On Thu, 23 Oct 2008 16:12:22 -0700 "Barry G" <mr.scada@xxxxxxxxx> wrote: > I wanted to enable the Talitos driver for hw entropy. If I rebuild > the kernel with > CONFIG_CRYPTO_DEV_TALITOS set to y, strongswan still successfully negotiates > an IPsec SA, but no traffic flows. does no traffic flow at all or is it all getting dropped? > Also, is it correct that Talitos only accelerates AEAD connections, not ESP/AH > protocols so there will be no performance increase for me until Strongswan > adds rfc5282 support? I'm not sure what you mean here; talitos supports aes-cbc but doesn't support aes-ccm nor aes-gcm. > auth hmac(sha256) > 0xffab7c320d8375cad9633af7c67d923df47183296b9eb8a25fca5c8e5670e8ac can you try hmac(sha1) until I get a decent setkey? Kim -- To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
