How to improve SSL/TLS performance with kTLS offload

SSL_set_options(fd, SSL_OP_ENABLE_KTLS); 
# wget https://www.openssl.org/source/openssl-3.0.0.tar.gz
# tar -xvzf openssl-3.0.0.tar.gz
# cd openssl-3.0.0
# ./Configure --prefix=/home/netlox/source/ssl --openssldir=/home/netlox/source/ssl enable-ktls '-Wl,-rpath,$(LIBRPATH)'
# make
# make install
# git clone git@github.com:netlox-dev/iperf_ssl.git
# cd iperf_ssl
# ./autogen.sh
# ./build.sh /home/netlox/source/ssl
Server Mode
# src/iperf iperf --tls=v1.2 --ktls -s
Client Mode
# src/iperf --tls=v1.2 --ktls -c <ip> -t 60 -i 1
# ethtool -K <interface-name> tls-hw-tx-offload on
# ethtool -K <interface-name> tls-hw-rx-offload on
Kernel kTLS stats :
# cat /proc/net/tls_stat
Offloaded kTLS stats :
# ethtool -S <interface-name> | grep tls

--

--

--

Marketing and Communications @ Netlox

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

[Code Samples] How to display the video from a USB camera using python and kivy

The point behind writing a JIT compiler emulator as a web developer (Emulation Series 1)

Laravel Authorization with Gates — Part 1

Laravel Authorization with Gates - Part 1

What does if __name__ == ”__main__” do in Python?

Contributing to your preferred open source project, starring Flutter — part 2

⬜🟨🟩: Wordle & Absurdle Internals

A Beginner’s Guide to Generate PDFs with Django - Part 1

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Netlox

Netlox

Marketing and Communications @ Netlox

More from Medium

The Missing Guide for Mac Catalyst Apps

December 27, 2021

Exhortation for 2022 (Psalms 94)

What is Ragnarok?