> I'm sure most of you are already aware, but > http://news.ycombinator.com/item?id=2014004 suggests that Jason fixed a > potentially-dangerous bug in the IPSEC code in the NETSEC timeframe > (src/sys/netinet/ip_esp.c r1.75).
A developer fixed a bug? Oh my lord. Fixing bugs is what developers do. Regarding the current fuss, what is so special about this commit? It is easy to look back with 20/20 vision and realize it was a bad bug. Yet every bad bug does not get errata, or we would get no development done, and would spend all our time writing up errata.a This project -- with it's limited manpower -- is going to remain deeply inconsistant at (a) realizing the impact of a bug fix and (b) making an errata available. Those who have been following the project for years know that this is nothing new and it will not change. People keep trying to hold us to standards they don't apply to themselves, and that is just so laughable.
