diff options
author | John Fastabend <john.fastabend@gmail.com> | 2020-01-11 06:12:05 +0000 |
---|---|---|
committer | Daniel Borkmann <daniel@iogearbox.net> | 2020-01-15 23:26:13 +0100 |
commit | 9aaaa56845a06aeabdd597cbe19492dc01f281ec (patch) | |
tree | b2a5824d2c4f49e095b913aff1b19de29a79d72f /net/tls | |
parent | d468e4775c1c351616947ba0cccc43273963b9b5 (diff) | |
download | linux-9aaaa56845a06aeabdd597cbe19492dc01f281ec.tar.gz linux-9aaaa56845a06aeabdd597cbe19492dc01f281ec.tar.bz2 linux-9aaaa56845a06aeabdd597cbe19492dc01f281ec.zip |
bpf: Sockmap/tls, skmsg can have wrapped skmsg that needs extra chaining
Its possible through a set of push, pop, apply helper calls to construct
a skmsg, which is just a ring of scatterlist elements, with the start
value larger than the end value. For example,
end start
|_0_|_1_| ... |_n_|_n+1_|
Where end points at 1 and start points and n so that valid elements is
the set {n, n+1, 0, 1}.
Currently, because we don't build the correct chain only {n, n+1} will
be sent. This adds a check and sg_chain call to correctly submit the
above to the crypto and tls send path.
Fixes: d3b18ad31f93d ("tls: add bpf support to sk_msg handling")
Signed-off-by: John Fastabend <john.fastabend@gmail.com>
Signed-off-by: Daniel Borkmann <daniel@iogearbox.net>
Acked-by: Jonathan Lemon <jonathan.lemon@gmail.com>
Cc: stable@vger.kernel.org
Link: https://lore.kernel.org/bpf/20200111061206.8028-8-john.fastabend@gmail.com
Diffstat (limited to 'net/tls')
-rw-r--r-- | net/tls/tls_sw.c | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/net/tls/tls_sw.c b/net/tls/tls_sw.c index 31f6bbbc8992..21c7725d17ca 100644 --- a/net/tls/tls_sw.c +++ b/net/tls/tls_sw.c @@ -729,6 +729,12 @@ static int tls_push_record(struct sock *sk, int flags, sg_mark_end(sk_msg_elem(msg_pl, i)); } + if (msg_pl->sg.end < msg_pl->sg.start) { + sg_chain(&msg_pl->sg.data[msg_pl->sg.start], + MAX_SKB_FRAGS - msg_pl->sg.start + 1, + msg_pl->sg.data); + } + i = msg_pl->sg.start; sg_chain(rec->sg_aead_in, 2, &msg_pl->sg.data[i]); |