[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Single IP multiple OR Ports

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] Single IP multiple OR Ports
From: Andy Isaacson <adi@xxxxxxxxxxxxx>
Date: Tue, 4 Mar 2014 13:05:38 -0800
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 04 Mar 2014 16:15:55 -0500
In-reply-to: <CAAruNv28jwE8i=tMJxuf+nVEL14ayAyyrcY7ihXXyoU3=0hKcw@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <20140303235326.00003eb5@xxxxxxxxxxxxxxxx> <531512DA.3050902@xxxxxxxxxxxxxx> <CAAruNv3zoG=d45TwtWKs4vBcUHdTWjJmPpDdkJf0DSzRO13Lfg@xxxxxxxxxxxxxx> <53158A62.1010306@xxxxxxxxxxxxxx> <CAAruNv28jwE8i=tMJxuf+nVEL14ayAyyrcY7ihXXyoU3=0hKcw@xxxxxxxxxxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mutt/1.5.20 (2009-06-14)

On Tue, Mar 04, 2014 at 01:00:15PM +0100, toxi roxi wrote:
> i know that link and thats what i have done to setup intel aesni
> acceleration - but it seems that this tweak is not available anymore on
> ubuntu 13.10 thats what i've meant.

As Moritz says, the *config* is removed, because aes-ni is no longer a
*separate* module, it's built in to core openssl.

> i found also some hints in google that this is no longer working now.
> 
> this is in my startup log:
> Mar 04 11:54:24.000 [warn] Unable to load dynamic OpenSSL engine "aesni".
> Mar 04 11:54:24.000 [notice] Default OpenSSL engine for RSA is RSAX engine
> support [rsax]
> Mar 04 11:54:24.000 [warn] TLS error while generating certificate: could
> not load the shared library (in DSO support routines:DLFCN_LOAD:---)
> Mar 04 11:54:24.000 [warn] TLS error while generating certificate: could
> not load the shared library (in DSO support routines:DSO_load:---)
> Mar 04 11:54:24.000 [warn] TLS error while generating certificate: dso not
> found (in engine routines:DYNAMIC_LOAD:---)
> Mar 04 11:54:24.000 [warn] TLS error while generating certificate: no such
> engine (in engine routines:ENGINE_by_id:---)
> 
> 
> but as you can see aesni_intel is activated:
> lsmod | grep aes
> aesni_intel            55624  0

Note that the kernel module is not required for openssl, instead you
just need to verify that aes is in /proc/cpuinfo:

grep --color aes /proc/cpuinfo

(The aesni_intel kernel module gives you faster encrypted disks and
similar in-kernel cryptography systems.  The "aes cpuflag" ensures that
the AES-NI instructions are available to applications.)

-andy
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- [tor-relays] Single IP multiple OR Ports
  - From: Felix
- Re: [tor-relays] Single IP multiple OR Ports
  - From: Moritz Bartl
- Re: [tor-relays] Single IP multiple OR Ports
  - From: toxi roxi
- Re: [tor-relays] Single IP multiple OR Ports
  - From: Moritz Bartl
- Re: [tor-relays] Single IP multiple OR Ports
  - From: toxi roxi

Prev by Author: Re: [tor-relays] Is Kaspersky right to be concerned?
Next by Author: Re: [tor-relays] Is Kaspersky right to be concerned?
Previous by thread: Re: [tor-relays] Single IP multiple OR Ports
Next by thread: [tor-relays] Exit Relay on VPS by WEDOS
Index(es):
- Author
- Thread