Re: Hardware-accelerated IPsec, anyone?

To: der Mouse <mouse%Rodents-Montreal.ORG@localhost>
Subject: Re: Hardware-accelerated IPsec, anyone?
From: David Holland <dholland-current%netbsd.org@localhost>
Date: Sat, 23 Jan 2010 20:34:27 +0000

On Tue, Jan 19, 2010 at 10:05:03PM -0500, der Mouse wrote:
 > > OpenSSL is the largest part of the problem: the OpenSSL team is
 > > basically hostile to any attempts to even discuss fixing their
 > > accelleration abstractions in a way which would make it possible to
 > > use record ops or even accelerators which support HMAC directly!
 > 
 > Maybe it's heretical of me, but this sounds to me as though we should
 > be at least thinking about putting time and effort into finding ways to
 > dump OpenSSL, then, rather than finding ways to work around it.

Given all the negative karma that seems to be gathering around OpenSSL
lately, I'm sort of inclined to agree, although I'm not in a position
to do much of anything about it.

-- 
David A. Holland
dholland%netbsd.org@localhost

References:
- Hardware-accelerated IPsec, anyone?
  - From: Hubert Feyrer
- Re: Hardware-accelerated IPsec, anyone?
  - From: Thor Lancelot Simon
- Re: Hardware-accelerated IPsec, anyone?
  - From: der Mouse

Prev by Date: daily CVS update output
Next by Date: Re: status for Marvell Orion support
Previous by Thread: Re: Hardware-accelerated IPsec, anyone?
Next by Thread: Re: Hardware-accelerated IPsec, anyone?
Indexes:

Home | Main Index | Thread Index | Old Index