VOOZH about

URL: https://reviews.freebsd.org/D31430

⇱ ⚙ D31430 security/openssl: Update KTLS patches for Chacha20-Poly1305.

Paths

security/openssl: Update KTLS patches for Chacha20-Poly1305.
ClosedPublic

Authored by jhb on Aug 5 2021, 11:26 PM.
Tags
None
Referenced Files
Unknown Object (File)
Tue, Apr 7, 4:58 AM
Unknown Object (File)
Tue, Mar 31, 6:11 AM
Unknown Object (File)
Wed, Mar 25, 1:35 AM
Unknown Object (File)
Tue, Mar 24, 5:27 PM
Unknown Object (File)
Sat, Mar 21, 1:45 PM
Unknown Object (File)
Thu, Mar 19, 7:45 PM
Unknown Object (File)
Thu, Mar 19, 10:25 AM
Unknown Object (File)
Wed, Mar 18, 7:30 AM
Subscribers

Details

Summary

This pulls in several upstream KTLS patches from OpenSSL master:

  • A fix to the return values of BIO_get_ktls_*().
  • Support for Chacha20-Poly1305.
  • Replacing the SSL_MODE_NO_KTLS_* modes which opted-out of KTLS with an opt-in SSL_OP_ENABLE_KTLS. Note that this means that KTLS is not enabled by default. Users can enable KTLS via a custom OpenSSL config file that enables the KTLS option.

Sponsored by: Netflix

Diff Detail

Repository
R11 FreeBSD ports repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

jhb requested review of this revision.Aug 5 2021, 11:26 PM
Comment Actions

Ping. I have merged all these patches into base OpenSSL.

This revision was not accepted when it landed; it landed in state Needs Review.Aug 19 2021, 2:05 PM
This revision was automatically updated to reflect the committed changes.
Comment Actions

Thanks!

Builds OK, committed

Revision Contents

PathSize
security/
openssl/
2 lines
files/
683 lines

Diff 93937

security/openssl/Makefile

Loading...

security/openssl/files/extra-patch-ktls

Loading...