netdev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ESP] Only one algorithm is required

from [Herbert Xu] [Permanent Link][Original]
To: James Morris <jmorris@xxxxxxxxxx>
Subject: Re: [ESP] Only one algorithm is required
From: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx>
Date: Sun, 15 Aug 2004 05:24:12 +1000
Cc: "David S. Miller" <davem@xxxxxxxxxx>, netdev@xxxxxxxxxxx
In-reply-to: <Xine.LNX.4.44.0408141012510.26617-100000@dhcp83-76.boston.redhat.com>
References: <20040814105245.GA20646@gondor.apana.org.au> <Xine.LNX.4.44.0408141012510.26617-100000@dhcp83-76.boston.redhat.com>
Sender: netdev-bounce@xxxxxxxxxxx
User-agent: Mutt/1.5.6+20040523i 
On Sat, Aug 14, 2004 at 10:16:17AM -0400, James Morris wrote:
> On Sat, 14 Aug 2004, Herbert Xu wrote:
> 
> > Both encryption and authentication are optional for ESP.  However, at
> > least one of them must be present.  The following patch changes init_state
> > to match that specification.
> 
> This is userland level policy and I don't think the kernel should be
> enforcing this.

We should remove the ealg check altogether then?
-- 
Visit Openswan at http://www.openswan.org/
Email: Herbert Xu ~{PmV>HI~} <herbert@xxxxxxxxxxxxxxxxxxx>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Deleting incoming network packets / sk_buff, Michael Renzmann
Next by Date:  Re: strange network performance degradation 2.6.8-rc3-mm1 -> 2.6.8-rc4-mm1, Francois Romieu
Previous by Thread:  Re: [ESP] Only one algorithm is required, James Morris
Next by Thread:  Re: [ESP] Only one algorithm is required, Herbert Xu
Indexes:  [Date] [Thread] [Top] [All Lists]