Slashdot Mirror

← Back to Stories (view on slashdot.org)

FreeBSD Gets 'Fast IPsec' Implementation

Posted by michael on from the better,-faster:-pick-any-two dept.

An anonymous reader writes "Sam Leffler (yes, one of the authors of the BSD Design and Implementation book you have on your bookshelf if you know anything with operating systems) has just committed a new FAST_IPSEC implementation to the FreeBSD 5.x source tree. It's a merge of the KAME IPsec implementation and the OpenBSD hardware crypto accelerated IPsec implementation. You can read the commit message here."

4 of 62 comments (clear)

  1. Re:Things preventing me from using FreeBSD: by vadim_t · · Score: 2, Informative
    I never used FreeBSD, but your /bin/cp problem is simple: you're bumping into the command line length limit. It exists in Linux too, although from what you say it's larger. Just work around it, for example:
    find . -exec cp {} /mp3 ';'
  2. Re:Things preventing me from using FreeBSD: by Anonymous Coward · · Score: 1, Informative

    For my SB Live card I get a bunch of devices for the different channels/mixers. Take a look inside /dev/MAKEDEV :) You'll figure it out.

  3. Re:Things preventing me from using FreeBSD: by Anonymous Coward · · Score: 1, Informative

    It has nothing to do with GNU tools; it's a kernel limit, ARGS_MAX. You are limited to 65536 bytes of arguments (including the NUL at the end of each arg string). If you built GNU cp on FreeBSD (you can, you know) you'd see the exact same limit.

    You could try rebuilding the kernel with a larger ARGS_MAX, but if you want a general solution (i.e. one that's entirely unlimited) it's best to look into solutions such as a "find" and "xargs" pipeline. (Invoking cp for each file, as the grandparent post suggests, is going to be pretty inefficient.)

  4. Re:Cool! by Anonymous Coward · · Score: 1, Informative

    Compiles fine on my machine. The trick is to keep up with the mail lists for CURRENT and /usr/src/UPDATING.