On Thu, 2007-29-11 at 22:21 +0100, Patrick McHardy wrote:

http://lists.openwall.net/netdev/2007/10/16/88

quoted

I wouldnt mind just ipv4 going in - but that would be lacking
consistency. Is there anything that can be done to get the extension
headers to be processed only once?
  

I would prefer to keep things consistent between IPv4 and IPv6. 

Makes sense.

Not sure if anything could be done, perhaps we could keep the necessary
parts of the IP6CB and skip parsing up to the ESP nexthdr.

I will compute in the background and talk to Yoshfuji (hopefully will
bump into him next week;->). Herbert, if you have any clever ideas
please shoot.

cheers,
jamal