Commit c706b2b5 authored Apr 25, 2022 by Jakub Kicinski

net: tls: fix async vs NIC crypto offload



When NIC takes care of crypto (or the record has already
been decrypted) we forget to update darg->async. ->async
is supposed to mean whether record is async capable on
input and whether record has been queued for async crypto
on output.

Reported-by: Gal Pressman <gal@nvidia.com>
Fixes: 3547a1f9 ("tls: rx: use async as an in-out argument")
Tested-by: Gal Pressman <gal@nvidia.com>
Link: https://lore.kernel.org/r/20220425233309.344858-1-kuba@kernel.org


Signed-off-by: Jakub Kicinski <kuba@kernel.org>

parent fae46308

net/tls/tls_sw.c

+2 −0

Original line number	Diff line number	Diff line
		@@ -1562,6 +1562,7 @@ static int decrypt_skb_update(struct sock sk, struct sk_buff skb,

		if (tlm->decrypted) {
		darg->zc = false;
		darg->async = false;
		return 0;
		}

		@@ -1572,6 +1573,7 @@ static int decrypt_skb_update(struct sock sk, struct sk_buff skb,
		if (err > 0) {
		tlm->decrypted = 1;
		darg->zc = false;
		darg->async = false;
		goto decrypt_done;
		}
		}