On Fri, May 24, 2019 at 11:25:52AM +0200, Ard Biesheuvel wrote: > > All userland clients of the in-kernel crypto use it specifically to > access h/w accelerators, given that software crypto doesn't require > the higher privilege level (no point in issuing those AES CPU > instructions from the kernel if you can issue them in your program > directly) Unfortunately people also use AF_ALG because they're too lazy to use a userspace crypto library, e.g. systemd uses it for HMAC-SHA256, and iproute2 uses it for SHA-1. - Eric
