Subject: use of m_pkthdr.rcvif by ipsec outbound processing.
To: None <email@example.com>
From: Bill Sommerfeld <firstname.lastname@example.org>
Date: 10/12/1999 17:03:40
The KAME ipsec code appears to overload the m->m_pkthdr.rcvif packet
header field for output; in particular, a "struct socket *" is stuffed
into that pointer instead of a "struct ifnet *".
This is somewhat unclean, and also makes it somewhat more difficult to
implement hot-swappable network interfaces (one piece of the ifdetach
work involves reference counting interfaces so you know when it's safe
to delete one).
The chance confusing an "inbound" packet (with a struct ifnet *) and
an "outbound" one (with a "struct socket") seems rather high.
How about adding a "snd_so" field to m_pkthdr?