Aren’t most TLS implementations still using things like OpenSSL in userspace? How would the kernel get access to the request?