Why don't we copy headers into every app package that wants to use
certain interfaces?
#ifdef SARCASM
Yeah, that sounds like an excellent idea.
#endif /* SARCASM */
This doesn't even consider the case where the ipsec-tools copy of the
headers becomes out of date with the kernel copy. This isn't a
theoretical issue, this problem is real.
For example, I just changed the values of a few SADB_EALG_* values in
pfkeyv2.h. Now ipsec-tools is effectively broken. Oops, when will
the copy in ipsec-tools get updated?
What about applications, ie. normal ones, that want to pass IPSEC
policies into the kernel via the socket options we have that allows
per-socket IPSEC rules to be specified? The copy in ipsec-tools
doesn't help them at all.
All of this is madness, and every suggestion to copy the headers
all over the place is a non-solution.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/