mirrors/linux-stable
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2024-09-19 09:04:57 +00:00
Code Issues Releases Wiki Activity
linux-stable/net/tls
History
Vakul Garg c0ab4732d4 net/tls: Do not use async crypto for non-data records 
Addition of tls1.3 support broke tls1.2 handshake when async crypto
accelerator is used. This is because the record type for non-data
records is not propagated to user application. Also when async
decryption happens, the decryption does not stop when two different
types of records get dequeued and submitted for decryption. To address
it, we decrypt tls1.2 non-data records in synchronous way. We check
whether the record we just processed has same type as the previous one
before checking for async condition and jumping to dequeue next record.

Fixes: 130b392c6c ("net: tls: Add tls 1.3 support")
Signed-off-by: Vakul Garg <vakul.garg@nxp.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2019-02-12 12:35:14 -05:00
..
Kconfig tls: convert to generic sk_msg interface 2018-10-15 12:23:19 -07:00
Makefile net/tls: Add generic NIC offload infrastructure 2018-05-01 09:42:47 -04:00
tls_device.c net: tls: Add tls 1.3 support 2019-02-01 15:00:55 -08:00
tls_device_fallback.c net: tls: Add tls 1.3 support 2019-02-01 15:00:55 -08:00
tls_main.c net: tls: Add tls 1.3 support 2019-02-01 15:00:55 -08:00
tls_sw.c net/tls: Do not use async crypto for non-data records 2019-02-12 12:35:14 -05:00