-----BEGIN PGP SIGNED MESSAGE----- I am working on a revision to the crypto-API - specifically a lower-level access API that would permit asynchronous operations as well as combination operations. Most is inspired from the work that Bart did last summer. We need this for IPsec. Sleeping is just not in for code that may get called from interrupts in some circumstances. It needs to have a callback. Combination operations mean doing things like digest and encryption in one pass. There is existing hardware that can do this. The IPsec aware hardware can often lookup the crypto context from the SPI# and load it. My questions are about the disk I/O work, and whether there might be any benefit from any of these things to that. Finally, many pieces of hardware offer diffie-hellman and RSA accelerators as well. Does anyone have any thoughts on interfaces to these? In initial cases this is used only by user space programs - a simple device driver may suffice. However, dealing with signed binaries and capabilities would require kernel access as well. ] ON HUMILITY: to err is human. To moo, bovine. | firewalls [ ] Michael Richardson, Sandelman Software Works, Ottawa, ON |net architect[ ] mcr@sandelman.ottawa.on.ca http://www.sandelman.ottawa.on.ca/ |device driver[ ] panic("Just another NetBSD/notebook using, kernel hacking, security guy"); [ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) Comment: Finger me for keys iQCVAwUBPSWSaIqHRg3pndX9AQESAQP+Ksd7h9bZPzkE8O/KpLpa5lVk9cVxvWm4 ZTkRuNv2EToBCHhsNgPls/73aB8L2Spd3n0KkmmX7l0lt8puS7fy3NVnCEpn5b3f utyo6wqGnnhHY6nSdm9nJDaDD4cv7IqkHOTs1R3mi2BguzjLxRXFa31+rUkUqqdh PvjAcsoKtEA= =Ju3O -----END PGP SIGNATURE----- - Linux-crypto: cryptography in and on the Linux system Archive: http://mail.nl.linux.org/linux-crypto/
