K 10
svn:author
V 2
bz
K 8
svn:date
V 27
2008-03-09T21:04:55.000000Z
K 7
svn:log
V 367
MFC
  1.278 sys/netinet/ip_output.c
  1.114 sys/netinet6/ip6_output.c
  1.26  sys/netipsec/ipsec.c
  1.15  sys/netipsec/ipsec.h
  1.4   sys/netipsec/ipsec6.h

  Rather than passing around a cached 'priv', pass in an ucred to
  ipsec*_set_policy and do the privilege check only if needed.

  Try to assimilate both ip*_ctloutput code blocks calling ipsec*_set_policy.

END