review.tizen.org Git - platform/kernel/linux-starfive.git/commit

author	Jianbo Liu <jianbol@nvidia.com>
	Mon, 31 Jul 2023 11:28:16 +0000 (14:28 +0300)
committer	Jakub Kicinski <kuba@kernel.org>
	Thu, 3 Aug 2023 01:37:29 +0000 (18:37 -0700)
commit	1762f132d54200ffa008e86f9f6c96ab4ee3fb71
tree	4268cec31360a47ca08556a55952a96c5eef9d9f	tree \| snapshot
parent	6e125265d52d491781e6301b80f885f2453d2e65	commit \| diff

net/mlx5e: Support IPsec packet offload for RX in switchdev mode

As decryption must be done first, add new prio for IPsec offload in
FDB, and put it just lower than BYPASS prio and higher than TC prio.
Three levels are added for RX. The first one is for ip xfrm policy. SA
table is created in the second level for ip xfrm state. The status
table is created in the last to check the decryption result. If
success, packets continue with the next process, or dropped otherwise.
For now, the set of reg c1 is removed for swtichdev mode, and the
datapath process will be added in the next patch.

Signed-off-by: Jianbo Liu <jianbol@nvidia.com>
Signed-off-by: Leon Romanovsky <leonro@nvidia.com>
Link: https://lore.kernel.org/r/c91063554cf643fb50b99cf093e8a9bf11729de5.1690802064.git.leon@kernel.org
Signed-off-by: Jakub Kicinski <kuba@kernel.org>

drivers/net/ethernet/mellanox/mlx5/core/Makefile		diff \| blob \| history
drivers/net/ethernet/mellanox/mlx5/core/en_accel/ipsec.h		diff \| blob \| history
drivers/net/ethernet/mellanox/mlx5/core/en_accel/ipsec_fs.c		diff \| blob \| history
drivers/net/ethernet/mellanox/mlx5/core/en_accel/ipsec_offload.c		diff \| blob \| history
drivers/net/ethernet/mellanox/mlx5/core/esw/ipsec_fs.c	[new file with mode: 0644]	blob
drivers/net/ethernet/mellanox/mlx5/core/esw/ipsec_fs.h	[new file with mode: 0644]	blob
drivers/net/ethernet/mellanox/mlx5/core/fs_core.c		diff \| blob \| history
include/linux/mlx5/fs.h		diff \| blob \| history