Date: Tue, 27 Aug 2019 09:04:27 -0400 From: Shawn Webb <shawn.webb@hardenedbsd.org> To: John Baldwin <jhb@FreeBSD.org> Cc: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-head@freebsd.org Subject: Re: svn commit: r351522 - in head: sbin/ifconfig share/man/man4 sys/conf sys/kern sys/modules sys/modules/ktls_ocf sys/net sys/netinet sys/netinet/tcp_stacks sys/netinet6 sys/opencrypto sys/sys tools/t... Message-ID: <20190827130427.r27c6jswyxipkln5@mutt-hbsd> In-Reply-To: <e744fd19-0f4e-ca5f-9b87-d48e1791a7f2@FreeBSD.org> References: <201908270001.x7R01vUB052426@repo.freebsd.org> <e744fd19-0f4e-ca5f-9b87-d48e1791a7f2@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--xrquq2h6prvg2w7t Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Aug 26, 2019 at 05:14:42PM -0700, John Baldwin wrote: > On 8/26/19 5:01 PM, John Baldwin wrote: > > Author: jhb > > Date: Tue Aug 27 00:01:56 2019 > > New Revision: 351522 > > URL: https://svnweb.freebsd.org/changeset/base/351522 > >=20 > > Log: > > Add kernel-side support for in-kernel TLS. >=20 > The length of the commit message notwithstanding, there is still quite a = bit > more work to do on this front. Making use of KTLS requires an SSL library > that understands the new functionality, and for the full performance gain > you want an application that makes use of SSL_sendfile. Netflix has both > of these in the form of patches to OpenSSL and nginx. I'm currently work= ing > on a patchset suitable for merging into upstream OpenSSL's master (the > Linux KTLS patches are merged into OpenSSL master already, so the FreeBSD > patches are fairly small). Hey John, Thanks a lot for working to get this in! I'm curious if there's any desire to help LibreSSL adopt same/similar patches as OpenSSL. Doing so would help LibreSSL on FreeBSD maintain feature parity with OpenSSL. I respect your opinion and would love to hear your thoughts. Thanks, --=20 Shawn Webb Cofounder / Security Engineer HardenedBSD Tor-ified Signal: +1 443-546-8752 Tor+XMPP+OTR: lattera@is.a.hacker.sx GPG Key ID: 0xFF2E67A277F8E1FA GPG Key Fingerprint: D206 BB45 15E0 9C49 0CF9 3633 C85B 0AF8 AB23 0FB2 --xrquq2h6prvg2w7t Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEA6TL67gupaZ9nzhT/y5nonf44foFAl1lKlYACgkQ/y5nonf4 4frT9g//VGyS24NrOsVpiCLanwZ2bHFqfLYRVb3Dq/+OnvoFM3CCYipVhw/HDfrh C7gWrAFJ+tWJA+Ctb0WowIuzGkXbDVvJ1m3OtO6Lt1Ad1Y0nWxa367D6Cpj/4EeV YjBFFch80iABSJ44Ld14vai4HL5/dxd5b2AFIO5d6wZQVy8IlJ3aCogAGhum3YpI ZUXYmsVmVHFIqjtXS2Nung+FFDNo4G7g0iD5Wm01yxqC3QJ38ieQhhZ/I1r1btNH t+8MxgxEs7N6I9TSqvrGIGuLy+HAe3Q6t050JBZqaCcYAWEAZLj+YRgAf4/UJqRg yOtwiNTLqvkW7xTXMt3HseFQevXGXSn2wrca6rLhIo1FxeHQDL23NQr6n3RtPVOG VChDc3Dfa5f8Tv2HZzRoECURnlzfLdHWx/+CTEfru0ieiRhokUJPtSNY02jhJCmc VgMTpRsbfQ2RYsnEVi54NjyCiTliX5g6QS2BQk+cSlV/ozaMbSRqzbS/9ikDu6TH RBGpwObkifKZxtupkO742oeUYGBb2JKY63SFzPRcYwmfffbS99sC5BwT4sQff1uh mVdBjS8fwQyIYU8RJ7ddOstxOOceHBGgFMq8EC8yTcY/wfzoOWMbFV0w38uz9r7M x8FayT2v3eNc1aqbGq0bA8DYJsNO47MyrFB7Qp8CDCJWMtxBm0M= =U8yI -----END PGP SIGNATURE----- --xrquq2h6prvg2w7t--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20190827130427.r27c6jswyxipkln5>