OpenVPN cryptodev


(Josué) #1

Hello,

Actually I use the kernel 4.14 from @frank-w on bananapiR2.

I discovered that openvpn didn’t detect the cryptodev engine. But openssl as crytodev enabled.

root # openssl engine -tt -v -c
(cryptodev) BSD cryptodev engine
 [RSA, DSA, DH, DES-CBC, DES-EDE3-CBC, AES-128-CBC, AES-192-CBC, AES-256-CBC, hmacWithMD5, hmacWithSHA1, MD5, SHA1]
     [ available ]
(dynamic) Dynamic engine loading support
     [ unavailable ]
     SO_PATH, NO_VCHECK, ID, LIST_ADD, DIR_LOAD, DIR_ADD, LOAD
root # openvpn --show-engines
OpenSSL Crypto Engines

Dynamic engine loading support [dynamic]

Do you have any idea thy openssl detect cryptodev but not openssl ?


(Frank W.) #2

imho openssl has to be compiled with cryptodev-support maybe it’s the same for openvpn


(Josué) #3

I have tried to find all build option in openvpn and I didn’t found anything about that.