git.maquefel.me Git - linux.git/commit

author	Leon Romanovsky <leonro@nvidia.com>
	Fri, 2 Dec 2022 18:41:31 +0000 (20:41 +0200)
committer	Steffen Klassert <steffen.klassert@secunet.com>
	Mon, 5 Dec 2022 09:36:16 +0000 (10:36 +0100)
commit	5958372ddf628fe6f4c3e49425734ad32fcfb13c
tree	e7c71be090504966c5136ec9311d42775cf948b3	tree \| snapshot
parent	f8a70afafc1759b1fca4baaa891625dde49c10b7	commit \| diff

xfrm: add RX datapath protection for IPsec packet offload mode

Traffic received by device with enabled IPsec packet offload should
be forwarded to the stack only after decryption, packet headers and
trailers removed.

Such packets are expected to be seen as normal (non-XFRM) ones, while
not-supported packets should be dropped by the HW.

Reviewed-by: Raed Salem <raeds@nvidia.com>
Signed-off-by: Leon Romanovsky <leonro@nvidia.com>
Signed-off-by: Steffen Klassert <steffen.klassert@secunet.com>

include/net/xfrm.h

diff | blob | history

ep93xx device tree rework repo: git://git.maquefel.me/linux.git

RSS Atom