I think that it is the responsibility of the IP module to make sure these validations are done and packet/packet meta data has the correct information. IPSec API can assume that.
However, odp_packet_len() according to the API definition returns the length of the packet over all the segments. So, if you have a small packet padded to make it 64B, this check will fail. On 11 May 2017 at 15:41, Dmitry Eremin-Solenikov <[email protected]> wrote: > Hello, > > Another generic question regarding ODP. If the package gets passed to > IPsec API, should I trust e.g. IP header values? IOW, can I assume, that > ip->tot_len + l3_offset is equal to odp_packet_len(), or is that an error? > > -- > With best wishes > Dmitry
