Re: OpenSSL + opencrypto

To: Jason Thorpe <thorpej%wasabisystems.com@localhost>
Subject: Re: OpenSSL + opencrypto
From: Jonathan Stone <jonathan%DSG.Stanford.EDU@localhost>
Date: Wed, 27 Aug 2003 17:07:03 -0700

>Anyway, from this info, it would be nice to put some intelligence in 
>libcrypto so it could decide when to use an engine and when to use the 
>base libcrypto software implementation of the transform.

``What he said''. Seriously, thanks for pre-empting me on this one
:-/.  I'd already been concerned about the impact on Heimdal, where we
know upfront that DES operations on short blocks (an MD5 hash) are fairly 
common.

NB: the kernel currently honours requests on /dev/crypto transforms
which end up being handled in software. That's a
performance-measurement hack: both FreeBSD and OpenBSD disallow
/dev/crypto access to software operations.  I'd planned to turn them
off just before the openssl libcrypto patches go in.

Follow-Ups:
- Re: OpenSSL + opencrypto
  - From: Jun-ichiro itojun Hagino
- Re: OpenSSL + opencrypto
  - From: Jason Thorpe

References:
- OpenSSL + opencrypto
  - From: Jason Thorpe

Prev by Date: OpenSSL + opencrypto
Next by Date: Re: OpenSSL + opencrypto
Previous by Thread: OpenSSL + opencrypto
Next by Thread: Re: OpenSSL + opencrypto
Indexes:

Home | Main Index | Thread Index | Old Index