From owner-freebsd-hackers@FreeBSD.ORG Mon Dec 8 20:21:58 2008 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3F8AF1065673 for ; Mon, 8 Dec 2008 20:21:58 +0000 (UTC) (envelope-from philip@paeps.cx) Received: from gateway.nixsys.be (gateway.nixsys.be [IPv6:2001:6f8:32f::42]) by mx1.freebsd.org (Postfix) with ESMTP id DF8528FC13 for ; Mon, 8 Dec 2008 20:21:57 +0000 (UTC) (envelope-from philip@paeps.cx) Received: from detritus.paeps.cx (detritus.paeps.cx [IPv6:2001:6f8:1408::4]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client CN "detritus.paeps.cx", Issuer "CAcert Class 3 Root" (verified OK)) by gateway.nixsys.be (Postfix) with ESMTPS id 2B8E04056; Mon, 8 Dec 2008 21:21:57 +0100 (CET) Received: by detritus.paeps.cx (Postfix, from userid 1001) id 92DB920BC; Mon, 8 Dec 2008 21:21:55 +0100 (CET) Date: Mon, 8 Dec 2008 21:21:55 +0100 From: Philip Paeps To: Patrick =?utf-8?Q?Lamaizi=C3=A8re?= Message-ID: <20081208202155.GA7403@detritus.paeps.cx> Mail-Followup-To: Patrick =?utf-8?Q?Lamaizi=C3=A8re?= , freebsd-hackers@freebsd.org References: <20081207224551.13ca3590@baby-jane> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <20081207224551.13ca3590@baby-jane> X-PGP-Fingerprint: 356B AE02 4763 F739 2FA2 E438 2649 E628 C5D3 4D05 X-Date: Today is Boomtime, the 50th day of The Aftermath in the YOLD 3174 X-Phase-of-Moon: The Moon is Waxing Gibbous (80% of Full) X-Message-Flag: Get a proper mailclient! Organization: Happily Disorganized User-Agent: Mutt/1.5.18 (2008-05-17) Cc: freebsd-hackers@freebsd.org Subject: Re: crypto(9) choose another driver if we cannot open a session on it X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 08 Dec 2008 20:21:58 -0000 On 2008-12-07 22:45:51 (+0100), Patrick Lamaizière wrote: > I wrote a small patch to allow the crypto framework to choose another > cryptographic driver if we cannot open a session on the driver. Very cool. :-) I've been hacking on this too, mainly to get rid of the code duplication that currently exists. > That should not break anything. It would be nice to test it on a box with a > Geode LX CPU and a crypto device like a VPN1411 card. I don't have the > hardware but I've checked that we revert to the cryptosoft driver when using > ipsec and glxsb with AES key's length != 128 bits. I'll test that tonight. I think I've got a hifn card hiding somewhere near a soekris. Thanks! - Philip -- Philip Paeps Please don't Cc me, I am philip@freebsd.org subscribed to the list. "Maybe you should loosen her clothing or something." -- Gaspode the wonder dog (Terry Pratchett, Moving Pictures)