Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1753660Ab0HWJe5 (ORCPT ); Mon, 23 Aug 2010 05:34:57 -0400 Received: from mail-qy0-f181.google.com ([209.85.216.181]:55948 "EHLO mail-qy0-f181.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751762Ab0HWJez convert rfc822-to-8bit (ORCPT ); Mon, 23 Aug 2010 05:34:55 -0400 DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=OKdkUHSsEwOqAmm5XueELlNA177JlzRwNGAqOsKw9dXdK+OJqsiij4kV29GlR+giAE 9a80dlReZUA9wSx4c+eyOU4ICeCSFbCGXTRBG2ePXhVlA0i+92xjzcuwgwrwh1n5525I q3QIgmUYEchvDHdM/eq9OpNQrISOXHy7oKTI4= MIME-Version: 1.0 In-Reply-To: <201008231009.55037.arnd@arndb.de> References: <1282293963-27807-1-git-send-email-mitr@redhat.com> <201008211908.03705.arnd@arndb.de> <4C70D72E.2040605@gmail.com> <201008231009.55037.arnd@arndb.de> Date: Mon, 23 Aug 2010 11:34:54 +0200 Message-ID: Subject: Re: [PATCH 00/19] RFC, v2: "New" /dev/crypto user-space interface From: Nikos Mavrogiannopoulos To: Arnd Bergmann Cc: =?UTF-8?Q?Miloslav_Trma=C4=8D?= , Herbert Xu , linux-crypto@vger.kernel.org, Neil Horman , linux-kernel@vger.kernel.org Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8BIT Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 1230 Lines: 25 On Mon, Aug 23, 2010 at 10:09 AM, Arnd Bergmann wrote: >> This is an alternative design. There quite some reasons against that, >> such as the auditing features. For me the main reason was  that there >> was no way to make it as fast (zero-copy) as this design, for the >> requirements we had (interface with existing crypto libraries through >> pkcs11). Zero-copy is important since crypto operations might involve >> large chunks of data. > You mean using a shared memory segment would not be possible without changing > the libpkcs11 interface? Indeed. The pkcs11 backend would have to copy the data to the shared segment, thus high-performance applications requiring zero-copy, would avoid to use this interface. Moreover if more than one applications are using the interface, the shared segment it is going to be a bottleneck. Having multiple shared segments might help, but I don't know how practical is something like that with the posix ipc. regards, Nikos -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/