| // SPDX-License-Identifier: GPL-2.0 OR Linux-OpenIB |
| // Copyright (c) 2019 Mellanox Technologies. |
| |
| #include "en.h" |
| #include "en_accel/ktls.h" |
| |
| static int mlx5e_ktls_create_tis(struct mlx5_core_dev *mdev, u32 *tisn) |
| { |
| u32 in[MLX5_ST_SZ_DW(create_tis_in)] = {}; |
| void *tisc; |
| |
| tisc = MLX5_ADDR_OF(create_tis_in, in, ctx); |
| |
| MLX5_SET(tisc, tisc, tls_en, 1); |
| |
| return mlx5e_create_tis(mdev, in, tisn); |
| } |
| |
| static int mlx5e_ktls_add(struct net_device *netdev, struct sock *sk, |
| enum tls_offload_ctx_dir direction, |
| struct tls_crypto_info *crypto_info, |
| u32 start_offload_tcp_sn) |
| { |
| struct mlx5e_priv *priv = netdev_priv(netdev); |
| struct mlx5e_ktls_offload_context_tx *tx_priv; |
| struct tls_context *tls_ctx = tls_get_ctx(sk); |
| struct mlx5_core_dev *mdev = priv->mdev; |
| int err; |
| |
| if (WARN_ON(direction != TLS_OFFLOAD_CTX_DIR_TX)) |
| return -EINVAL; |
| |
| if (WARN_ON(!mlx5e_ktls_type_check(mdev, crypto_info))) |
| return -EOPNOTSUPP; |
| |
| tx_priv = kvzalloc(sizeof(*tx_priv), GFP_KERNEL); |
| if (!tx_priv) |
| return -ENOMEM; |
| |
| tx_priv->expected_seq = start_offload_tcp_sn; |
| tx_priv->crypto_info = *(struct tls12_crypto_info_aes_gcm_128 *)crypto_info; |
| mlx5e_set_ktls_tx_priv_ctx(tls_ctx, tx_priv); |
| |
| /* tc and underlay_qpn values are not in use for tls tis */ |
| err = mlx5e_ktls_create_tis(mdev, &tx_priv->tisn); |
| if (err) |
| goto create_tis_fail; |
| |
| err = mlx5_ktls_create_key(mdev, crypto_info, &tx_priv->key_id); |
| if (err) |
| goto encryption_key_create_fail; |
| |
| mlx5e_ktls_tx_offload_set_pending(tx_priv); |
| |
| return 0; |
| |
| encryption_key_create_fail: |
| mlx5e_destroy_tis(priv->mdev, tx_priv->tisn); |
| create_tis_fail: |
| kvfree(tx_priv); |
| return err; |
| } |
| |
| static void mlx5e_ktls_del(struct net_device *netdev, |
| struct tls_context *tls_ctx, |
| enum tls_offload_ctx_dir direction) |
| { |
| struct mlx5e_priv *priv = netdev_priv(netdev); |
| struct mlx5e_ktls_offload_context_tx *tx_priv = |
| mlx5e_get_ktls_tx_priv_ctx(tls_ctx); |
| |
| mlx5_ktls_destroy_key(priv->mdev, tx_priv->key_id); |
| mlx5e_destroy_tis(priv->mdev, tx_priv->tisn); |
| kvfree(tx_priv); |
| } |
| |
| static const struct tlsdev_ops mlx5e_ktls_ops = { |
| .tls_dev_add = mlx5e_ktls_add, |
| .tls_dev_del = mlx5e_ktls_del, |
| }; |
| |
| void mlx5e_ktls_build_netdev(struct mlx5e_priv *priv) |
| { |
| struct net_device *netdev = priv->netdev; |
| |
| if (!mlx5_accel_is_ktls_device(priv->mdev)) |
| return; |
| |
| netdev->hw_features |= NETIF_F_HW_TLS_TX; |
| netdev->features |= NETIF_F_HW_TLS_TX; |
| |
| netdev->tlsdev_ops = &mlx5e_ktls_ops; |
| } |