On Mon, Feb 03, 2020 at 10:49:38PM +, Rick Macklem wrote:
> Benjamin Kaduk wrote:
> >On Tue, Jan 28, 2020 at 11:01:31PM +, Rick Macklem wrote:
> >> John Baldwin wrote:
> >> [stuff snipped]
> >> >I don't know yet. :-/ With the TOE-based TLS I had been testing with,
> >> >this doesn't
> >>
Benjamin Kaduk wrote:
>On Tue, Jan 28, 2020 at 11:01:31PM +, Rick Macklem wrote:
>> John Baldwin wrote:
>> [stuff snipped]
>> >I don't know yet. :-/ With the TOE-based TLS I had been testing with, this
>> >doesn't
>> >happen because the NIC blocks the data until it gets the key and then it's
On Tue, Jan 28, 2020 at 11:01:31PM +, Rick Macklem wrote:
> John Baldwin wrote:
> [stuff snipped]
> >I don't know yet. :-/ With the TOE-based TLS I had been testing with, this
> >doesn't
> >happen because the NIC blocks the data until it gets the key and then it's
> >always
> >available via
John Baldwin wrote:
[stuff snipped]
>I don't know yet. :-/ With the TOE-based TLS I had been testing with, this
>doesn't
>happen because the NIC blocks the data until it gets the key and then it's
>always
>available via KTLS. With software-based KTLS for RX (which I'm going to start
>working
On 1/9/20 2:53 PM, Rick Macklem wrote:
John Baldwin wrote:
On 1/7/20 3:02 PM, Rick Macklem wrote:
Someone once told me they were working on a netgraph node that did TLS
encapsulation of a stream.
I can not remember who it was, but I do remember they were dubious
about being allowed to
John Baldwin wrote:
>On 1/26/20 8:08 PM, Rick Macklem wrote:
>> John Baldwin wrote:
>> [stuff snipped]
>>> Hmmm, this might be a fair bit of work indeed.
>>>
>>> Right now KTLS only works for transmit (though I have some WIP for receive).
>>>
>>> KTLS does assumes that the initial handshake and
On Mon, Jan 27, 2020 at 8:40 AM Freddie Cash wrote:
> On Sun, Jan 26, 2020 at 12:08 PM Rick Macklem
> wrote:
>
>> Oh, and for anyone out there...
>> What is the easiest freebie way to test signed certificates?
>> (I currently am using a self-signed certificate, but I need to test the
>> "real"
On Sun, Jan 26, 2020 at 12:08 PM Rick Macklem wrote:
> Oh, and for anyone out there...
> What is the easiest freebie way to test signed certificates?
> (I currently am using a self-signed certificate, but I need to test the
> "real" version
> at some point soon.)
>
Let's Encrypt is what you
On 1/26/20 8:08 PM, Rick Macklem wrote:
John Baldwin wrote:
[stuff snipped]
Hmmm, this might be a fair bit of work indeed.
Right now KTLS only works for transmit (though I have some WIP for receive).
KTLS does assumes that the initial handshake and key negotiation is handled by
OpenSSL.
John Baldwin wrote:
[stuff snipped]
>Hmmm, this might be a fair bit of work indeed.
>
>Right now KTLS only works for transmit (though I have some WIP for receive).
>
>KTLS does assumes that the initial handshake and key negotiation is handled by
>OpenSSL. OpenSSL uses custom setockopt() calls to
John Baldwin wrote:
>On 1/12/20 8:23 PM, Benjamin Kaduk wrote:
>> On Thu, Jan 09, 2020 at 10:53:38PM +, Rick Macklem wrote:
>>> John Baldwin wrote:
On 1/7/20 3:02 PM, Rick Macklem wrote:
> Hi,
>
> Now that I've completed NFSv4.2 I'm on to the next project, which is
>
On 1/12/20 8:23 PM, Benjamin Kaduk wrote:
> On Thu, Jan 09, 2020 at 10:53:38PM +, Rick Macklem wrote:
>> John Baldwin wrote:
>>> On 1/7/20 3:02 PM, Rick Macklem wrote:
Hi,
Now that I've completed NFSv4.2 I'm on to the next project, which is
making NFS
work over TLS.
On Thu, Jan 09, 2020 at 10:53:38PM +, Rick Macklem wrote:
> John Baldwin wrote:
> >On 1/7/20 3:02 PM, Rick Macklem wrote:
> >> Hi,
> >>
> >> Now that I've completed NFSv4.2 I'm on to the next project, which is
> >> making NFS
> >> work over TLS.
> >> Of course, I know absolutely nothing about
John Baldwin wrote:
>On 1/7/20 3:02 PM, Rick Macklem wrote:
>> Hi,
>>
>> Now that I've completed NFSv4.2 I'm on to the next project, which is making
>> NFS
>> work over TLS.
>> Of course, I know absolutely nothing about TLS, which will make this an
>> interesting
>> exercise for me.
>> I did
On 1/7/20 3:02 PM, Rick Macklem wrote:
> Hi,
>
> Now that I've completed NFSv4.2 I'm on to the next project, which is making
> NFS
> work over TLS.
> Of course, I know absolutely nothing about TLS, which will make this an
> interesting
> exercise for me.
> I did find simple server code in the
Hi,
Now that I've completed NFSv4.2 I'm on to the next project, which is making NFS
work over TLS.
Of course, I know absolutely nothing about TLS, which will make this an
interesting
exercise for me.
I did find simple server code in the OpenSSL doc. which at least gives me a
starting
point for
16 matches
Mail list logo
