path: root/tools
diff options
authorJohn Baldwin <jhb@FreeBSD.org>2021-01-16 00:17:31 +0000
committerJohn Baldwin <jhb@FreeBSD.org>2021-01-28 18:24:13 +0000
commitaa906e2a4957db700d9e6cc60857e1afe1aecc85 (patch)
treebaa5604b6d997b14e251751ef5867628488ffa46 /tools
parent9a0a48b12d3d85f0f00b99439e6a8779f5f1abb6 (diff)
OpenSSL: Support for kernel TLS offload (KTLS)
This merges upstream patches from OpenSSL's master branch to add KTLS infrastructure for TLS 1.0-1.3 including both RX and TX offload and SSL_sendfile support on both Linux and FreeBSD. Note that TLS 1.3 only supports TX offload. A new WITH/WITHOUT_OPENSSL_KTLS determines if OpenSSL is built with KTLS support. It defaults to enabled on amd64 and disabled on all other architectures. Reviewed by: jkim (earlier version) Approved by: secteam Obtained from: OpenSSL (patches from master) MFC after: 1 week Relnotes: yes Sponsored by: Netflix Differential Revision: https://reviews.freebsd.org/D28273
Diffstat (limited to 'tools')
2 files changed, 2 insertions, 0 deletions
diff --git a/tools/build/options/WITHOUT_OPENSSL_KTLS b/tools/build/options/WITHOUT_OPENSSL_KTLS
new file mode 100644
index 000000000000..200b5db7c671
--- /dev/null
+++ b/tools/build/options/WITHOUT_OPENSSL_KTLS
@@ -0,0 +1 @@
+Set to not include kernel TLS support in OpenSSL.
diff --git a/tools/build/options/WITH_OPENSSL_KTLS b/tools/build/options/WITH_OPENSSL_KTLS
new file mode 100644
index 000000000000..9f6232247e21
--- /dev/null
+++ b/tools/build/options/WITH_OPENSSL_KTLS
@@ -0,0 +1 @@
+Set to include kernel TLS support in OpenSSL.