Date: Thu, 2 Jul 2015 11:10:10 +0530 From: Rakshith Venkatesh <vrock28@gmail.com> To: net@freebsd.org Subject: Fwd: Integrating OpenSSL app with NetMap [Help needed] Message-ID: <CANw0z%2BX=ekXvWUBCeFGyE0eKoFAeduM_0t7U%2BBAu2UEtyf7C5Q@mail.gmail.com> In-Reply-To: <CANw0z%2BXTmyqUWhjc6bQFYgM58qvzQsu16WdN%2B=n9E8unL4Re5A@mail.gmail.com> References: <CANw0z%2BXTmyqUWhjc6bQFYgM58qvzQsu16WdN%2B=n9E8unL4Re5A@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi , As we all know, OpenSSL community moved away from the kernel implementation to a user-space one not so long ago. Now trying to port the latest OpenSSL code into FreeBSD kernel is one of the items i was looking at and after having exhaustive rounds of discussion with relavent stake-holders, we decided not to pursue the path of porting the whole user-space OpenSSL code into kernel. Now we have decided to retain openSSL library in user-space but i wanted to integrate NetMAP API's so that known system overheads such as context switches etc are eliminated and we could get good performance. Now the workflow that i have in mind is that the encrypted packet gets pulled in from the MMAP'd region and OpenSSL code in user-space goes about doing the de-cryption part. But before that, i wanted to know which library can be used to actually do the TCP/IP packet processing in user-space. The next part is how to push the decrypted packets back to kernel for services in kernel to consume. Can NetMap API's push the decrypted packets down to lets say another MMAP'd region so that kernel services/components can act on the de-crypted packet to proceed with execution further? Your inputs and Giudance would be really helpful. Thanks!
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CANw0z%2BX=ekXvWUBCeFGyE0eKoFAeduM_0t7U%2BBAu2UEtyf7C5Q>