Page MenuHomeFreeBSD
Differential D27839

Add Chacha20-Poly1305 as a KTLS cipher suite.
ClosedPublic
Actions

Authored by jhb on Dec 30 2020, 12:51 AM.
Tags
None
Referenced Files
Unknown Object (File)
Tue, Jan 14, 12:27 AM
Unknown Object (File)
Sat, Jan 11, 10:05 AM
Unknown Object (File)
Tue, Dec 24, 5:29 AM
Unknown Object (File)
Dec 13 2024, 6:03 PM
Unknown Object (File)
Dec 13 2024, 1:47 PM
Unknown Object (File)
Dec 1 2024, 8:53 PM
Unknown Object (File)
Nov 25 2024, 11:17 AM
Unknown Object (File)
Nov 21 2024, 6:41 AM
View All 88 Files
Subscribers
imp

Details

Reviewers
gallatin
Commits
rGb7f27a60ac72: Add Chacha20-Poly1305 as a KTLS cipher suite.
rG9c64fc40290e: Add Chacha20-Poly1305 as a KTLS cipher suite.
Summary

Chacha20-Poly1305 for TLS is an AEAD cipher suite for both TLS 1.2 and
TLS 1.3 (RFCs 7905 and 8446). For both versions, Chacha20 uses the
server and client IVs as implicit nonces xored with the record
sequence number to generate the per-record nonce matching the
construction used with AES-GCM for TLS 1.3.

Test Plan

Tested with pure software openssl s_client on a host and KTLS-enabled openssl s_server in a VM using chacha20 ciphers with both TLS 1.2 and TLS 1.3.

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Passed
Unit
No Test Coverage
Build Status
Buildable 37129
Build 34018: arc lint + arc unit

Event Timeline

jhb created this revision.Dec 30 2020, 12:51 AM
Herald added a subscriber: imp. · View Herald TranscriptDec 30 2020, 12:51 AM
jhb requested review of this revision.Dec 30 2020, 12:51 AM
Harbormaster completed remote builds in B35781: Diff 81355.Dec 30 2020, 12:51 AM
jhb added a parent revision: D27838: cryptocheck: Add Chacha20-Poly1305 AEAD coverage..Dec 30 2020, 12:51 AM
jhb added a child revision: D27841: Add Chacha20-Poly1305 support in the OCF backend for KTLS..Dec 30 2020, 12:54 AM
jhb edited the test plan for this revision. (Show Details)Dec 30 2020, 1:00 AM
jhb added a reviewer: gallatin.
gallatin accepted this revision.Jan 7 2021, 4:33 PM
This revision is now accepted and ready to land.Jan 7 2021, 4:33 PM
jhb updated this revision to Diff 84150.Feb 17 2021, 10:26 PM
  • Rebase.
This revision now requires review to proceed.Feb 17 2021, 10:26 PM
Harbormaster completed remote builds in B37129: Diff 84150.Feb 17 2021, 10:26 PM
This revision was not accepted when it landed; it landed in state Needs Review.Feb 18 2021, 5:55 PM
Closed by commit rG9c64fc40290e: Add Chacha20-Poly1305 as a KTLS cipher suite. (authored by jhb). · Explain Why
This revision was automatically updated to reflect the committed changes.
jhb added a commit: rG9c64fc40290e: Add Chacha20-Poly1305 as a KTLS cipher suite..
jhb added a commit: rGb7f27a60ac72: Add Chacha20-Poly1305 as a KTLS cipher suite..Nov 23 2021, 11:13 PM

Revision Contents
Changeset List

PathSize
sys/
kern/
76 lines
sys/
1 line

Diff 84150

View Options

sys/kern/uipc_ktls.c

Loading...
View Options

sys/sys/ktls.h

Loading...