Date: Tue, 17 Aug 2021 21:46:03 GMT From: John Baldwin <jhb@FreeBSD.org> To: src-committers@FreeBSD.org, dev-commits-src-all@FreeBSD.org, dev-commits-src-main@FreeBSD.org Subject: git: 671a35b176e4 - main - UPDATING: Add a note about OpenSSL defaulting KTLS to off. Message-ID: <202108172146.17HLk3aK017875@gitrepo.freebsd.org>
next in thread | raw e-mail | index | archive | help
The branch main has been updated by jhb: URL: https://cgit.FreeBSD.org/src/commit/?id=671a35b176e4b3c445696a8b423db5f8de26c285 commit 671a35b176e4b3c445696a8b423db5f8de26c285 Author: John Baldwin <jhb@FreeBSD.org> AuthorDate: 2021-08-17 21:40:33 +0000 Commit: John Baldwin <jhb@FreeBSD.org> CommitDate: 2021-08-17 21:43:46 +0000 UPDATING: Add a note about OpenSSL defaulting KTLS to off. Sponsored by: Netflix MFC after: 5 days Differential Revision: https://reviews.freebsd.org/D31444 --- UPDATING | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/UPDATING b/UPDATING index 512f33e9b43d..7293a336c99c 100644 --- a/UPDATING +++ b/UPDATING @@ -27,6 +27,14 @@ NOTE TO PEOPLE WHO THINK THAT FreeBSD 14.x IS SLOW: world, or to merely disable the most expensive debugging functionality at runtime, run "ln -s 'abort:false,junk:false' /etc/malloc.conf".) +20210817: + As of commit 62ca9fc1ad56 OpenSSL no longer enables kernel TLS + by default. Users can enable kernel TLS via the "KTLS" SSL + option. This can be enabled globally by using a custom + OpenSSL config file via OPENSSL_CONF or via an + application-specific configuration option for applications + which permit setting SSL options via SSL_CONF_cmd(3). + 20210811: Commit 3ad1e1c1ce20 changed the internal KAPI between the NFS modules. Therefore, all need to be rebuilt from sources.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202108172146.17HLk3aK017875>