[Swan] NetKey vs KLIPS
Lennart Sorensen
lsorense at csclub.uwaterloo.ca
Thu Sep 11 22:05:45 EEST 2014
On Thu, Sep 11, 2014 at 05:10:23PM +0100, Lawrence Manning wrote:
> Interesting. One would think this would be a problem for KLIPS not NETKEY, since NETKEY is “core” kernel code.
OCF is NOT in linux, it is a BSD interface and has been rejected from
linux (It is ioctl based and linux doesn't want any new features with
ioctl interfaces). Linux has it's own crypto interface. Perhaps klips
could be made to use it. Of course on many systems doing software crypto
is often faster than using the hardware crypto, although sometimes you
want to avoid wasting cpu resources on it if you can.
--
Len Sorensen
More information about the Swan
mailing list