sshd fails when using cryptodev-linux to compute hmac

[Chris Rapier]

On 10/9/24 1:31 PM, Peter Rashleigh wrote:

> Too bad, I was hoping it was a tested/supported configuration. Since that doesn't seem to be the case, I suspect the easiest way forward for me is going to be disabling the openssl engine entirely so that openssh works properly. I doubt that hardware-accelerated crypto is going to have much benefit for SSH workloads anyway.

That might not be entirely true. In workflows that use ssh for bulk data 
transfers the encryption method can be a bottleneck. Offloading the work 
to a hardware accelerator may improve throughput performance in these 
cases. It also would depend on what encryption method you are using. 
That said, even with transfers with sub ms RTTs hardware offloading will 
push the bottleneck to other codepaths. It's tough to get more than 
10Gbs even if your crypto can handle higher throughput.