git.baikalelectronics.ru Git - kernel.git/commit

author	Dave Watson <davejwatson@fb.com>
	Wed, 14 Jun 2017 18:37:39 +0000 (11:37 -0700)
committer	David S. Miller <davem@davemloft.net>
	Thu, 15 Jun 2017 16:12:40 +0000 (12:12 -0400)
commit	c2c217d107880bc3bf4376a464bad9f70c24b281
tree	57a99de1db4ac5bb65ea9cf2ee6e7156d6c64d6d	tree \| snapshot
parent	51153cd831a2e28af4f32d0f5135ad008ff45a35	commit \| diff

tls: kernel TLS support

Software implementation of transport layer security, implemented using ULP
infrastructure. tcp proto_ops are replaced with tls equivalents of sendmsg and
sendpage.

Only symmetric crypto is done in the kernel, keys are passed by setsockopt
after the handshake is complete. All control messages are supported via CMSG
data - the actual symmetric encryption is the same, just the message type needs
to be passed separately.

For user API, please see Documentation patch.

Pieces that can be shared between hw and sw implementation
are in tls_main.c

Signed-off-by: Boris Pismenny <borisp@mellanox.com>
Signed-off-by: Ilya Lesokhin <ilyal@mellanox.com>
Signed-off-by: Aviad Yehezkel <aviadye@mellanox.com>
Signed-off-by: Dave Watson <davejwatson@fb.com>
Signed-off-by: David S. Miller <davem@davemloft.net>

MAINTAINERS		diff \| blob \| history
include/linux/socket.h		diff \| blob \| history
include/net/tls.h	[new file with mode: 0644]	blob
include/uapi/linux/tls.h	[new file with mode: 0644]	blob
net/Kconfig		diff \| blob \| history
net/Makefile		diff \| blob \| history
net/tls/Kconfig	[new file with mode: 0644]	blob
net/tls/Makefile	[new file with mode: 0644]	blob
net/tls/tls_main.c	[new file with mode: 0644]	blob
net/tls/tls_sw.c	[new file with mode: 0644]	blob