On Tue, Jul 30, 2019 at 02:57:19PM +0200, Florian Westphal wrote: > This makes the previously added 'encap test' pass. > Because its possible that the xfrm dst entry becomes stale while such > a flow is offloaded, we need to call dst_check() -- the notifier that > handles this for non-tunneled traffic isn't sufficient, because SA or > or policies might have changed. > > If dst becomes stale the flow offload entry will be tagged for teardown > and packets will be passed to 'classic' forwarding path. > > Removing the entry right away is problematic, as this would > introduce a race condition with the gc worker. > > In case flow is long-lived, it could eventually be offloaded again > once the gc worker removes the entry from the flow table. Also applied, thanks.
