On Thu, Jan 17, 2008 at 03:31:14PM +0200, Timo Teräs wrote: > > I guess the idea was that application should know about the SAs it > created. Though a SA dump needs to be done if you want to check > for existing entries (created by other processes, or if you are > recovering from a crash).
That's what SADB_GET is for. In any case KMs cannot coexist so this is pointless. After a crash you should simply flush all states and policies. > SPD dumping is still a must if you want to work nicely with kernel. No it isn't. Look at how Openswan does it. No dumping anywhere at all. Cheers, -- Visit Openswan at http://www.openswan.org/ Email: Herbert Xu ~{PmV>HI~} <[EMAIL PROTECTED]> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html
