mbox series

[ipsec,0/2] xfrm: fix uapi for the default policy

Message ID 20210907193510.16487-1-nicolas.dichtel@6wind.com (mailing list archive)
Headers show
Series xfrm: fix uapi for the default policy | expand

Message

Nicolas Dichtel Sept. 7, 2021, 7:35 p.m. UTC 
This feature has just been merged after the last release, thus it's still
time to fix the uapi.
As stated in the thread, the uapi is based on some magic values (from the
userland POV).
Here is a proposal to simplify this uapi and make it clear how to use it.
The other problem was the notification: changing the default policy may
radically change the packets flows.

Nicolas Dichtel (2):
  xfrm: make user policy API complete
  xfrm: notify default policy on update

 include/uapi/linux/xfrm.h |  9 ++++--
 net/xfrm/xfrm_user.c      | 58 +++++++++++++++++++++++++++++++++------
 2 files changed, 55 insertions(+), 12 deletions(-)

Comments are welcome,
Nicolas