From owner-freebsd-questions@freebsd.org Thu Mar 9 09:42:57 2017 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 08C3CD02957 for ; Thu, 9 Mar 2017 09:42:57 +0000 (UTC) (envelope-from woodsb02@gmail.com) Received: from mail-io0-x232.google.com (mail-io0-x232.google.com [IPv6:2607:f8b0:4001:c06::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id D78DA171D for ; Thu, 9 Mar 2017 09:42:56 +0000 (UTC) (envelope-from woodsb02@gmail.com) Received: by mail-io0-x232.google.com with SMTP id z13so24967354iof.2 for ; Thu, 09 Mar 2017 01:42:56 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=BVdJD6XwyGkn9D08k00h5VAk570UD+ymjHMddrcaSuA=; b=fGtTJWLFKzDJSPZ7D0aNlw/jdqLE+1MotltIOu37ppepLchVl8OFMbd5vQGo2JsrI5 Jgj2vQj+mL2+QAowqgE3GC7RX2eXzxLBIIgvX/QafsbplVIt8FdSD26MVn8wA09lGYJJ n0/TUMUE7I0zVv/PJ5hpywQ7LRa5WLeUg7+ZuBUOHlGNQtitpXogptn8RBXMvdxRgZSV lIH+uEoaxMm9Ds0/rZ6SX1kpHaJR8A38J55zPNhKtuW3YzQBuK2sB5hgm1axniLPtnLO pevuCMQw5PURHt4GCX1FSvshagDmAcIxskCZNPavCFKABCLa1klml0iPgakAjSdvCsiW 6Y3w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=BVdJD6XwyGkn9D08k00h5VAk570UD+ymjHMddrcaSuA=; b=sID4oB3ez9Ti9gASJZGwY/pO/AUmOL/j4kJ49PTp9+04I0g1uApxbnOx5/kbsKfZEi VP/Ud+e9pssr2n3jnHmuPmZ/9TxBbRBkuYm6YuO04692AxVnSN+j25DUolu3IZL1sdYM QFPxPjpx2Y1aEKQXnhHJoPNC5mpJ1PLLTdQa/ZaSW/MB1E0487D87wGATSjG3LEpt3H0 vR9oFMwUxzk9+gOSQaxp90fFTQQYbIvBvjtUdXnsElxZ4a+EIZmBHC2o7uYS2Hl7t9LJ rnwQEOIS0CZR3KKVohX7w+6bl+54kRs7QPUIcCoIa1EknTos2s4Ldrg5WYotEHTo0AOi l82w== X-Gm-Message-State: AMke39lYgYqfC9LQ3FsZOmE8w4UYWrtD6r5VtpAuW0Cbsav8YvsJJ/Mvh/rpVWzC5KamJPjJOL/YCfkoxcOMwA== X-Received: by 10.107.195.66 with SMTP id t63mr11910103iof.155.1489052576297; Thu, 09 Mar 2017 01:42:56 -0800 (PST) MIME-Version: 1.0 References: In-Reply-To: From: Ben Woods Date: Thu, 09 Mar 2017 09:42:45 +0000 Message-ID: Subject: Re: Support of TLS processing in kernel To: Ravichandra , freebsd-questions@freebsd.org Content-Type: text/plain; charset=UTF-8 X-Content-Filtered-By: Mailman/MimeDel 2.1.23 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Mar 2017 09:42:57 -0000 On Wed, 8 Mar 2017 at 7:03 pm, Ravichandra wrote: > Hi, > Recently some work is done by people at facebook about TLS processing in > kernel. > It is called as kernel TLS by them. A kernel patch for the same is > submitted on > linux kernel. I am trying to see something similar can be done for FreeBSD > too. I see > that stream parsing(strparsing module) support which is leveraged by this > kernel TLS > module is present in linux kernel and not in FreeBSD. This stream parsing > module > helps the kernel to custom parse the TCP data according to a application > layer protocol > requirement. Is there a way that helps to achieve the same in FreeBSD? > > Thanks > Ravichandra Netflix have previously done TLS in the FreeBSD kernel. You can see their paper on it here: https://people.freebsd.org/~rrs/asiabsd_tls_improved.pdf Regards, Ben > -- -- From: Benjamin Woods woodsb02@gmail.com