net/mlx5e: kTLS, Do not send decrypted-marked SKBs via non-accel path - pm24.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Tariq Toukan <tariqt@mellanox.com>	2020-01-20 13:42:00 +0200
committer	Saeed Mahameed <saeedm@mellanox.com>	2020-01-24 12:04:40 -0800
commit	342508c1c7540e281fd36151c175ba5ff954a99f (patch)
tree	6b4cb55cb0af4235c069588e10a324870bd41889 /net/x25
parent	1e92899791358dba94a9db7cc3b6004636b5a2f6 (diff)

net/mlx5e: kTLS, Do not send decrypted-marked SKBs via non-accel path

When TCP out-of-order is identified (unexpected tcp seq mismatch), driver analyzes the packet and decides what handling should it get: 1. go to accelerated path (to be encrypted in HW), 2. go to regular xmit path (send w/o encryption), 3. drop. Packets marked with skb->decrypted by the TLS stack in the TX flow skips SW encryption, and rely on the HW offload. Verify that such packets are never sent un-encrypted on the wire. Add a WARN to catch such bugs, and prefer dropping the packet in these cases. Fixes: 46a3ea98074e ("net/mlx5e: kTLS, Enhance TX resync flow") Signed-off-by: Tariq Toukan <tariqt@mellanox.com> Signed-off-by: Boris Pismenny <borisp@mellanox.com> Reviewed-by: Boris Pismenny <borisp@mellanox.com> Signed-off-by: Saeed Mahameed <saeedm@mellanox.com>

Diffstat (limited to 'net/x25')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: