mbox series

[ipsec,v2,0/2] xfrm: fix uapi for the default policy

Message ID 20210908072341.5647-1-nicolas.dichtel@6wind.com (mailing list archive)
Headers show
Series xfrm: fix uapi for the default policy | expand

Message

Nicolas Dichtel Sept. 8, 2021, 7:23 a.m. UTC 
This feature has just been merged after the last release, thus it's still
time to fix the uapi.
As stated in the thread, the uapi is based on some magic values (from the
userland POV).
Here is a proposal to simplify this uapi and make it clear how to use it.
The other problem was the notification: changing the default policy may
radically change the packets flows.

v1 -> v2: fix warnings reported by the kernel test robot

Nicolas Dichtel (2):
  xfrm: make user policy API complete
  xfrm: notify default policy on update

 include/uapi/linux/xfrm.h |  9 ++++--
 net/xfrm/xfrm_user.c      | 62 +++++++++++++++++++++++++++++++--------
 2 files changed, 56 insertions(+), 15 deletions(-)

Comments are welcome,
Nicolas