git.baikalelectronics.ru Git - kernel.git/commit

author	Sabrina Dubroca <sd@queasysnail.net>
	Mon, 25 Nov 2019 13:49:02 +0000 (14:49 +0100)
committer	Steffen Klassert <steffen.klassert@secunet.com>
	Mon, 9 Dec 2019 08:59:07 +0000 (09:59 +0100)
commit	a601325e92f9663e40f80285f341218aab2b207e
tree	c5d84ce22c0cdd452fea7478ca8d63b37188b6b6	tree \| snapshot
parent	a254da1ebe9a74701b84bd78d455abe26cf58dac	commit \| diff

xfrm: add espintcp (RFC 8229)

TCP encapsulation of IKE and IPsec messages (RFC 8229) is implemented
as a TCP ULP, overriding in particular the sendmsg and recvmsg
operations. A Stream Parser is used to extract messages out of the TCP
stream using the first 2 bytes as length marker. Received IKE messages
are put on "ike_queue", waiting to be dequeued by the custom recvmsg
implementation. Received ESP messages are sent to XFRM, like with UDP
encapsulation.

Some of this code is taken from the original submission by Herbert
Xu. Currently, only IPv4 is supported, like for UDP encapsulation.

Co-developed-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Sabrina Dubroca <sd@queasysnail.net>
Acked-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Steffen Klassert <steffen.klassert@secunet.com>

include/net/espintcp.h	[new file with mode: 0644]	blob
include/net/xfrm.h		diff \| blob \| history
include/uapi/linux/udp.h		diff \| blob \| history
net/ipv4/Kconfig		diff \| blob \| history
net/ipv4/esp4.c		diff \| blob \| history
net/xfrm/Makefile		diff \| blob \| history
net/xfrm/espintcp.c	[new file with mode: 0644]	blob
net/xfrm/xfrm_policy.c		diff \| blob \| history
net/xfrm/xfrm_state.c		diff \| blob \| history