mbedtls does seem to support it from whatever little I have read in their docs.
But in my testing on the same hardware OpenVPN is giving 3-4 times less
throughput when compiled against mbedtls in comparison to compiling with
OpenSSL. This makes me feel that mbedtls just isn't utilizing AES-NI (is there
a way to check?) or there could be other reasons?
----- Original message -----
From: Gert Doering <g...@greenie.muc.de>
To: RA <s...@fea.st>
Cc: openvpn-users@lists.sourceforge.net
Subject: Re: [Openvpn-users] Hardware acceleration possible with mbed TLS ?
Date: Monday, March 25, 2019 2:14 PM
Hi,
On Sun, Mar 24, 2019 at 08:42:52PM -0400, RA wrote:
> It looks like OpenVPN's integration with mbed TLS library doesn't support
> hardware acceleration (AES-NI etc). Is that right? If yes, any way/plans to
> implement that?
As far as I understand, it's not OpenVPN who can do anything about it - the
crypto library uses AES-NI or not, and OpenVPN will benefit from it (or not).
gert
--
"If was one thing all people took for granted, was conviction that if you
feed honest figures into a computer, honest figures come out. Never doubted
it myself till I met a computer with a sense of humor."
Robert A. Heinlein, The Moon is a Harsh Mistress
Gert Doering - Munich, Germany g...@greenie.muc.de
Attachments:
* signature.asc
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
