Darren J Moffat wrote: > > > > > Would those apis be exposed outside of ON? If so, wouldn't it > > create confusion for developers over which APIs to use (PKCS#11 vs > > crypto_*) ? > > I wasn't intending to expose them outside of ON. The main reason for > considering this is so that code like Kerberos and ZFS crypto isn't > #ifdef _KERNEL crypto_*() #else C_*() #endif all over the place. >
Ah, OK. In that case, I agree, it is a good idea. I had to do that all over the Kerberos code when I did the crypto stuff a few years ago, it would be nice to clean it up. -Wyllys
