| Message ID | 20240903000710.3272505-1-eyal.birger@gmail.com (mailing list archive) |
|---|---|
| Headers | show |
| Series | xfrm: respect ip proto rules criteria in xfrm dst lookups | expand |
On Mon, Sep 02, 2024 at 05:07:08PM -0700, Eyal Birger wrote: > This series fixes the route lookup for the outer packet after > encapsulation, including the L4 criteria specified in IP rules > > The first patch is a minor refactor to allow passing more parameters > to dst lookup functions. > The second patch actually passes L4 information to these lookup functions. > > Signed-off-by: Eyal Birger <eyal.birger@gmail.com> > > --- > > v3: pass ipproto for non UDP/TCP encapsulated traffic (e.g. ESP) > v2: fix first patch based on reviews from Steffen Klassert and > Simon Horman > > Eyal Birger (2): > xfrm: extract dst lookup parameters into a struct > xfrm: respect ip protocols rules criteria when performing dst lookups This is now applied to the ipsec tree, thanks a lot Eyal!
This series fixes the route lookup for the outer packet after encapsulation, including the L4 criteria specified in IP rules The first patch is a minor refactor to allow passing more parameters to dst lookup functions. The second patch actually passes L4 information to these lookup functions. Signed-off-by: Eyal Birger <eyal.birger@gmail.com> --- v3: pass ipproto for non UDP/TCP encapsulated traffic (e.g. ESP) v2: fix first patch based on reviews from Steffen Klassert and Simon Horman Eyal Birger (2): xfrm: extract dst lookup parameters into a struct xfrm: respect ip protocols rules criteria when performing dst lookups include/net/xfrm.h | 28 ++++++++++++----------- net/ipv4/xfrm4_policy.c | 40 +++++++++++++++------------------ net/ipv6/xfrm6_policy.c | 31 ++++++++++++------------- net/xfrm/xfrm_device.c | 11 ++++++--- net/xfrm/xfrm_policy.c | 50 +++++++++++++++++++++++++++++++---------- 5 files changed, 95 insertions(+), 65 deletions(-)