diff options
| author | Jakub Kicinski | 2019-07-09 04:53:10 +0200 |
|---|---|---|
| committer | David S. Miller | 2019-07-09 05:21:09 +0200 |
| commit | 53601c68b8541672e026c0596a9dd8a86d96d7ab (patch) | |
| tree | 5c8680e233565dd6665f418042d5898968a864af /drivers/net/ethernet/netronome/nfp/crypto/fw.h | |
| parent | nfp: tls: move setting ipver_vlan to a helper (diff) | |
| download | kernel-qcow2-linux-53601c68b8541672e026c0596a9dd8a86d96d7ab.tar.gz kernel-qcow2-linux-53601c68b8541672e026c0596a9dd8a86d96d7ab.tar.xz kernel-qcow2-linux-53601c68b8541672e026c0596a9dd8a86d96d7ab.zip | |
nfp: tls: use unique connection ids instead of 4-tuple for TX
Connection 4 tuple reuse is slightly problematic - TLS socket
and context do not get destroyed until all the associated skbs
left the system and all references are released. This leads
to stale connection entry in the device preventing addition
of new one if the 4 tuple is reused quickly enough.
Instead of using read 4 tuple as the key use a unique ID.
Set the protocol to TCP and port to 0 to ensure no collisions
with real connections.
Signed-off-by: Jakub Kicinski <jakub.kicinski@netronome.com>
Reviewed-by: Dirk van der Merwe <dirk.vandermerwe@netronome.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Diffstat (limited to 'drivers/net/ethernet/netronome/nfp/crypto/fw.h')
| -rw-r--r-- | drivers/net/ethernet/netronome/nfp/crypto/fw.h | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/drivers/net/ethernet/netronome/nfp/crypto/fw.h b/drivers/net/ethernet/netronome/nfp/crypto/fw.h index 192ba907d91b..67413d946c4a 100644 --- a/drivers/net/ethernet/netronome/nfp/crypto/fw.h +++ b/drivers/net/ethernet/netronome/nfp/crypto/fw.h @@ -31,6 +31,8 @@ struct nfp_crypto_req_add_front { u8 key_len; __be16 ipver_vlan __packed; u8 l4_proto; +#define NFP_NET_TLS_NON_ADDR_KEY_LEN 8 + u8 l3_addrs[0]; }; struct nfp_crypto_req_add_back { |