KernelRequirements
Kernel Requirements
Not all features can be compiled as modules, but require some hooks/options to be present in the kernel. This page is meant to collect all such features, which would be nice to have in an official kernel release.
Please also include some short description on why this feature is really essential and should be enabled in the default kernel. Keep in mind that this is an embedded device and can't have an arbitrarily huge kernel.
Kernel options
o CONFIG_XFRM (CONFIG_NET_KEY)
XFRM is required to be able to load IPSec modules later on and can't be compiled as module (basically this enables a bunch of hooks in the IP stack). Selecting option CONFIG_NET_KEY (either built-in or as module) will enable XFRM.
There exist various user-space ipsec clients, but the opensources ones (i.e. the ones that will run on maemo) all lack support for X.509 certificates and/or RSA keys. Yet, IPSec with certificates is widely used, and can be secure in contrast to this xauth stuff.
o CONFIG_IPV6
This enables the device to use IPv6 which makes it easier to access the device in NATed environments.