Project

General

Profile

Actions

Feature #4010

open

OpenVPN always loads engines available on openssl

Added by Ermal Luçi about 10 years ago. Updated over 8 years ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
OpenVPN
Target version:
-
Start date:
11/14/2014
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:

Description

OpenVPN uses EVP API and always loads all available engines and tries to use them.
In the case of aesni for AES* the cryptodev engine is slower than openssl userland implementation
glsxb(4) does not support all crypto operations of AES-256 and breaks openvpn.

The improvement is to add a patch to support engine none to disable the loading of the engines.

Actions

Also available in: Atom PDF