still in the process of fixing up inter-family transforms so this is mostly the patches I posted yesterday with the offensive bits removed :) I hadn't realised how broken inter-family transforms are on output until I started trying to fix them. As it is, it'll happily send IPv4 packets into the IPv6 ICMP stack or worse, IPv6 netfilter and vice versa. The last patch in the series lays the foundation of my fix to this. My plan is to divide the work that's currently done by x->mode->output into two parts so that the first part can be done by the inner address family, i.e., x->inner_mode while the rest of it will be done by x->outer_mode->output. A similar scheme would operate on the inbound direction. Cheers, -- Visit Openswan at http://www.openswan.org/ Email: Herbert Xu ~{PmV>HI~} <[EMAIL PROTECTED]> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt - To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html
