* BPF: ETLS: RECV FLOW
@ 2019-08-04 9:31 Shridhar Venkatraman
0 siblings, 0 replies; only message in thread
From: Shridhar Venkatraman @ 2019-08-04 9:31 UTC (permalink / raw)
To: bpf
Hi,
The eTLS work has BPF integration which is great.
However there is one spot where access to the clear text is not available.
From kernel 4.20 - receiver BPF support added for KTLS.
a. receiver BPF is applied on encrypted message
b. after applying BPF, message is decrypted
c. BPF run logic on the decrypted plain message - can we add this support ?
d. then copy the decrypted message back to userspace.
code flow reference: tls receive message call flow:
--------------------------------------------------------------
tls_sw_recvmsg
__tcp_bpf_recvmsg [ bpf exec function called on encrypted message ]
decrypt_skb_update
decrypt_internal
BPF_PROG_RUN on decrypted plain message - can we add this support ?
skb_copy_datagram_msg [ decrypted message copied back to userspace ]
Thanks
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2019-08-04 9:32 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2019-08-04 9:31 BPF: ETLS: RECV FLOW Shridhar Venkatraman
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).