On Wed, Mar 31, 2021 at 03:26:02PM -0700, Stephen Hemminger wrote: > It would be better if kernel provided the error messages through external ack > of the netlink message,
Agreed. > rather than providing potentially out of date > recommendations on the man page. I still think conditions for ip-token to be accepted and take effect should be documented on the man page. Errors in kernel extack only give hints to users in case they forget to configure some flags. For new users, a complete condition reference should be documented for them to evaluate the use case of ip-token. Also the autoconf flag would not prompt errors when the user forgets to turn it on, this is unexpected when the user does intend to use ip-token. Even /proc/sys interface may be out of date, these conditions may remain unchanged or only be altered slightly, hence documenting them does not hurt.
