Kernel 2.6.x in next RHL version. (Was: Re: First message >:) ).

Michael K. Johnson johnsonm at
Mon Jul 21 18:20:50 UTC 2003

On Mon, Jul 21, 2003 at 07:21:54PM +0200, Paul Wouters wrote:
> Does this 2.4 kernel have the latest patches by Herbert Xu to the 
> backported 2.5 IPsec stack? His patches add Opportunistic Encryption
> support to af_key. It would be a good thing if 9.1's kernel would
> support this. His code appeared in Dave Miller's 2.4 backport:

As I've since mentioned in another post, Severn won't have ipsec
patches added to the kernel.

> Another question I have is regarding DHCP. Michael Richardsen wrote
> a patch for ISC's dhcpd that adds Opportunistic Encryption support
> in dhcpd and dhclient. However, ISC dhcp isn't really well maintained
> by Ted anymore, and the patches have been lying in the queue without
> getting applied. Who should I talk to about getting this patch into
> the RedHat package for ISC dhcp? This patch adds sending and receiving
> oe-gateway and oe-key, which is used by the WaveSEC project to 
> automaticly build IPsec tunnels and tunnel the default route through this
> as a way of real 802.11x security, insted of the various incarnations of 
> WEP or EAP.

One of our objectives (see
for our current statement of our objectives -- we will probably refine
it as we better express the shared expectations we have) is to generally
push toward putting in changes upstream, rather than making Red Hat
Linux a place to carry forks:

 o  Do as much of the development work as possible directly in the
    upstream packages. This includes errata; our default policy will be
    to upgrade to new versions for security as well as for bugfix and
    new feature update releases of packages.

We're making this a stronger goal than in the past.  It will take a while
to get from where we are now to something a bit more consistent with that
goal, but we'd like there to be an upstream project to pull from for
ongoing changes.  Does that make sense?


 "He that composes himself is wiser than he that composes a book."
 Linux Application Development                     -- Ben Franklin

More information about the test mailing list