lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <CANn89iLMeZA2BAcCu8Ew6pocifddX3ddGKEZ75Zd=W6YTTcMng@mail.gmail.com>
Date: Fri, 31 May 2024 10:39:30 +0200
From: Eric Dumazet <edumazet@...gle.com>
To: Jakub Kicinski <kuba@...nel.org>
Cc: pabeni@...hat.com, davem@...emloft.net, netdev@...r.kernel.org, 
	mptcp@...ts.linux.dev, matttbe@...nel.org, martineau@...nel.org, 
	borisp@...dia.com, willemdebruijn.kernel@...il.com
Subject: Re: [PATCH net-next 2/3] tcp: add a helper for setting EOR on tail skb

On Fri, May 31, 2024 at 1:36 AM Jakub Kicinski <kuba@...nel.org> wrote:
>
> TLS (and hopefully soon PSP will) use EOR to prevent skbs
> with different decrypted state from getting merged, without
> adding new tests to the skb handling. In both cases once
> the connection switches to an "encrypted" state, all subsequent
> skbs will be encrypted, so a single "EOR fence" is sufficient
> to prevent mixing.
>
> Add a helper for setting the EOR bit, to make this arrangement
> more explicit.
>
> Signed-off-by: Jakub Kicinski <kuba@...nel.org>

Reviewed-by: Eric Dumazet <edumazet@...gle.com>

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ