Received: by 2002:a25:8b12:0:0:0:0:0 with SMTP id i18csp1103234ybl; Fri, 30 Aug 2019 11:54:27 -0700 (PDT) X-Google-Smtp-Source: APXvYqwt15HogabU5R+uCflxBRzggZGlMvDqm0iuGYny6DqlFBFelFWcYhVRZMw0k7VQhlT2SG32 X-Received: by 2002:a62:1941:: with SMTP id 62mr19902717pfz.188.1567191267262; Fri, 30 Aug 2019 11:54:27 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1567191267; cv=none; d=google.com; s=arc-20160816; b=cUygvJLozerVB5hYvCSzJmW0kvO8OB88vi34kh275YkynDqQccPp1fblHIbELygtE1 NABeNyq4l4bngm375WbtRe20yP9TgFcXUQX0b9k943k5IkCzY7+GCgP7c+8RdgKPXeIf VXgHFB1sbaCSvBVIQdrAT2qzRMMCFAWAUM7/e2Wy+k+WoAMiJwN7lxxRqvGtz2qhSr9Q yxQWi3uGHcFzNBTeZPXOUqA0R8sPBh51yQnSO9UQNvZX7GkFyctX3f8YrrMTRxU6Zx6y b9res0uj7ruiGBe6KfDBMpbkIkhUEtI7LABMChqlQ0WBELdIJ7hwYZgxcQxPi6bmlTMH SaOw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:to:references:message-id :content-transfer-encoding:cc:date:in-reply-to:from:subject :mime-version; bh=CbuKKr8O0yFTGR3GscdZUi5vL4gWuHu1Efc47hrfPxo=; b=ur7QkSNQbGM+5he1YBLTe7g7W591pYjJwxQY8SgwevcLYaJtTidnRPqdNt7wX0uV8d /05Zp67Ga8UZLjqOKxERVNhpSbnPlhbmWpigYEHbDHWjg//zuB6pXRBfrfLg4EYUi97g HiQ68ucdYC5QJyo7nznOYoQnZmcnme0b3KbebS8LXOmr3cSkf1mYU9hu/pnhig9L0wmN z15G8Qxi2UTXQo5KmcEpEOPX4+WI5sDfU9wPYk6OBg5J+k99fSrI97ChwSwfmaxmXpnl ypVkBkz65ChjKvDAZF9kCm8gMIMjC/HFMDSaJs7qzV1bdJgRDSTIcFojPOFevT8SMOag ECzA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-bluetooth-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id m5si4894016pgp.507.2019.08.30.11.54.06; Fri, 30 Aug 2019 11:54:27 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-bluetooth-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-bluetooth-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727914AbfH3Sw3 convert rfc822-to-8bit (ORCPT + 99 others); Fri, 30 Aug 2019 14:52:29 -0400 Received: from coyote.holtmann.net ([212.227.132.17]:34661 "EHLO mail.holtmann.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1727791AbfH3Sw2 (ORCPT ); Fri, 30 Aug 2019 14:52:28 -0400 Received: from marcel-macbook.fritz.box (p4FEFC580.dip0.t-ipconnect.de [79.239.197.128]) by mail.holtmann.org (Postfix) with ESMTPSA id 3FA35CECE4; Fri, 30 Aug 2019 21:01:13 +0200 (CEST) Content-Type: text/plain; charset=us-ascii Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Subject: Re: [PATCH BlueZ] mesh: test AEAD at startup to check kernel support From: Marcel Holtmann In-Reply-To: <20190830182316.fo3nmzfvzk55rhnj@kynes> Date: Fri, 30 Aug 2019 20:52:26 +0200 Cc: Brian Gix , linux-bluetooth@vger.kernel.org, inga.stotland@intel.com Content-Transfer-Encoding: 8BIT Message-Id: <3389022D-8306-4276-A715-C2906EB0D91F@holtmann.org> References: <20190830173902.19953-1-brian.gix@intel.com> <20190830182316.fo3nmzfvzk55rhnj@kynes> To: =?utf-8?Q?Micha=C5=82_Lowas-Rzechonek?= X-Mailer: Apple Mail (2.3445.104.11) Sender: linux-bluetooth-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-bluetooth@vger.kernel.org Hi Michal, >> One time test at startup to ensure either kernel version v4.9 or later, >> *or* that required AES-CCM support has been back-ported. If support not >> there, daemon will run without providing D-Bus service or attaching to >> controllers (prevents systemd thrashing). > > By the way - I have a patch that implements all required cryptographic > operations using libcrypto, enabled by ./configure --with-openssl > (disabled by default). > > I know that last time we've talked about this, the consensus was that the > vendor should patch meshd to work on older kernels, so we did exactly > that - but maybe having this available in the mainline would be > interesting? we are not using anything from OpenSSL. That is a rabbit hole you are not getting back out of. Regards Marcel