Re: [PATCH 0/3] crypto: af_alg - add TLS type encryption

From: Tadeusz Struk
Date: Wed Apr 13 2016 - 18:51:48 EST

Next message: Luis R. Rodriguez: "Re: [Xen-devel] [PATCH v4 04/14] x86/rtc: replace paravirt rtc check with platform legacy quirk"
Previous message: Luis R. Rodriguez: "Re: [Xen-devel] [PATCH v5 04/14] x86/rtc: replace paravirt rtc check with platform legacy quirk"
In reply to: Fridolin Pokorny: "Re: [PATCH 0/3] crypto: af_alg - add TLS type encryption"
Next in thread: Nikos Mavrogiannopoulos: "Re: [PATCH 0/3] crypto: af_alg - add TLS type encryption"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Fridolin,
On 04/12/2016 04:13 AM, Fridolin Pokorny wrote:
> we were experimenting with this. We have a prove of concept of a kernel
> TLS type socket, so called AF_KTLS, which is based on Dave Watson's
> RFC5288 patch. It handles both TLS and DTLS, unfortunately it is not
> ready now to be proposed here. There are still issues which should be
> solved (but mostly user space API design) [1]. If you are interested, we
> could combine efforts.
>
> Regards,
> Fridolin Pokorny
>
> [1] https://github.com/fridex/af_ktls

I had a quick look and it looks like is limited only to gcm(aes).
I would be more interested to have a generic interface that could do generic algorithm
suits like aes-cbc-hmac-sha1 also.
This also seems to work in a synchronous (send one and wait) mode, which is a not good
solution for HW accelerators, which I'm trying to enable.
Thanks,
--
TS

Next message: Luis R. Rodriguez: "Re: [Xen-devel] [PATCH v4 04/14] x86/rtc: replace paravirt rtc check with platform legacy quirk"
Previous message: Luis R. Rodriguez: "Re: [Xen-devel] [PATCH v5 04/14] x86/rtc: replace paravirt rtc check with platform legacy quirk"
In reply to: Fridolin Pokorny: "Re: [PATCH 0/3] crypto: af_alg - add TLS type encryption"
Next in thread: Nikos Mavrogiannopoulos: "Re: [PATCH 0/3] crypto: af_alg - add TLS type encryption"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]