git.baikalelectronics.ru Git - kernel.git/commit

author	Jakub Kicinski <kuba@kernel.org>
	Fri, 15 Jul 2022 05:22:30 +0000 (22:22 -0700)
committer	David S. Miller <davem@davemloft.net>
	Mon, 18 Jul 2022 10:24:11 +0000 (11:24 +0100)
commit	803d4a5c2dbbc36c04c9502c22b1bb7af38ff44d
tree	37bbdfc174258b2baa5342a4d74ffddcc159f1c8	tree \| snapshot
parent	d758d06ba8047c26464a469823773a4b93a2b925	commit \| diff

tls: rx: read the input skb from ctx->recv_pkt

Callers always pass ctx->recv_pkt into decrypt_skb_update(),
and it propagates it to its callees. This may give someone
the false impression that those functions can accept any valid
skb containing a TLS record. That's not the case, the record
sequence number is read from the context, and they can only
take the next record coming out of the strp.

Let the functions get the skb from the context instead of
passing it in. This will also make it cleaner to return
a different skb than ctx->recv_pkt as the decrypted one
later on.

Since we're touching the definition of decrypt_skb_update()
use this as an opportunity to rename it.

Signed-off-by: Jakub Kicinski <kuba@kernel.org>
Signed-off-by: David S. Miller <davem@davemloft.net>

net/tls/tls.h		diff \| blob \| history
net/tls/tls_device.c		diff \| blob \| history
net/tls/tls_sw.c		diff \| blob \| history