[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor and AES-NI acceleration , and Tor profiling

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Tor and AES-NI acceleration , and Tor profiling
From: Nick Mathewson <nickm@xxxxxxxxxxxxx>
Date: Sun, 20 Nov 2011 20:23:24 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 20 Nov 2011 20:23:38 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type :content-transfer-encoding; bh=+IJlsOqINvbd5CEIrB8KTNN/soPpsgvD0TTMlRJTHeY=; b=pfWTk5rRLVDX95RgFic10t+qLkhtgK2dJ7vAvu7Hoaoyl3EzeK8aME3xMPqgC/255z X71xD27ZFfLlYIBUmvlSfKul7QtgMUdEy2K/eMyOCfjviWVHZfHljtjpqTC3U/fK3GwK Ol/N/O2lnUzozaSoYkRuCUD+vKwpU7iiubCOM=
In-reply-to: <CACsn0c=OWcy_iMxkq-OKnTngVz44PCARj1+AQgab9kAejDb8CQ@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <4EB73B13.80202@xxxxxxxxxxxxxx> <CAKDKvuzPyJAmVDRPgP51ji+9VW5CdyDbjA+hX_NoxQLExg6Jiw@xxxxxxxxxxxxxx> <CAKDKvuyN5y3GM9WDEAUsdU+soUhiZ9Eu1EtOrqFTLUe6We_11w@xxxxxxxxxxxxxx> <CACsn0c=OWcy_iMxkq-OKnTngVz44PCARj1+AQgab9kAejDb8CQ@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

On Nov 20, 2011 8:47 AM, "Watson Ladd" <watsonbladd@xxxxxxxxx> wrote:
>
> So why doesn't aes.c use the same thing as is initialized in crypto.c?

Because, according to our benchmarks, on systems *without* aesni or
other hardware acceleration, using the AES_* functions is actually
faster than the EVP_* ones. (By about 5%.)  Since the function is
critical path, we want to use the fastest variant we can.

I think the right solution here is going to wind up involving checking
whether an AES engine is in use, and if so using EVP_, otherwise using
AES_.

Additionally, while our counter-mode implementation is much faster
than older openssl's, it seems like openssl got a faster counter-mode
implementation around 1.0.0; we should use that one instead where
available.

cheers,
-- 
Nick
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Tor and AES-NI acceleration , and Tor profiling
  - From: Moritz Bartl
- Re: [tor-talk] Tor and AES-NI acceleration , and Tor profiling
  - From: Nick Mathewson
- Re: [tor-talk] Tor and AES-NI acceleration , and Tor profiling
  - From: Nick Mathewson
- Re: [tor-talk] Tor and AES-NI acceleration , and Tor profiling
  - From: Watson Ladd

Prev by Author: Re: [tor-talk] Tor and AES-NI acceleration , and Tor profiling
Next by Author: Re: [tor-talk] MapAddress and AllowDotExit
Previous by thread: Re: [tor-talk] Tor and AES-NI acceleration , and Tor profiling
Next by thread: Re: [tor-talk] Tor and AES-NI acceleration , and Tor profiling
Index(es):
- Author
- Thread