CVSROOT: /cvs
Module name: src
Changes by: bl...@cvs.openbsd.org 2018/05/14 09:24:23
Modified files:
sys/netinet : ipsec_input.c udp_usrreq.c
Log message:
When checking the IPsec enable sysctls, ipsec_common_input() had
switches for protocol and address family. Move this code to the
specific functions from where the common function is called.
As a consequence the raw ip input functions can never be called
from udp_input() anymore. If IPsec is disabled, the functions
ah6_input(), esp6_input(), and ipcomp6_input() do not start processing
the header chain. The raw ip input functions are called with the
mbuf and offset pointers from the protocol walking loop which is
the usual behavior.
OK mpi@ markus@
