From: Timo_Teräs <[EMAIL PROTECTED]> Date: Thu, 17 Jan 2008 09:38:15 +0200
> David Miller wrote: > > From: Timo_Teräs <[EMAIL PROTECTED]> > > Date: Thu, 17 Jan 2008 08:27:14 +0200 > > > >> I don't know about netlink. But pfkey works in *BSD too and it is RFC'd. > >> So I'd say pfkey might be a bit more portable. Though netlink is definitely > >> more robust and extensive. > > > > The RFCs say absolutely nothing about policy interfaces for AF_KEY, > > everybody rolls their own in slightly incompatible ways. > > > > It is therefore anything but standardized. > > Yes, there's non-standardized extensions. You can't implement a keying daemon without policy support, and policy support is where the "non-standardized extensions" live. Doing anything other than "life support" bug fixes for AF_KEY is inappropriate. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html
