Porting OBSD's Crypto Hardware Support To FreeBSD

← Back to Stories (view on slashdot.org)

Porting OBSD's Crypto Hardware Support To FreeBSD

Posted by timothy on Monday July 29, 2002 @07:31AM from the eyescanning dept.

Dan writes: "Sam Leffler reports in his email to freebsd-arch regarding the status of his progress porting OpenBSD hardware crypto support to FreeBSD. He's had a patch available for freebsd-stable for a while, and has made major progress changing the KAME IPSEC code to use this framework, again in the style done by openbsd (using continuations to break up the input and output packet processing paths). In addition to the IPSEC work he's been talking to various hardware vendors about support for their products in FreeBSD."

24 comments

Min score:

Reason:

Sort:

Cool... by Slipped_Disk · 2002-07-29 09:19 · Score: 2, Interesting

This would be something I would be interested in testing (if only I could get my hands on the hardware...)

I suppose I'll just have to admire from afar and drool over the cool technology that now works on my operating system (even though I can't think of any uses I personally would have for it, though I'm sure somebody can...)

Wonder how long this will take to make it into Darwin? Wonder if anyone even makes crypto hardware for apples for that matter...

--
/~mikeg
1. Re:Cool... by funky+womble · 2002-07-29 11:02 · Score: 2, Informative
  
  (if only I could get my hands on the hardware...)
  try Soekris...
Re:Elegy for *BSD by coene · 2002-07-29 14:54 · Score: 0, Flamebait

So now we are moderating the Anti-BSD trolls Score:1, Funny?
Hardware crypto support on freebsd ala rainbow by teambpsi · 2002-07-30 10:08 · Score: 4, Informative

Just saw these guys at a government security conference, they were one of the other vendors there.

They already claim to have support for all the *bsd variants, including freebsd

Rainbow's CryptoSwift

--

Old age and treachery almost always overcome youth and skill.
Cool by Anonymous Coward · 2002-07-30 11:47 · Score: 0

Mr. Leffler's one of the original BSD developers from Berkeley.
Re:open letter from NetBSD by Anonymous Coward · 2002-07-30 16:09 · Score: 0

Translation: Well, Theo might have some good security info, but if we moderate him we will look like fool ostriches with heads below sand, so we will play fair and let those helpful messages come in. Blocking OpenBSD.org was so last century.

But we don't like being jerked around, so theo is still on our public bad list. Um whee.

Alternate translation: Gee we wish we could get a cool series of art work like OpenBSD, and won't someone write a song for us and our 5 bazillion platforms? BTW next palatform is a Fender Guitar.
Re:open letter from NetBSD by voodoo1man · 2002-07-30 16:46 · Score: 3, Informative

Hmmm, could this policy change possibly be because of this?
I'm surprised there is still so much animosity between Theo and the NetBSD core developers.

--
In the great CONS chain of life, you can either be the CAR or be in the CDR.
Bloatware is a sign that an OS is dying by Anonymous Coward · 2002-08-01 12:06 · Score: 0

So sad, but true.

BSD is dying.
Where to get Crypto Cards by Anonymous Coward · 2002-08-05 17:54 · Score: 1, Informative

These Crypto cards can be a bit hard to find..

Check Point sells a re-badged Broadcom crypto accelerator that would work with these drivers (also has Linux drivers). It is based on the Broadcom 5805 chip. List price is $1K, but it is usually discounted well below that.

I have heard that they also have a new version of this card coming out based on the Broadcom 5821 chip.