Date: Sun, 3 Sep 2017 23:12:05 -0500
From: Rob Landley <r...@landley.net>
To: toybox <toybox@lists.landley.net>
Subject: [Toybox] [RFC] ktls is in 4.13.
Message-ID: <2ada100d-1403-989e-c2bc-4f5fef1d9...@landley.net>
Content-Type: text/plain; charset=utf-8
The kernel just merged "ssl renamed after thread local storage" support:
vpaper: https://netdevconf.org/1.2/papers/ktls.pdf
sample code: https://github.com/ktls/af_ktls
It's basic https plumbing in the kernel, but doesn't do the handshake or
renegotiation. What I'm wondering is would this be a better thing to try
to plug into than the openssl command line utility?
Worth bothering with?
Rob
And the security issues if it's within toybox rather than an external
via openssl, especially as a lot of us run as root so we can 'play'?
scsijon
ps do you prefer top-posts in-posts or bottom-posts for this sort of
thing please rob?
_______________________________________________
Toybox mailing list
Toybox@lists.landley.net
http://lists.landley.net/listinfo.cgi/toybox-landley.net
