[Ocf-linux-users] A quick question about cryptodev openssl engine.
Brought to you by:
david-m
Menu
▾
▴
[Ocf-linux-users] A quick question about cryptodev openssl engine.
|
From: Liu H. <onl...@gm...> - 2011-07-30 03:41:41
|
Hi David and all. I take a loot at the source code of cryptodev openssl engine and have one question. OCF-Linux has a good framework for IPSEC combination request, for example, if 3des+sha1 comes, ocf-driver can handle them in one operation. So some hardware which support combination request, this is very convenient because they don't have to do the request for two times. And it also save a lot time for memory copy. But openssl engine mechanism seems to can't handle combination request, they only can pass crypt and hash request separately to the cryptodev. So, driver and hardware have to operate twice instead of one. Is this a restrict of OPENSSL engine mechanism? If so, the cryptodev engine have to follow this restrict. Am I right? And I don't understand, why the famous OPENSSL doesn't consider the combination request in its engine mechanism? This is very important for performance. Much appreciated! Hui -- Thanks & Best Regards Liu Hui -- |
