Bug#1041643: ITP: ktls-utils -- TLS handshake utilities for in-kernel TLS consumers

2023-07-22 Thread Salvatore Bonaccorso 
Hi,

On Sat, Jul 22, 2023 at 11:51:55PM +0200, Ben Hutchings wrote:
> I've prepared a package in the Git repository
> .
> 
> As of Linux 6.4, the only in-kernel user of TLS is the NFS server. 
> Linux 6.5 adds support in the NFS client.  With just the NFS server
> supporting TLS, I can't do an end-to-end test.
> 
> Once we have Linux 6.5 packaged, I can test and hopefully upload this
> package.

Sounds like a good plan. 6.4.y should soon come to unstable, making
the master branch free for the 6.5~rcY packagings.

Regards,
Salvatore

Bug#1041643: ITP: ktls-utils -- TLS handshake utilities for in-kernel TLS consumers

2023-07-22 Thread Ben Hutchings 
I've prepared a package in the Git repository
.

As of Linux 6.4, the only in-kernel user of TLS is the NFS server. 
Linux 6.5 adds support in the NFS client.  With just the NFS server
supporting TLS, I can't do an end-to-end test.

Once we have Linux 6.5 packaged, I can test and hopefully upload this
package.

Ben.

-- 
Ben Hutchings
Computers are not intelligent.  They only think they are.



signature.asc
Description: This is a digitally signed message part

Bug#1041643: ITP: ktls-utils -- TLS handshake utilities for in-kernel TLS consumers

2023-07-21 Thread Ben Hutchings 
Package: wnpp
Severity: wishlist
Owner: Ben Hutchings 
X-Debbugs-Cc: debian-de...@lists.debian.org, debian-ker...@lists.debian.org, 
Steve Dickson , Chuck Lever III 

* Package name: ktls-utils
  Version : 0.9
  Upstream Contact: kernel-tls-handsh...@lists.linux.dev
* URL : https://github.com/oracle/ktls-utils
* License : GPLv2
  Programming Lang: C
  Description : TLS handshake utilities for in-kernel TLS consumers

In-kernel TLS consumers need a mechanism to perform TLS handshakes on
a connected socket to negotiate TLS session parameters that can then
be programmed into the kernel's TLS record protocol engine.

This package of software provides a TLS handshake user agent that
listens for kernel requests and then materializes a user space socket
endpoint on which to perform these handshakes. The resulting
negotiated session parameters are passed back to the kernel via
standard kTLS socket options.

This will be maintained by the kernel team.