Code Review / vpp.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: c1b94c8) | patch
ipsec: fix instance, and cli del for new ipsec interface 71/29471/4
authorEric Kinzie <ekinzie@labn.net>
Wed, 14 Oct 2020 00:02:11 +0000 (20:02 -0400)
committerNeale Ranns <nranns@cisco.com>
Fri, 16 Oct 2020 12:32:31 +0000 (12:32 +0000)
commit609d579ed27d78e3fd5f430fb9893edda19ba6e4
treedbc5750d730ae5088ef96348fd8c34292906673ctree | snapshot
parentc1b94c835396d4b81b9dea99a5306ed7836bde39commit | diff
ipsec: fix instance, and cli del for new ipsec interface

- use user instance number in interface name

Restore the behavior of previous versions where the IPsec tunnel
interface name contained the value of the user-provided instance number.
For example, a command similar to

create ipsec tunnel local-ip . . . instance 5

would result in the creation of interface "ipsec5".

- ipsec: delete tunnel protection when asked

The "ipsec tunnel protect" command will parse a "del" argument but does
not undo the tunnel protection, leaving the SAs hanging around with
reference counts that were incremented by a previous invocation of the
command. Allow the tunnel protection to be deleted and also update the
help text to indicate that deletion is an option.

- test: ipsec: add test for ipsec interface instance

Also cleanup (unconfig) after TestIpsecItf4 NULL algo test.

Type: fix
Fixes: dd4ccf2623b5 ("ipsec: Dedicated IPSec interface type")
Signed-off-by: Eric Kinzie <ekinzie@labn.net>
Signed-off-by: Christian Hopps <chopps@labn.net>
Change-Id: Idb59ceafa0633040344473c9942b6536e3d941ce
src/vnet/ipsec/ipsec_cli.c diff | blob | history
src/vnet/ipsec/ipsec_itf.c diff | blob | history
test/test_ipsec_tun_if_esp.py diff | blob | history
test/vpp_ipsec.py diff | blob | history
Vector Packet Processing