ipsec: change wildcard value for any protocol of spd policy

Currently 0 has been used as the wildcard representing ANY type of protocol. However 0 is valid value of ip protocol (HOPOPT) and therefore it should not be used as a wildcard. Instead 255 is used which is guaranteed by IANA to be reserved and not used as a protocol id. Type: improvement Signed-off-by: Piotr Bronowski <piotrx.bronowski@intel.com> Change-Id: I2320bae6fe380cb999dc5a9187beb68fda2d31eb
2022-06-09 09:09:28 +00:00
parent 5b4b4c05ff
commit 815c6a4fbc
13 changed files with 323 additions and 81 deletions
--- a/test/vpp_papi_provider.py
+++ b/test/vpp_papi_provider.py
@ -980,7 +980,7 @@ class VppPapiProvider(object):
        local_port_stop=65535,
        remote_port_start=0,
        remote_port_stop=65535,
-        protocol=0,
+        protocol=socket.IPPROTO_RAW,
        policy=0,
        priority=100,
        is_outbound=1,
@ -1010,7 +1010,7 @@ class VppPapiProvider(object):
        :param is_add: (Default value = 1)
        """
        return self.api(
-            self.papi.ipsec_spd_entry_add_del,
+            self.papi.ipsec_spd_entry_add_del_v2,
            {
                "is_add": is_add,
                "entry": {