ktls.4 - OpenGrok cross reference for /freebsd/share/man/man4/ktls.4

Lines Matching full:tls
43 facility allows the kernel to perform Transport Layer Security (TLS)
47 the initial handshake for a socket using TLS is performed in userland.
85 Instead, the NIC encrypts TLS records as they are being transmitted,
86 or decrypts received TLS records before providing them to the host.
100 (also known as packet pacing) for TLS offload,
110 between TCP and TLS.
113 Once TLS transmit is enabled by a successful set of the
116 all data written on the socket is stored in TLS records and encrypted.
117 Most data is transmitted in application layer TLS records,
118 and the kernel chooses how to partition data among TLS records.
119 Individual TLS records with a fixed length and record type can be sent
122 with the TLS record type set in a
127 This can be used to send TLS records with a type other than
132 The current TLS transmit mode of a socket can be queried via the
135 A socket using TLS transmit offload can also set the
142 Once TLS receive is enabled by a successful set of the
145 all data read from the socket is returned as decrypted TLS records.
146 Each received TLS record must be read from the socket using
148 Each received TLS record will contain a
153 which includes fields from the TLS record header.
154 If an invalid or corrupted TLS record is received,
159 The version fields in a TLS record's header did not match the version required
162 structure used to enable in-kernel TLS.
164 A TLS record's length was either too small or too large.
166 The connection was closed after sending a truncated TLS record.
168 The TLS record failed to match the included authentication tag.
171 The current TLS receive mode of a socket can be queried via the
179 .Va kern.ipc.tls
182 .Bl -tag -width ".Va kern.ipc.tls.cbc_enable"
183 .It Va kern.ipc.tls.enable
184 Determines if new kernel TLS sessions can be created.
185 .It Va kern.ipc.tls.cbc_enable
186 Determines if new kernel TLS sessions with a cipher suite using AES-CBC
188 .It Va kern.ipc.tls.sw
189 A tree of nodes containing statistics for TLS sessions using
191 .It Va kern.ipc.tls.ifnet
192 A tree of nodes containing statistics for TLS sessions using
194 .It Va kern.ipc.tls.toe
195 A tree of nodes containing statistics for TLS sessions using
197 .It Va kern.ipc.tls.stats
198 A tree of nodes containing various kernel TLS statistics.
204 They are required for TLS transmit.
256 Kernel TLS first appeared in