CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit

author	Rick Macklem <rmacklem@FreeBSD.org>
	Thu, 18 Feb 2021 22:08:19 +0000 (14:08 -0800)
committer	Rick Macklem <rmacklem@FreeBSD.org>
	Fri, 5 Mar 2021 21:49:46 +0000 (13:49 -0800)
commit	2c76eebca71b8e17881dfcc01faeb0537d87e0af
tree	15898de30f8df1abbb77da09ef10b5372c13c773	tree \| snapshot
parent	41b9a5af2e19cc3715028b9a6e45e0a2e1bceb74	commit \| diff

nfs-over-tls: add user space daemons rpc.tlsclntd and rpc.tlsservd

The kernel changes needed for nfs-over-tls have been committed to main.
However, nfs-over-tls requires user space daemons to handle the
TLS handshake and other non-application data TLS records.
There is one daemon (rpc.tlsclntd) for the client side and one daemon
(rpc.tlsservd) for the server side, although they share a fair amount
of code found in rpc.tlscommon.c and rpc.tlscommon.h.
They use a KTLS enabled OpenSSL to perform the actual work and, as such,
are only built when MK_OPENSSL_KTLS is set.
Communication with the kernel is done via upcall RPCs done on AF_LOCAL
sockets and the custom system call rpctls_syscall.

Relnotes: yes

(cherry picked from commit b9cbc85d727214cf3e13196ab7e7564e53037f77)

usr.sbin/Makefile		diff \| blob \| history
usr.sbin/rpc.tlsclntd/Makefile	[new file with mode: 0644]	blob
usr.sbin/rpc.tlsclntd/rpc.tlsclntd.8	[new file with mode: 0644]	blob
usr.sbin/rpc.tlsclntd/rpc.tlsclntd.c	[new file with mode: 0644]	blob
usr.sbin/rpc.tlsservd/Makefile	[new file with mode: 0644]	blob
usr.sbin/rpc.tlsservd/rpc.tlscommon.c	[new file with mode: 0644]	blob
usr.sbin/rpc.tlsservd/rpc.tlscommon.h	[new file with mode: 0644]	blob
usr.sbin/rpc.tlsservd/rpc.tlsservd.8	[new file with mode: 0644]	blob
usr.sbin/rpc.tlsservd/rpc.tlsservd.c	[new file with mode: 0644]	blob