Shoichi Sakane wrote:
> > While investigating a problem, I noticed that the IPSEC code
> > is initializing the sp -- even when no one is using IPSEC.
>
> > It turns out that this really, really bloats the per socket
> > memory requirements, with the only real result being a lot
> > of extra proce
> While investigating a problem, I noticed that the IPSEC code
> is initializing the sp -- even when no one is using IPSEC.
> It turns out that this really, really bloats the per socket
> memory requirements, with the only real result being a lot
> of extra processing that could be replaced by a
While investigating a problem, I noticed that the IPSEC code
is initializing the sp -- even when no one is using IPSEC.
Is there a good reason why this is not late-bound, and the
IPSEC code is initializing and copying and checking the
security policy pointer, even in the absense of actual use
of
