lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date:   Wed, 22 May 2019 16:39:32 -0400
From:   Jason Baron <jbaron@...mai.com>
To:     davem@...emloft.net, edumazet@...gle.com
Cc:     ycheng@...gle.com, ilubashe@...mai.com, netdev@...r.kernel.org
Subject: [PATCH net-next 0/6] add TFO backup key

Hi,

Christoph, Igor, and I have worked on an API that facilitates TFO key 
rotation. This is a follow up to the series that Christoph previously
posted, with an API that meets both of our use-cases. Here's a
link to the previous work:
https://patchwork.ozlabs.org/cover/1013753/

Thanks,

-Jason

Christoph Paasch (1):
  tcp: introduce __tcp_fastopen_cookie_gen_cipher()

Jason Baron (5):
  tcp: add backup TFO key infrastructure
  tcp: add support to TCP_FASTOPEN_KEY for optional backup key
  tcp: add support for optional TFO backup key to /proc/sys/net/ipv4/tcp_fastopen_key
  Documentation: ip-sysctl.txt: Document tcp_fastopen_key
  selftests/net: add TFO key rotation selftest

 Documentation/networking/ip-sysctl.txt             |  20 ++
 include/net/tcp.h                                  |  41 ++-
 include/uapi/linux/snmp.h                          |   1 +
 net/ipv4/proc.c                                    |   1 +
 net/ipv4/sysctl_net_ipv4.c                         |  93 ++++--
 net/ipv4/tcp.c                                     |  29 +-
 net/ipv4/tcp_fastopen.c                            | 233 +++++++++-----
 tools/testing/selftests/net/.gitignore             |   1 +
 tools/testing/selftests/net/Makefile               |   3 +-
 .../selftests/net/tcp_fastopen_backup_key.c        | 336 +++++++++++++++++++++
 .../selftests/net/tcp_fastopen_backup_key.sh       |  55 ++++
 11 files changed, 694 insertions(+), 119 deletions(-)
 create mode 100644 tools/testing/selftests/net/tcp_fastopen_backup_key.c
 create mode 100644 tools/testing/selftests/net/tcp_fastopen_backup_key.sh

-- 
2.7.4

Powered by blists - more mailing lists