At 07:09 AM 7/10/2008, Patrick Lamaizière wrote:
I've found, i think. The Geode handles only AES with a 128 bits key.
When setkey/ipsec opens a crypto session, the driver returns an error
(EINVAL) if the key length is != 128. So setkey fails.
There is no way to tell to the crypto framework that we can do only AES
with 128 bits keys. It is a problem in this case.
Hi,
Yes, that appears to be it!
I don't have any solution, I can just add a BUG section in the man
page for this case.
Perhaps just a limitation/caveat as opposed to a
bug :) Thanks for porting this over! I will
give it a try with openvpn next. Any plans to integrate it into the tree ?
---Mike
_______________________________________________
[email protected] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-stable
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
