On Sat, Oct 13, 2018 at 02:45:55AM +0200, Daniel Borkmann wrote: > This work adds a generic sk_msg layer and converts both sockmap > and later ktls over to make use of it as a common data structure > for application data (similarly as sk_buff for network packets). > With that in place the sk_msg framework spans accross ULP layer > in the kernel and allows for introspection or filtering of L7 > data with the help of BPF programs operating on a common input > context. > > In a second step, we enable the latter for ktls which was previously > not possible, meaning, ktls and sk_msg verdict programs were > mutually exclusive in the ULP layer which created challenges for > the orchestrator when trying to apply TCP based policy, for > example. Leveraging the prior consolidation we can finally overcome > this limitation. > > Note, there's no change in behavior when ktls is not used in > combination with BPF, and also no change in behavior for stand > alone sockmap. The kselftest suites for ktls, sockmap and ktls > with sockmap combined also runs through successfully. For further > details please see individual patches. > > Thanks! > > v1 -> v2: > - Removed leftover comment spotted by Alexei > - Improved commit messages, rebase
Applied, Thanks
