Google Git
Sign in
kernel / pub / scm / linux / kernel / git / martineau / linux / 26fb5480a27d34975cc2b680b77af189620dd740
commit26fb5480a27d34975cc2b680b77af189620dd740[log] [tgz]
authorChuck Lever <chuck.lever@oracle.com>Thu May 11 11:49:50 2023 -0400
committerJakub Kicinski <kuba@kernel.org>Wed May 24 22:05:24 2023 -0700
tree6e14b559ee327c9fde86287f3ba99f47731308dc
parent1ce77c998f0415d7d9d91cb9bd7665e25c8f75f1 [diff]
net/handshake: Enable the SNI extension to work properly

Enable the upper layer protocol to specify the SNI peername. This
avoids the need for tlshd to use a DNS lookup, which can return a
hostname that doesn't match the incoming certificate's SubjectName.

Fixes: 2fd5532044a8 ("net/handshake: Add a kernel API for requesting a TLSv1.3 handshake")
Reviewed-by: Simon Horman <simon.horman@corigine.com>
Signed-off-by: Chuck Lever <chuck.lever@oracle.com>
Signed-off-by: Jakub Kicinski <kuba@kernel.org>
5 files changed
tree: 6e14b559ee327c9fde86287f3ba99f47731308dc
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. fs/
  8. include/
  9. init/
  10. io_uring/
  11. ipc/
  12. kernel/
  13. lib/
  14. LICENSES/
  15. mm/
  16. net/
  17. rust/
  18. samples/
  19. scripts/
  20. security/
  21. sound/
  22. tools/
  23. usr/
  24. virt/
  25. .clang-format
  26. .cocciconfig
  27. .get_maintainer.ignore
  28. .gitattributes
  29. .gitignore
  30. .mailmap
  31. .rustfmt.toml
  32. COPYING
  33. CREDITS
  34. Kbuild
  35. Kconfig
  36. MAINTAINERS
  37. Makefile
  38. README