review.tizen.org Git - platform/kernel/linux-rpi.git/commit

author	Raed Salem <raeds@nvidia.com>
	Tue, 14 Mar 2023 08:58:41 +0000 (10:58 +0200)
committer	Leon Romanovsky <leon@kernel.org>
	Mon, 20 Mar 2023 09:29:41 +0000 (11:29 +0200)
commit	b3beba1fb404dd713a325cb241fe780857172225
tree	9991975af708a761b6eb0691a048db52e6787912	tree \| snapshot
parent	c9fa320b00cff04980b8514d497068e59a8ee131	commit \| diff

net/mlx5e: Allow policies with reqid 0, to support IKE policy holes

IKE policies hole, is special policy that exists to allow for IKE
traffic to bypass IPsec encryption even though there is already a
policies and SA(s) configured on same endpoints, these policies
does not nessecarly have the reqid configured, so need to add
an exception for such policies. These kind of policies are allowed
under the condition that at least upper protocol and/or ips
are not 0.

Signed-off-by: Raed Salem <raeds@nvidia.com>
Link: https://lore.kernel.org/r/cbcadde312c24de74c47d9b0616f86a5818cc9bf.1678714336.git.leon@kernel.org
Signed-off-by: Leon Romanovsky <leon@kernel.org>

drivers/net/ethernet/mellanox/mlx5/core/en_accel/ipsec.c		diff \| blob \| history
drivers/net/ethernet/mellanox/mlx5/core/en_accel/ipsec.h		diff \| blob \| history
drivers/net/ethernet/mellanox/mlx5/core/en_accel/ipsec_fs.c		diff \| blob \| history