| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20241125194340.GI160612@unreal> Date: Mon, 25 Nov 2024 21:43:40 +0200 From: Leon Romanovsky <leon@...nel.org> To: Ilia Lin <ilia.lin@...nel.org> Cc: steffen.klassert@...unet.com, herbert@...dor.apana.org.au, davem@...emloft.net, dsahern@...nel.org, edumazet@...gle.com, kuba@...nel.org, pabeni@...hat.com, horms@...nel.org, netdev@...r.kernel.org, linux-kernel@...r.kernel.org Subject: Re: [PATCH] xfrm: Add pre-encap fragmentation for packet offload On Mon, Nov 25, 2024 at 11:26:14AM +0200, Ilia Lin wrote: > On Sun, Nov 24, 2024 at 2:04 PM Leon Romanovsky <leon@...nel.org> wrote: > > > > On Sun, Nov 24, 2024 at 11:35:31AM +0200, Ilia Lin wrote: > > > In packet offload mode the raw packets will be sent to the NiC, > > > and will not return to the Network Stack. In event of crossing > > > the MTU size after the encapsulation, the NiC HW may not be > > > able to fragment the final packet. > > > > Yes, HW doesn't know how to handle these packets. > > > > > Adding mandatory pre-encapsulation fragmentation for both > > > IPv4 and IPv6, if tunnel mode with packet offload is configured > > > on the state. > > > > I was under impression is that xfrm_dev_offload_ok() is responsible to > > prevent fragmentation. > > https://elixir.bootlin.com/linux/v6.12/source/net/xfrm/xfrm_device.c#L410 > > With my change we can both support inner fragmentation or prevent it, > depending on the network device driver implementation. The thing is that fragmentation isn't desirable thing. Why didn't PMTU take into account headers so we can rely on existing code and do not add extra logic for packet offload? Thanks > > > > > Thanks
Powered by blists - more mailing lists