Thor Lancelot Simon wrote: > On Tue, Jun 07, 2011 at 10:58:20PM -0600, Guan Jun He wrote: > > Hi, Openssl Developpers: > > > > We have a platform with cryptographic hardware,and we try to take > > advantage > > of the platform's hardware cryptographic features.But openSSL compresses > > data > > before the encryption, having a massive performance impact(throughput > > decrease, > > CPU load increase) on platforms with cryptographic hardware. > > > > There are probably two methords to work-around it: > > * environment variable, the attached patch is written for this methord. > > it's produced against oepnssl version 0.9.8, it other versions also need > > the > > patch,we are glad to submit it. > > * add an item to configure file openssl.cnf. > > > > What do you think about this? > > Again, I think this should be configured via an option on the SSL_CTX.
There is no way to set the default context options via config file though, right? So every application would need to be patched. cu Ludwig -- (o_ Ludwig Nussel //\ V_/_ http://www.suse.de/ SUSE LINUX Products GmbH, GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 16746 (AG Nürnberg) ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
