iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/net
History
Jakub Kicinski a535d59432 net: tls: fix marking packets as decrypted 
For TLS offload we mark packets with skb->decrypted to make sure
they don't escape the host without getting encrypted first.
The crypto state lives in the socket, so it may get detached
by a call to skb_orphan(). As a safety check - the egress path
drops all packets with skb->decrypted and no "crypto-safe" socket.

The skb marking was added to sendpage only (and not sendmsg),
because tls_device injected data into the TCP stack using sendpage.
This special case was missed when sendpage got folded into sendmsg.

Fixes: c5c37af6ecad ("tcp: Convert do_tcp_sendpages() to use MSG_SPLICE_PAGES")
Signed-off-by: Jakub Kicinski <kuba@kernel.org>
Reviewed-by: Eric Dumazet <edumazet@google.com>
Link: https://lore.kernel.org/r/20240530232607.82686-1-kuba@kernel.org
Signed-off-by: Paolo Abeni <pabeni@redhat.com>
2024-06-04 12:58:50 +02:00
..
6lowpan
net: fill in MODULE_DESCRIPTION()s for 6LoWPAN
2024-02-09 14:12:01 -08:00
9p
Two fixes headed to stable trees:
2024-05-29 09:25:15 -07:00
802
net: fill in MODULE_DESCRIPTION()s under net/802*
2023-10-28 11:29:28 +01:00
8021q
net: annotate writes on dev->mtu from ndo_change_mtu()
2024-05-07 16:19:14 -07:00
appletalk
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2024-05-09 10:01:01 -07:00
atm
net: change proto and proto_ops accept type
2024-05-13 18:19:09 -06:00
ax25
ax25: Replace kfree() in ax25_dev_free() with ax25_dev_put()
2024-06-01 15:49:42 -07:00
batman-adv
tracing/treewide: Remove second parameter of __assign_str()
2024-05-22 20:14:47 -04:00
bluetooth
net-accept-more-20240515
2024-05-18 10:32:39 -07:00
bpf
bpf: check bpf_dummy_struct_ops program params for test runs
2024-04-25 12:42:43 -07:00
bridge
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-next
2024-05-15 07:30:49 -07:00
caif
caif: Use UTILITY_NAME_LENGTH instead of hard-coding 16
2024-04-02 18:20:00 -07:00
can
linux-can-next-for-6.9-20240220
2024-02-20 15:32:45 +01:00
ceph
libceph: init the cursor when preparing sparse read in msgr2
2024-03-06 12:43:01 +01:00
core
net: dst_cache: add two DEBUG_NET warnings
2024-06-03 18:50:09 -07:00
dcb
dccp
net: dccp: Fix ccid2_rtt_estimator() kernel-doc
2024-05-07 16:15:08 -07:00
devlink
devlink: extend devlink_param *set pointer
2024-04-22 13:05:19 -07:00
dns_resolver
Networking changes for 6.8.
2024-01-11 10:07:29 -08:00
dsa
tracing/treewide: Remove second parameter of __assign_str()
2024-05-22 20:14:47 -04:00
ethernet
netkit: Fix pkt_type override upon netkit pass verdict
2024-05-25 10:48:57 -07:00
ethtool
ethtool: init tsinfo stats if requested
2024-06-01 15:11:09 -07:00
handshake
net/handshake: remove redundant assignment to variable ret
2024-04-16 17:14:55 -07:00
hsr
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2024-05-09 10:01:01 -07:00
ieee802154
tracing/treewide: Remove second parameter of __assign_str()
2024-05-22 20:14:47 -04:00
ife
net: sched: ife: fix potential use-after-free
2023-12-15 10:50:18 +00:00
ipv4
net: tls: fix marking packets as decrypted
2024-06-04 12:58:50 +02:00
ipv6
ila: block BH in ila_output()
2024-06-03 18:50:09 -07:00
iucv
more s390 updates for 6.10 merge window
2024-05-21 12:09:36 -07:00
kcm
net: kcm: fix incorrect parameter validation in the kcm_getsockopt) function
2024-03-11 09:53:22 +00:00
key
net: fill in MODULE_DESCRIPTION()s for af_key
2024-02-09 14:12:01 -08:00
l2tp
l2tp: fix ICMP error handling for UDP-encap sockets
2024-05-17 12:15:22 -07:00
l3mdev
lapb
llc
net: change proto and proto_ops accept type
2024-05-13 18:19:09 -06:00
mac80211
wifi: mac80211: fix UBSAN noise in ieee80211_prep_hw_scan()
2024-05-29 15:58:54 +02:00
mac802154
mac802154: fix llsec key resources release in mac802154_llsec_key_del
2024-03-06 21:01:26 +01:00
mctp
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2024-02-29 14:24:56 -08:00
mpls
net: Remove the now superfluous sentinel elements from ctl_table array
2024-05-03 13:29:41 +01:00
mptcp
net-accept-more-20240515
2024-05-18 10:32:39 -07:00
ncsi
net/ncsi: Fix the multi thread manner of NCSI driver
2024-06-01 16:21:44 -07:00
netfilter
netfilter: nft_fib: allow from forward/input without iif selector
2024-05-29 00:37:51 +02:00
netlabel
netlabel: fix RCU annotation for IPv4 options on socket creation
2024-05-13 14:58:12 -07:00
netlink
netlink: support all extack types in dumps
2024-04-23 10:09:49 -07:00
netrom
net-accept-more-20240515
2024-05-18 10:32:39 -07:00
nfc
Quite smaller than usual. Notably it includes the fix for the unix
2024-05-23 12:49:37 -07:00
nsh
nsh: Restore skb->{protocol,data,mac_header} for outer header in nsh_gso_segment().
2024-04-26 12:20:01 +02:00
openvswitch
Quite smaller than usual. Notably it includes the fix for the unix
2024-05-23 12:49:37 -07:00
packet
af_packet: do not call packet_read_pending() from tpacket_destruct_skb()
2024-05-16 19:38:05 -07:00
phonet
net: change proto and proto_ops accept type
2024-05-13 18:19:09 -06:00
psample
ip_tunnel: convert __be16 tunnel flags to bitmaps
2024-04-01 10:49:28 +01:00
qrtr
net: qrtr: ns: Fix module refcnt
2024-05-16 09:47:45 +01:00
rds
net: change proto and proto_ops accept type
2024-05-13 18:19:09 -06:00
rfkill
net: rfkill: gpio: Convert to platform remove callback returning void
2024-03-25 15:40:22 +01:00
rose
net: change proto and proto_ops accept type
2024-05-13 18:19:09 -06:00
rxrpc
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2024-05-09 10:01:01 -07:00
sched
net/sched: taprio: extend minimum interval restriction to entire cycle too
2024-05-28 19:46:41 -07:00
sctp
net: change proto and proto_ops accept type
2024-05-13 18:19:09 -06:00
smc
tracing/treewide: Remove second parameter of __assign_str()
2024-05-22 20:14:47 -04:00
strparser
sunrpc
NFS client updates for Linux 6.10
2024-05-23 13:51:09 -07:00
switchdev
net: bridge: switchdev: Improve error message for port_obj_add/del functions
2024-05-08 12:19:12 +01:00
tipc
tracing/treewide: Remove second parameter of __assign_str()
2024-05-22 20:14:47 -04:00
tls
tls: fix missing memory barrier in tls_init
2024-05-23 12:03:26 +02:00
unix
af_unix: Read sk->sk_hash under bindlock during bind().
2024-05-27 11:46:56 +02:00
vmw_vsock
virtio: features, fixes, cleanups
2024-05-23 12:04:36 -07:00
wireless
wifi: cfg80211: fix 6 GHz scan request building
2024-05-29 15:25:25 +02:00
x25
net: change proto and proto_ops accept type
2024-05-13 18:19:09 -06:00
xdp
xsk: use generic DMA sync shortcut instead of a custom one
2024-05-08 08:51:20 +02:00
xfrm
net: fix __dst_negative_advice() race
2024-05-29 17:34:49 -07:00
compat.c
file: stop exposing receive_fd_user()
2023-12-12 14:24:14 +01:00
devres.c
Kconfig
net: add IEEE 802.1q specific helpers
2024-05-08 10:35:09 +01:00
Kconfig.debug
Makefile
af_unix: Remove CONFIG_UNIX_SCM.
2024-01-31 16:41:16 -08:00
socket.c
net: have do_accept() take a struct proto_accept_arg argument
2024-05-13 18:19:19 -06:00
sysctl_net.c
sysctl: treewide: constify argument ctl_table_root::permissions(table)
2024-04-24 09:43:54 +02:00