Seems like a design which will cause no end of trouble. Coded this way, key swaps will put serious pressure on the buffer allocator. What if the server never replies?
Accept either key for a short period of time. As soon as the new key is in hand – and one packet decrypts with it – flush the old key. FWIW... Dave From: vpp-dev@lists.fd.io <vpp-dev@lists.fd.io> On Behalf Of Artem Glazychev Sent: Tuesday, June 9, 2020 7:25 AM To: vpp-dev@lists.fd.io Subject: [vpp-dev] Stop data processing in the node until event Good morning. I'm writing a plugin with tunnel encryption. I have a question. For example, in the middle of the data encrypting we decided that we need to update client-server keys. How to stop (start wait) data flow before i-th packet, for request-receive keys from server and continue encrypt i-th packet with new keys? Is it possible? Can you give me a direction? Thanks.
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#16701): https://lists.fd.io/g/vpp-dev/message/16701 Mute This Topic: https://lists.fd.io/mt/74771816/21656 Group Owner: vpp-dev+ow...@lists.fd.io Unsubscribe: https://lists.fd.io/g/vpp-dev/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
