Doug Clements <[email protected]> wrote: > I see a number of changes in the 4.8 changelog referencing additions > of AES-NI and AES-GCM. This PDF from Intel extolls the (rather > astounding) virtues for linux: > > http://edc.intel.com/Link.aspx?id=3754 > > Has anyone published any performance numbers for this on OpenBSD > running on fancy new Intel processors?
Mike Belopuhov is working on it, but AES-NI acceleration of AES-GCM isn't in the tree yet. I think it is a reasonable assumption that OpenBSD's AES-GCM IPsec performance will see a similar improvement. The GHASH part of AES-GCM is one of those algorithms that are easy to do in hardware, but are slow when implemented in software with CPU arithmetic operations. (The whole raison d'etre of AES-GCM is that it is accommodating to hardware implementations for line-speed encryption.) AES-NI support for AES-CBC and AES-CTR is already enabled. Somebody might have figures for those. -- Christian "naddy" Weisgerber [email protected]
