From: Ilya Lesokhin <il...@mellanox.com> Date: Wed, 8 Nov 2017 15:38:25 +0200
> Changes from v1: > - Remove the binding of the socket to a specific netdev > through sk->sk_bound_dev_if. > Add a check in validate_xmit_skb to detect route changes > and call SW fallback code to do the crypto in software. > - tls_get_record now returns the tls record sequence number. > This is required to support connections with rcd_sn != iv. > - Bug fixes to the TLS code. > > This patchset adds a generic infrastructure to offload TLS crypto to a > network devices. > > Patches 1-6 refactor and fix various issues in the TLS code > Patches 7-8 Export functions that we need > patch 9 adds infrastructue for offloaded socket fallback > patches 10-11 add new NDOs and capabilities. > patch 12 adds the TLS NIC offload infrastructure. > > Github with mlx5e TLS offload support: > https://github.com/Mellanox/tls-offload/tree/tls_device_v2 > > Paper: https://www.netdevconf.org/1.2/papers/netdevconf-TLS.pdf This doesn't apply cleanly to net-next, and the net-next tree is now closed so please resubmit this after the merge window. Thank you.
