Message ID | 1360842447-3344-1-git-send-email-steffen.klassert@secunet.com |
---|---|
State | Accepted, archived |
Delegated to: | David Miller |
Headers | show |
From: Steffen Klassert <steffen.klassert@secunet.com> Date: Thu, 14 Feb 2013 12:47:20 +0100 > 1) Remove a duplicated call to skb_orphan() in pf_key, from Cong Wang. > > 2) Prepare xfrm and pf_key for algorithms without pf_key support, > from Jussi Kivilinna. > > 3) Fix an unbalanced lock in xfrm_output_one(), from Li RongQing. > > 4) Add an IPsec state resolution packet queue to handle > packets that are send before the states are resolved. > > 5) xfrm4_policy_fini() is unused since 2.6.11, time to remove it. > From Michal Kubecek. > > 6) The xfrm gc threshold was configurable just in the initial > namespace, make it configurable in all namespaces. From > Michal Kubecek. > > 7) We currently can not insert policies with mark and mask > such that some flows would be matched from both policies. > Allow this if the priorities of these policies are different, > the one with the higher priority is used in this case. > > Please pull or let me know if there are problems. Pulled, thanks Steffen. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html