Crate ktls

Structs

CompatibleCiphers

CompatibleCiphersForVersion

CorkStream

This is a wrapper that reads TLS message headers so it knows when to start doing empty reads at the message boundary when “draining” a rustls connection before setting up kTLS for it.

KtlsCipherSuite

A TLS cipher suite. Used mostly internally.

KtlsStream

Enums

CipherSuiteError

CryptoInfo

Error

KtlsCipherType

Cipher types supported by this crate

KtlsVersion

TLS versions supported by this crate

Traits

AsyncReadReady

Functions

config_ktls_client

Configure kTLS for this socket. If this call succeeds, data can be written and read from this socket, and the kernel takes care of encryption (and key updates, etc.) transparently.

config_ktls_server

Configure kTLS for this socket. If this call succeeds, data can be written and read from this socket, and the kernel takes care of encryption transparently. I’m not clear how rekeying is handled (probably via control messages, but can’t find a code sample for it).