[Toybox] [RFC] ktls is in 4.13.

scsijon scsijon at lamiaworks.com.au
Mon Sep 4 20:19:00 PDT 2017


> Date: Sun, 3 Sep 2017 23:12:05 -0500
> From: Rob Landley <rob at landley.net>
> To: toybox <toybox at lists.landley.net>
> Subject: [Toybox] [RFC] ktls is in 4.13.
> Message-ID: <2ada100d-1403-989e-c2bc-4f5fef1d97fd at landley.net>
> Content-Type: text/plain; charset=utf-8
>
> The kernel just merged "ssl renamed after thread local storage" support:
>
>   vpaper: https://netdevconf.org/1.2/papers/ktls.pdf
>   sample code: https://github.com/ktls/af_ktls
>
> It's basic https plumbing in the kernel, but doesn't do the handshake or
> renegotiation. What I'm wondering is would this be a better thing to try
> to plug into than the openssl command line utility?
>
> Worth bothering with?
>
> Rob

And the security issues if it's within toybox rather than an external 
via openssl, especially as a lot of us run as root so we can 'play'?

scsijon
ps do you prefer top-posts in-posts or bottom-posts  for this sort of 
thing please rob?


More information about the Toybox mailing list