iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/net/ipv4
History
Dmitry Safonov 459837b522 net/tcp: Disable TCP-MD5 static key on tcp_md5sig_info destruction 
To do that, separate two scenarios:
- where it's the first MD5 key on the system, which means that enabling
  of the static key may need to sleep;
- copying of an existing key from a listening socket to the request
  socket upon receiving a signed TCP segment, where static key was
  already enabled (when the key was added to the listening socket).

Now the life-time of the static branch for TCP-MD5 is until:
- last tcp_md5sig_info is destroyed
- last socket in time-wait state with MD5 key is closed.

Which means that after all sockets with TCP-MD5 keys are gone, the
system gets back the performance of disabled md5-key static branch.

While at here, provide static_key_fast_inc() helper that does ref
counter increment in atomic fashion (without grabbing cpus_read_lock()
on CONFIG_JUMP_LABEL=y). This is needed to add a new user for
a static_key when the caller controls the lifetime of another user.

Signed-off-by: Dmitry Safonov <dima@arista.com>
Acked-by: Jakub Kicinski <kuba@kernel.org>
Reviewed-by: Eric Dumazet <edumazet@google.com>
Signed-off-by: Jakub Kicinski <kuba@kernel.org>
2022-12-01 15:53:05 -08:00
..
bpfilter
net: Revert "net: optimize the sockptr_t for unified kernel/user address spaces"
2020-08-10 12:06:44 -07:00
netfilter
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2022-11-29 13:04:52 -08:00
af_inet.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2022-11-29 13:04:52 -08:00
ah4.c
xfrm: ah: add extack to ah_init_state, ah6_init_state
2022-09-29 07:17:59 +02:00
arp.c
ipv4: move from strlcpy with unused retval to strscpy
2022-08-22 17:59:37 -07:00
bpf_tcp_ca.c
bpf: Allow trusted pointers to be passed to KF_TRUSTED_ARGS kfuncs
2022-11-20 09:16:21 -08:00
cipso_ipv4.c
cipso: Fix data-races around sysctl.
2022-07-08 12:10:33 +01:00
datagram.c
Networking fixes for 6.1-rc2, including fixes from netfilter
2022-10-20 17:24:59 -07:00
devinet.c
net: Fix data-races around sysctl_devconf_inherit_init_net.
2022-08-24 13:46:58 +01:00
esp4_offload.c
xfrm: replay: Fix ESN wrap around for GSO
2022-10-19 09:00:53 +02:00
esp4.c
Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/klassert/ipsec-next
2022-10-03 07:52:13 +01:00
fib_frontend.c
Revert "ip: fix triggering of 'icmp redirect'"
2022-10-27 10:17:32 -07:00
fib_lookup.h
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2022-02-17 11:44:20 -08:00
fib_notifier.c
net: ipv4: remove superfluous header files from fib_notifier.c
2021-09-28 17:32:56 -07:00
fib_rules.c
ipv4: remove unnecessary type castings
2022-04-30 15:12:58 +01:00
fib_semantics.c
ipv4: Fix route deletion when nexthop info is not specified
2022-11-28 16:56:04 -08:00
fib_trie.c
ipv4: Fix error return code in fib_table_insert()
2022-11-22 20:18:20 -08:00
fou.c
genetlink: start to validate reserved header bytes
2022-08-29 12:47:15 +01:00
gre_demux.c
net: Remove the member netns_ok
2021-05-17 15:29:35 -07:00
gre_offload.c
net: gro: skb_gro_header helper function
2022-08-25 10:33:21 +02:00
icmp.c
ip: Fix data-races around sysctl_ip_no_pmtu_disc.
2022-07-15 11:49:55 +01:00
igmp.c
treewide: use prandom_u32_max() when possible, part 1
2022-10-11 17:42:55 -06:00
inet_connection_sock.c
net: Return errno in sk->sk_prot->get_port().
2022-11-21 13:05:39 +00:00
inet_diag.c
net: inet: Retire port only listening_hash
2022-05-12 16:52:18 -07:00
inet_fragment.c
net: dropreason: add SKB_DROP_REASON_FRAG_REASM_TIMEOUT
2022-10-31 20:14:27 -07:00
inet_hashtables.c
dccp/tcp: Fixup bhash2 bucket when connect() fails.
2022-11-22 20:15:37 -08:00
inet_timewait_sock.c
tcp: Clean up kernel listener's reqsk in inet_twsk_purge()
2022-10-13 09:33:16 -07:00
inetpeer.c
inetpeer: Fix data-races around sysctl.
2022-07-08 12:10:33 +01:00
ip_forward.c
ip: Fix data-races around sysctl_ip_fwd_update_priority.
2022-07-15 11:49:55 +01:00
ip_fragment.c
net: dropreason: add SKB_DROP_REASON_FRAG_TOO_FAR
2022-10-31 20:14:27 -07:00
ip_gre.c
ipv4: tunnels: use DEV_STATS_INC()
2022-11-16 12:48:44 +00:00
ip_input.c
xfrm: fix "disable_policy" on ipv4 early demux
2022-10-12 10:45:34 +02:00
ip_options.c
ipv4: drop fragmentation code from ip_options_build()
2022-01-29 17:53:07 +00:00
ip_output.c
treewide: use get_random_{u8,u16}() when possible, part 1
2022-10-11 17:42:58 -06:00
ip_sockglue.c
net: Change the udp encap_err_rcv to allow use of {ip,ipv6}_icmp_error()
2022-11-08 16:42:28 +00:00
ip_tunnel_core.c
net: Add helper function to parse netlink msg of ip_tunnel_parm
2022-10-03 07:59:06 +01:00
ip_tunnel.c
ipv4: tunnels: use DEV_STATS_INC()
2022-11-16 12:48:44 +00:00
ip_vti.c
ipv4: tunnels: use DEV_STATS_INC()
2022-11-16 12:48:44 +00:00
ipcomp.c
xfrm: ipcomp: add extack to ipcomp{4,6}_init_state
2022-09-29 07:18:00 +02:00
ipconfig.c
Driver core / kernfs changes for 6.0-rc1
2022-08-04 11:31:20 -07:00
ipip.c
ipv4: tunnels: use DEV_STATS_INC()
2022-11-16 12:48:44 +00:00
ipmr_base.c
ipmr: adopt rcu_read_lock() in mr_dump()
2022-06-24 11:34:38 +01:00
ipmr.c
ipv4: tunnels: use DEV_STATS_INC()
2022-11-16 12:48:44 +00:00
Kconfig
tcp: configurable source port perturb table size
2022-11-16 13:02:04 +00:00
Makefile
tcp: add PLB functionality for TCP
2022-10-28 10:47:42 +01:00
metrics.c
net: remove redundant check in ip_metrics_convert()
2022-11-04 19:28:06 -07:00
netfilter.c
netfilter: Use l3mdev flow key when re-routing mangled packets
2022-05-16 13:03:29 +02:00
netlink.c
nexthop.c
nh: fix scope used to find saddr when adding non gw nh
2022-10-27 10:17:40 -07:00
ping.c
net: Return errno in sk->sk_prot->get_port().
2022-11-21 13:05:39 +00:00
proc.c
tcp: add u32 counter in tcp_sock and an SNMP counter for PLB
2022-10-28 10:47:42 +01:00
protocol.c
net: Remove the member netns_ok
2021-05-17 15:29:35 -07:00
raw_diag.c
raw: complete rcu conversion
2022-06-21 11:38:29 +02:00
raw.c
raw: fix a typo in raw_icmp_error()
2022-06-24 22:48:33 -07:00
route.c
treewide: use get_random_bytes() when possible
2022-10-11 17:42:58 -06:00
syncookies.c
tcp: Fix data-races around sysctl knobs related to SYN option.
2022-07-20 10:14:49 +01:00
sysctl_net_ipv4.c
udp: Introduce optional per-netns hash table.
2022-11-16 09:43:35 +00:00
tcp_bbr.c
bpf: Switch to new kfunc flags infrastructure
2022-07-21 20:59:42 -07:00
tcp_bic.c
tcp: add accessors to read/set tp->snd_cwnd
2022-04-06 12:05:41 -07:00
tcp_bpf.c
bpf, sockmap: Fix the sk->sk_forward_alloc warning of sk_stream_kill_queues
2022-11-01 21:59:52 +01:00
tcp_cdg.c
Random number generator fixes for Linux 6.1-rc1.
2022-10-16 15:27:07 -07:00
tcp_cong.c
tcp: Add tracepoint for tcp_set_ca_state
2022-04-07 20:33:15 -07:00
tcp_cubic.c
bpf: Switch to new kfunc flags infrastructure
2022-07-21 20:59:42 -07:00
tcp_dctcp.c
tcp: add support for PLB in DCTCP
2022-10-28 10:47:42 +01:00
tcp_dctcp.h
tcp_diag.c
tcp: Access &tcp_hashinfo via net.
2022-09-20 10:21:49 -07:00
tcp_fastopen.c
tcp: Make SYN ACK RTO tunable by BPF programs with TFO
2022-08-17 10:19:22 +01:00
tcp_highspeed.c
tcp: add accessors to read/set tp->snd_cwnd
2022-04-06 12:05:41 -07:00
tcp_htcp.c
tcp: add accessors to read/set tp->snd_cwnd
2022-04-06 12:05:41 -07:00
tcp_hybla.c
tcp: add accessors to read/set tp->snd_cwnd
2022-04-06 12:05:41 -07:00
tcp_illinois.c
tcp: add accessors to read/set tp->snd_cwnd
2022-04-06 12:05:41 -07:00
tcp_input.c
tcp: Fix build break when CONFIG_IPV6=n
2022-11-22 20:41:31 -08:00
tcp_ipv4.c
net/tcp: Disable TCP-MD5 static key on tcp_md5sig_info destruction
2022-12-01 15:53:05 -08:00
tcp_lp.c
tcp: add accessors to read/set tp->snd_cwnd
2022-04-06 12:05:41 -07:00
tcp_metrics.c
genetlink: start to validate reserved header bytes
2022-08-29 12:47:15 +01:00
tcp_minisocks.c
net/tcp: Disable TCP-MD5 static key on tcp_md5sig_info destruction
2022-12-01 15:53:05 -08:00
tcp_nv.c
tcp: add accessors to read/set tp->snd_cwnd
2022-04-06 12:05:41 -07:00
tcp_offload.c
gro: add support of (hw)gro packets to gro stack
2022-10-03 12:38:34 +01:00
tcp_output.c
net/tcp: Disable TCP-MD5 static key on tcp_md5sig_info destruction
2022-12-01 15:53:05 -08:00
tcp_plb.c
tcp: add u32 counter in tcp_sock and an SNMP counter for PLB
2022-10-28 10:47:42 +01:00
tcp_rate.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2022-04-28 13:02:01 -07:00
tcp_recovery.c
tcp: Fix data-races around sysctl_tcp_recovery.
2022-07-20 10:14:50 +01:00
tcp_scalable.c
tcp: add accessors to read/set tp->snd_cwnd
2022-04-06 12:05:41 -07:00
tcp_timer.c
tcp: Make SYN ACK RTO tunable by BPF programs with TFO
2022-08-17 10:19:22 +01:00
tcp_ulp.c
net/ulp: remove SOCK_SUPPORT_ZC from tls sockets
2022-10-28 20:21:25 -07:00
tcp_vegas.c
tcp: add accessors to read/set tp->snd_cwnd
2022-04-06 12:05:41 -07:00
tcp_vegas.h
tcp_veno.c
tcp: add accessors to read/set tp->snd_cwnd
2022-04-06 12:05:41 -07:00
tcp_westwood.c
tcp: add accessors to read/set tp->snd_cwnd
2022-04-06 12:05:41 -07:00
tcp_yeah.c
tcp: add accessors to read/set tp->snd_cwnd
2022-04-06 12:05:41 -07:00
tcp.c
net/tcp: Disable TCP-MD5 static key on tcp_md5sig_info destruction
2022-12-01 15:53:05 -08:00
tunnel4.c
net: Remove the member netns_ok
2021-05-17 15:29:35 -07:00
udp_bpf.c
net: remove SOCK_SUPPORT_ZC from sockmap
2022-10-28 20:21:25 -07:00
udp_diag.c
udp: Access &udp_table via net.
2022-11-16 09:43:35 +00:00
udp_impl.h
net: remove noblock parameter from recvmsg() entities
2022-04-12 15:00:25 +02:00
udp_offload.c
udp: Access &udp_table via net.
2022-11-16 09:43:35 +00:00
udp_tunnel_core.c
rxrpc: Fix ICMP/ICMP6 error handling
2022-09-01 11:42:12 +01:00
udp_tunnel_nic.c
udp_tunnel: Add checks for nla_nest_start() in __udp_tunnel_nic_dump_write()
2022-11-29 08:44:24 -08:00
udp_tunnel_stub.c
udp_tunnel: add central NIC RX port offload infrastructure
2020-07-10 13:54:00 -07:00
udp.c
net: Return errno in sk->sk_prot->get_port().
2022-11-21 13:05:39 +00:00
udplite.c
tcp/udp: Call inet6_destroy_sock() in IPv6 sk->sk_destruct().
2022-10-12 17:50:37 -07:00
xfrm4_input.c
xfrm4_output.c
xfrm4_policy.c
net: rename reference+tracking helpers
2022-06-09 21:52:55 -07:00
xfrm4_protocol.c
net: xfrm: unexport __init-annotated xfrm4_protocol_init()
2022-06-08 10:10:13 -07:00
xfrm4_state.c
xfrm4_tunnel.c
xfrm: tunnel: add extack to ipip_init_state, xfrm6_tunnel_init_state
2022-09-29 07:18:00 +02:00