Re: tcp md5: one more crypto-sg-on-the-stack instance

tcp md5: one more crypto-sg-on-the-stack instance · Andy Lutomirski <luto@amacapital.net> · 2016-06-25
Re: tcp md5: one more crypto-sg-on-the-stack instance · Eric Dumazet <hidden> · 2016-06-25
Re: tcp md5: one more crypto-sg-on-the-stack instance · Eric Dumazet <hidden> · 2016-06-25
Re: tcp md5: one more crypto-sg-on-the-stack instance · Eric Dumazet <hidden> · 2016-06-25
[PATCH net-next] tcp: md5: do not use stack storage in crypto operations · Eric Dumazet <hidden> · 2016-06-25
Re: [PATCH net-next] tcp: md5: do not use stack storage in crypto operations · Andy Lutomirski <luto@amacapital.net> · 2016-06-25
Re: [PATCH net-next] tcp: md5: do not use stack storage in crypto operations · David Miller <davem@davemloft.net> · 2016-06-27
Re: [PATCH net-next] tcp: md5: do not use stack storage in crypto operations · Andy Lutomirski <luto@amacapital.net> · 2016-06-27
Re: [PATCH net-next] tcp: md5: do not use stack storage in crypto operations · Eric Dumazet <hidden> · 2016-06-27
[PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Eric Dumazet <hidden> · 2016-06-27
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Andy Lutomirski <luto@amacapital.net> · 2016-06-27
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Eric Dumazet <hidden> · 2016-06-27
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Herbert Xu <herbert@gondor.apana.org.au> · 2016-06-28
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Andy Lutomirski <luto@amacapital.net> · 2016-06-28
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Herbert Xu <herbert@gondor.apana.org.au> · 2016-06-29
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Andy Lutomirski <luto@amacapital.net> · 2016-06-29
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Herbert Xu <herbert@gondor.apana.org.au> · 2016-06-29
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Andy Lutomirski <luto@amacapital.net> · 2016-06-29
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Herbert Xu <herbert@gondor.apana.org.au> · 2016-06-29
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Andy Lutomirski <luto@amacapital.net> · 2016-06-29
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Eric Dumazet <hidden> · 2016-06-29
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Andy Lutomirski <luto@amacapital.net> · 2016-06-29
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Herbert Xu <herbert@gondor.apana.org.au> · 2016-06-30
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Cong Wang <hidden> · 2016-06-27
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · Eric Dumazet <hidden> · 2016-06-27
Re: [PATCH v2 net-next] tcp: md5: use kmalloc() backed scratch areas · David Miller <davem@davemloft.net> · 2016-07-01

From: Eric Dumazet <hidden>
Date: 2016-06-25 04:11:53

On Fri, 2016-06-24 at 18:51 -0700, Andy Lutomirski wrote:

Hi all-

tcp_md5_hash_header does crypto using an sg that points to the stack.
This will break with virtually mapped stacks.  It also looks like it's
probably much slower than it deserves to be (it's trying to compute
the MD5 hash of a few tens of bytes -- going through a scatterlist is
a lot of overhead for an otherwise very fast operation).

I guess nobody cares about TCP MD5 speed really.

I don't suppose one of you could fix it or at least advise as to how
it should be fixed.

Simply extend tcp_md5sig_pool to contain a copy of the TCP headers ?

At most 40 bytes of extra per cpu storage is not a big problem.

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help