Menu
▾
▴
Re: [Devil-Linux-discuss] VIA C3/C7 PadLock hardware crypto
|
From: Dmitry K. <dm...@dz...> - 2007-11-01 20:17:56
|
On Thursday 01 November 2007 21:43:24 Serge Leschinsky wrote: > Hi, > > Dmitry Komarov wrote: > > Hi, > > > > so that really confirms the fact we need this OpenSSL patchset, as you > > can see from my previous message, similar C7 board gives 10 times higher > > performance with Gentoo and OpenSSL padlock patches applied... > > Well, is it enough to apply the following patch? I mean I looked through > the mentioned page but haven't understood clearly how we should compile > padlock engine =C2=A0- static or shared. So I'm going to apply only one p= atch - > it's in the attachment because it was shrunk a bit. If the patch doesn't > break the openssl functionality I'll check in it in a day (after minimal > preliminary checking). The page also says: =3D=3D cut =3D=3D Once you get bored with patching heaps of client programs have a look at th= is=20 patch from Cecilia: openssl-0.9.8e-engine.diff, 2007-07-20 01:38 "The openssl-0.9.8e patch will make the ssl-library to load the padlock=20 engine. This means, if you apply the openssl-0.9.8e patch, you do not have = to=20 apply any other patches or modifications, since every time the ssl-library = is=20 called, the padlock-engine is initialized by the ssl-library." In other words - Patch for OpenSSL to always load PadLock engine. =3D=3D cut =3D=3D But I'm not sure if this will not break openssl functionality on systems=20 without padlock.... Should be tested. |
