git.ipfire.org Git - thirdparty/kernel/linux.git/commit

author	Jianbo Liu <jianbol@nvidia.com>
	Thu, 18 Sep 2025 07:19:23 +0000 (10:19 +0300)
committer	Jakub Kicinski <kuba@kernel.org>
	Fri, 19 Sep 2025 23:48:37 +0000 (16:48 -0700)
commit	72ed3ebf95a73b3c822ab7efb6a46114672179c5
tree	f447be70455436808db217bc164cd8189c0b1451	tree \| snapshot
parent	d8693cac22c7fa7ef13c836327f1720d3fe414f6	commit \| diff

net/mlx5e: Add flow rules for the decrypted ESP packets

The previous commit introduced two new flow groups to enable L4 RSS
for decrypted IPsec traffic. This commit implements the logic to
populate these groups with the necessary steering rules.

The rules are created dynamically whenever the first IPSec offload
rule is configured via the xfrm subsystem and the decryption tables
for RX are created. Each rule matches a specific decrypted traffic
type based on its ip version (or ethertype) and outer/inner
l4_type_ext, directing it to the appropriate L4 RSS-enabled TIR.

The lifecycle of these steering rules is tied directly to the RX
tables. They are deleted when the RX tables are destroyed.

Signed-off-by: Jianbo Liu <jianbol@nvidia.com>
Reviewed-by: Dragos Tatulea <dtatulea@nvidia.com>
Signed-off-by: Tariq Toukan <tariqt@nvidia.com>
Link: https://patch.msgid.link/1758179963-649455-5-git-send-email-tariqt@nvidia.com
Signed-off-by: Jakub Kicinski <kuba@kernel.org>

drivers/net/ethernet/mellanox/mlx5/core/en_accel/ipsec_fs.c		diff \| blob \| blame \| history
drivers/net/ethernet/mellanox/mlx5/core/lib/fs_ttc.c		diff \| blob \| blame \| history
drivers/net/ethernet/mellanox/mlx5/core/lib/fs_ttc.h		diff \| blob \| blame \| history