Project

General

Profile

Actions

Feature #4010

open

OpenVPN always loads engines available on openssl

Added by Ermal Luçi about 7 years ago. Updated over 5 years ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
OpenVPN
Target version:
-
Start date:
11/14/2014
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:

Description

OpenVPN uses EVP API and always loads all available engines and tries to use them.
In the case of aesni for AES* the cryptodev engine is slower than openssl userland implementation
glsxb(4) does not support all crypto operations of AES-256 and breaks openvpn.

The improvement is to add a patch to support engine none to disable the loading of the engines.

Actions #1

Updated by Ermal Luçi about 7 years ago

  • Category set to OpenVPN
Actions #2

Updated by Chris Buechler over 5 years ago

  • Tracker changed from Bug to Feature
  • Assignee deleted (Chris Buechler)
Actions

Also available in: Atom PDF