> The same behaviour as in NONE,
Yes, this is equivalent. And the function behaves exactly as you
expect then. :-)
> The ESP belongs to the headers, it is a member of a possible chain.
Like UDP, TCP (and NONE as you noticed). Not like headers mentioned
> - header match - i had to search for the ESP, too
> - ESP match - it has a public SPI value, which can be used in rules
> - general iteration, skipped together with the NONE.
> It terminates the header chain, but the existance of the ESP header and
> its SPI value are usefull information.
Hey, we spoke about _skip_. For all items mentioned by you ESP
is considered like UDP&TCP, not like extension header!
> about the nexthdr value and a new header parser/evaluator with strict
> size/pointer checks.
I feel you make something wrong yet. Or I do not understand something.