net/tls: sendfile fails with ktls offload

stable inclusion from linux-4.19.153 commit b2d31640d4045d8bb7cf25d2bd53ce8d1b14fb40 -------------------------------- [ Upstream commit ea1dd3e9 ] At first when sendpage gets called, if there is more data, 'more' in tls_push_data() gets set which later sets pending_open_record_frags, but when there is no more data in file left, and last time tls_push_data() gets called, pending_open_record_frags doesn't get reset. And later when 2 bytes of encrypted alert comes as sendmsg, it first checks for pending_open_record_frags, and since this is set, it creates a record with 0 data bytes to encrypt, meaning record length is prepend_size + tag_size only, which causes problem. We should set/reset pending_open_record_frags based on more bit. Fixes: e8f69799 ("net/tls: Add generic NIC offload infrastructure") Signed-off-by: N Rohit Maheshwari <rohitm@chelsio.com> Signed-off-by: N Jakub Kicinski <kuba@kernel.org> Signed-off-by: N Greg Kroah-Hartman <gregkh@linuxfoundation.org> Signed-off-by: N Yang Yingliang <yangyingliang@huawei.com> Signed-off-by: N Aichun Li <liaichun@huawei.com> Reviewed-by: N wangxiaopeng <wangxiaopeng7@huawei.com> Signed-off-by: N Yang Yingliang <yangyingliang@huawei.com>

net/tls: sendfile fails with ktls offload
stable inclusion from linux-4.19.153 commit b2d31640d4045d8bb7cf25d2bd53ce8d1b14fb40 -------------------------------- [ Upstream commit ea1dd3e9 ] At first when sendpage gets called, if there is more data, 'more' in tls_push_data() gets set which later sets pending_open_record_frags, but when there is no more data in file left, and last time tls_push_data() gets called, pending_open_record_frags doesn't get reset. And later when 2 bytes of encrypted alert comes as sendmsg, it first checks for pending_open_record_frags, and since this is set, it creates a record with 0 data bytes to encrypt, meaning record length is prepend_size + tag_size only, which causes problem. We should set/reset pending_open_record_frags based on more bit. Fixes: e8f69799 ("net/tls: Add generic NIC offload infrastructure") Signed-off-by: N Rohit Maheshwari <rohitm@chelsio.com> Signed-off-by: N Jakub Kicinski <kuba@kernel.org> Signed-off-by: N Greg Kroah-Hartman <gregkh@linuxfoundation.org> Signed-off-by: N Yang Yingliang <yangyingliang@huawei.com> Signed-off-by: N Aichun Li <liaichun@huawei.com> Reviewed-by: N wangxiaopeng <wangxiaopeng7@huawei.com> Signed-off-by: N Yang Yingliang <yangyingliang@huawei.com>
2c84d986 · Rohit Maheshwari · Yang Yingliang · af449009 · 2c84d986
显示空白变更内容
内联并排

Showing with 6 addition and 5 deletion

net/tls/tls_device.c net/tls/tls_device.c +6 -5

未找到文件。
--- a/net/tls/tls_device.c
+++ b/net/tls/tls_device.c
@@ -351,13 +351,13 @@ static int tls_push_data(struct sock *sk,
 	struct tls_context *tls_ctx = tls_get_ctx(sk);
 	struct tls_offload_context_tx *ctx = tls_offload_ctx_tx(tls_ctx);
 	int tls_push_record_flags = flags | MSG_SENDPAGE_NOTLAST;
-	int more = flags & (MSG_SENDPAGE_NOTLAST | MSG_MORE);
 	struct tls_record_info *record = ctx->open_record;
 	struct page_frag *pfrag;
 	size_t orig_size = size;
 	u32 max_open_record_len;
-	int copy, rc = 0;
+	bool more = false;
 	bool done = false;
+	int copy, rc = 0;
 	long timeo;
 	if (flags &
@@ -422,9 +422,8 @@ static int tls_push_data(struct sock *sk,
 		if (!size) {
 last_record:
 			tls_push_record_flags = flags;
-			if (more) {
+			if (flags & (MSG_SENDPAGE_NOTLAST | MSG_MORE)) {
-				tls_ctx->pending_open_record_frags =
+				more = true;
-						record->num_frags;
 				break;
 			}
@@ -445,6 +444,8 @@ static int tls_push_data(struct sock *sk,
 		}
 	} while (!done);
+	tls_ctx->pending_open_record_frags = more;
 	if (orig_size - size > 0)
 		rc = orig_size - size;