Re: [PATCH net-next 2/3] xfrm: Fix xfrm_dev_state_add to fail for unsupported HW SA option

From: Steffen Klassert
Date: Fri Dec 01 2017 - 01:21:14 EST

Next message: Steffen Klassert: "Re: [PATCH net-next 3/3] xfrm: Add ESN support for IPSec HW offload"
Previous message: Steffen Klassert: "Re: [PATCH net-next 1/3] xfrm: Fix xfrm_replay_overflow_offload_esn"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Nov 28, 2017 at 11:49:29AM +0200, yossefe@xxxxxxxxxxxx wrote:
> From: Yossef Efraim <yossefe@xxxxxxxxxxxx>
>
> xfrm_dev_state_add function returns success for unsupported HW SA options.
> Resulting the calling function to create SW SA without corrlating HW SA.
> Desipte IPSec device offloading option was chosen.
> These not supported HW SA options are hard coded within xfrm_dev_state_add
> function.
> SW backward compatibility will break if we add any of these option as old
> HW will fail with new SW.
>
> This patch changes the behaviour to return -EINVAL in case unsupported
> option is chosen.
> Notifying user application regarding failure and not breaking backward
> compatibility for newly added HW SA options.
>
> Signed-off-by: Yossef Efraim <yossefe@xxxxxxxxxxxx>

Also applied to ipsec-next, thanks a lot!

Next message: Steffen Klassert: "Re: [PATCH net-next 3/3] xfrm: Add ESN support for IPSec HW offload"
Previous message: Steffen Klassert: "Re: [PATCH net-next 1/3] xfrm: Fix xfrm_replay_overflow_offload_esn"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]