Post Syndicated from original https://lwn.net/Articles/892216/

The kernel gained support for the TLS
protocol in the 4.13 release, which came out in September 2017. That
support is incomplete, though, in that it does not provide the kernel with
a way to initiate a TLS connection on its own. Instead, user space creates
a socket and performs the TLS handshake before handing the socket to the
kernel, which can then transfer data using TLS. The situation may be about
to change as a result of this
patch series from Chuck Lever — though user space will still need to
remain in the picture.