Current-Users archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: Hardware-accelerated IPsec, anyone?

On Tue, Jan 19, 2010 at 10:05:03PM -0500, der Mouse wrote:
 > > OpenSSL is the largest part of the problem: the OpenSSL team is
 > > basically hostile to any attempts to even discuss fixing their
 > > accelleration abstractions in a way which would make it possible to
 > > use record ops or even accelerators which support HMAC directly!
 > Maybe it's heretical of me, but this sounds to me as though we should
 > be at least thinking about putting time and effort into finding ways to
 > dump OpenSSL, then, rather than finding ways to work around it.

Given all the negative karma that seems to be gathering around OpenSSL
lately, I'm sort of inclined to agree, although I'm not in a position
to do much of anything about it.

David A. Holland

Home | Main Index | Thread Index | Old Index