Fedora 38 Looks To Accelerate GnuTLS With Kernel TLS

Written by Michael Larabel in Fedora on 8 September 2022 at 04:52 AM EDT. 10 Comments
FEDORA
With Fedora 37 approaching release at the end of October, more feature changes for Fedora 38 next spring are continuing to be discussed. One of the interesting proposals this week is enabling acceleration of GnuTLS using the kernel TLS (kTLS).

Fedora 38 is looking to have kTLS for the kernel TLS module loaded as part of the crypto policies so that GnuTLS can enjoy greater performance. A particular focus for this Red Hat led change proposal is on providing greater performance for network block devices.

GnuTLS will make use of kTLS for offloading encryption/decryption to the kernel. The kTLS usage can be particularly beneficial for network block devices in reducing data copies and context switching with the crypto work happening within the kernel. Even for systems lacking crypto offloading hardware, kTLS can yield performance speed-ups with the work possibly ending up on a separate CPU core(s) from the application.

Among the viewed benefits of this proposed Fedora 38 is faster live VM migrations and increased speed when dealing with files on network block devices via encrypted channels. This kTLS usage by GnuTLS would be enabled by default but fallback to existing user-mode operation in case of problems.

More details on this proposed change for Fedora 38 via this Fedora Wiki page.
10 Comments
Related News
Btrfs SIG Established For Advancing Btrfs Interests On Fedora
Fedora COSMIC Desktop Spin Proposed For Fedora 42
Fedora 42 Looking To Package Intel SGX Software Stack
Fedora 42 Aims To Enhance The Windows Subsystem For Linux Experience
Fedora Stakeholders Debate Concerns Over "Karma" Term For Their Updates System
Fedora KDE Desktop Spin Promoted To Same Tier As GNOME-Based Fedora Workstation
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
OpenWrt Affected By Security Issue That Could Have Led To Compromised Build Artifacts
How AMD Is Taking Standard C/C++ Code To Run Directly On GPUs
Linux EFI Zboot Abandoning "Compression Library Museum", Focusing On Gzip & Zstd
Ptyxis Becomes Ubuntu's Recommended Replacement To GNOME Terminal
GNU Shepherd 1.0 Service Manager Released As "Solid Tool" Alternative To systemd
KDE Starts December By Landing A Number Of New Features
NTSYNC Linux Patches Revived To Help Boost Steam Play Gaming Performance
Rust-Based, Memory-Safe PNG Decoders "Vastly Outperform" C-Based PNG Libraries