From owner-freebsd-hackers@FreeBSD.ORG Thu Sep 11 21:37:09 2014 Return-Path: Delivered-To: hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id AB4B1A58 for ; Thu, 11 Sep 2014 21:37:09 +0000 (UTC) Received: from dmz-mailsec-scanner-3.mit.edu (dmz-mailsec-scanner-3.mit.edu [18.9.25.14]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 48E7D967 for ; Thu, 11 Sep 2014 21:37:09 +0000 (UTC) X-AuditID: 1209190e-f79d46d000003643-53-541215fd6068 Received: from mailhub-auth-2.mit.edu ( [18.7.62.36]) (using TLS with cipher AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-3.mit.edu (Symantec Messaging Gateway) with SMTP id 0A.08.13891.DF512145; Thu, 11 Sep 2014 17:37:01 -0400 (EDT) Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) by mailhub-auth-2.mit.edu (8.13.8/8.9.2) with ESMTP id s8BLb0M0002096; Thu, 11 Sep 2014 17:37:01 -0400 Received: from multics.mit.edu (system-low-sipb.mit.edu [18.187.2.37]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id s8BLawqK000466 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Thu, 11 Sep 2014 17:37:00 -0400 Received: (from kaduk@localhost) by multics.mit.edu (8.12.9.20060308) id s8BLavxI014351; Thu, 11 Sep 2014 17:36:57 -0400 (EDT) Date: Thu, 11 Sep 2014 17:36:57 -0400 (EDT) From: Benjamin Kaduk To: Wojciech Puchar Subject: Re: openssl with aes-in or padlock In-Reply-To: Message-ID: References: <20140911180258.GN82175@funkthat.com> User-Agent: Alpine 1.10 (GSO 962 2008-03-14) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFupgleLIzCtJLcpLzFFi42IRYrdT0f0rKhRisOKIusWGBYUW97ueMFnc fH6MzYHZY8an+Swel09tZvZo+PWHPYA5issmJTUnsyy1SN8ugStjY99ttoLTTBVHlt9iamD8 z9jFyMkhIWAi8e32TFYIW0ziwr31bCC2kMBsJolZ76y7GLmA7I2MEpvatjJDOIeYJKadmMsC 4TQwSkycfQOsnUVAW2Jew1Iwm01ARWLmm41go0QE1CWunp4KZjML2Ej8en2NHcQWBqp/de4W C4jNCRR/2t0BFOfg4BVwlPi5KRdi/kRGiZmTJ4KdKiqgI7F6/xSwel4BQYmTM5+wQMzUklg+ fRvLBEbBWUhSs5CkFjAyrWKUTcmt0s1NzMwpTk3WLU5OzMtLLdI11svNLNFLTSndxAgKXk5J vh2MXw8qHWIU4GBU4uGtYBEMEWJNLCuuzD3EKMnBpCTKqy8iFCLEl5SfUpmRWJwRX1Sak1p8 iFGCg1lJhNdCCCjHm5JYWZValA+TkuZgURLn3fSDL0RIID2xJDU7NbUgtQgmK8PBoSTBqwOM UiHBotT01Iq0zJwShDQTByfIcB6g4b4gNbzFBYm5xZnpEPlTjMYcLU1ve5k41nV+62cSYsnL z0uVEueVAykVACnNKM2DmwZLQK8YxYGeE+YVB6niASYvuHmvgFYxAa06aMwPsqokESEl1cDI XfZuud58yZyHS/9M1pry6n1VlxGnfqlY3v/ZbPPOrvx5bHP2iQO/XL/W7Z8eLWZgtODpzuSw 3dw1D+Iqe0/1n623mJEWxL3bw0Zb5FN6jJ/pPFbT2XYfnkdrfzjN+VWA5eaUfRITtF0tvnTN 2+LuXtVQH76H6465/lKjqLIIP45wDTarQ/uVWIozEg21mIuKEwHXhVnBGwMAAA== Cc: John-Mark Gurney , hackers@freebsd.org X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Sep 2014 21:37:09 -0000 On Thu, 11 Sep 2014, Wojciech Puchar wrote: > as i already said - geli works fast and make use of AES-NI or padlock > > openssl does not The openssl from ports appears to have an option for padlock, which is disabled by default. I didn't look enough to see whether its 'ASM' option secretly meant aesni or not. -Ben