On Tue, 2 Aug 2005, Herbert Xu wrote:
On Mon, Aug 01, 2005 at 10:41:33AM +0200, Krzysztof Oledzki wrote:
RFC 2408 says: "A protocol implementation SHOULD begin using the newly
created SA for outbound traffic and SHOULD continue to support incoming
traffic on the old SA until it is deleted or until traffic is received
under the protection of the newly created SA." - Section 4.3.
The problem is the word SHOULD and IMHO both Linux and peer are buggy.
The protocol implementation is made up of a kernel component as well as
a user-space component. IMHO this should be done where it's easiest.
IMHO userland is not to supposed solve kernel issues.
Best regards,
Krzysztof Olędzki
