From: Boris Pismenny <bor...@mellanox.com> Date: Tue, 14 Jul 2020 01:15:26 +0300
> On 13/07/2020 22:05, David Miller wrote: >> From: Boris Pismenny <bor...@mellanox.com> >> Date: Mon, 13 Jul 2020 10:49:49 +0300 >> >> Why can't the device generate the correct TLS signature when >> offloading? Just like for the protocol checksum, the device should >> load the payload into the device over DMA and make it's calculations >> on that copy. > > Right. The problematic case is when some part of the record is already > received by the other party, and then some (modified) data including > the TLS authentication tag is re-transmitted. Then we must copy to avoid this.
