Re: [RFC net-next 1/3] net/tls_sw: support randomized zero padding

Next message: Samiullah Khawaja: "Re: [PATCH 01/14] iommu: Implement IOMMU LU FLB callbacks"
Previous message: Alexandre Courbot: "Re: [PATCH v12.1 1/1] rust: gpu: Add GPU buddy allocator bindings"
In reply to: Wilfred Mallawa: "Re: [RFC net-next 1/3] net/tls_sw: support randomized zero padding"
Next in thread: Wilfred Mallawa: "Re: [RFC net-next 1/3] net/tls_sw: support randomized zero padding"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Jakub Kicinski

Date: Mon Mar 16 2026 - 21:04:04 EST

On Tue, 17 Mar 2026 00:53:07 +0000 Wilfred Mallawa wrote:
> > Or maybe you could refer to existing implementations of this feature
> > in user space libs? The padding feature seems slightly nebulous,
> > I wasn't aware of anyone actually using it. Maybe I should ask...
> > are you actually planning to use it, or are you checking a box?
>
> For upcoming WD hardware, we were planning on informing users to use
> this feature if an extra layer of security can benefit their particular
> configuration. But to answer your question, I think this falls more
> into the "checking a box"...
>
> I'm happy to drop this series if there's not much added value from
> having this as an available option for users.

I'm not much of a security person, and maybe Sabrina will disagree
but I feel like it's going to be hard for us to design this feature
in a sensible way if we don't know at least one potential attack :S