From owner-freebsd-hackers@FreeBSD.ORG  Wed Mar  2 11:40:46 2005
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 1166B16A4CE
	for <hackers@freebsd.org>; Wed,  2 Mar 2005 11:40:46 +0000 (GMT)
Received: from critter.freebsd.dk (f170.freebsd.dk [212.242.86.170])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 359CC43D1D
	for <hackers@freebsd.org>; Wed,  2 Mar 2005 11:40:45 +0000 (GMT)
	(envelope-from phk@critter.freebsd.dk)
Received: from critter.freebsd.dk (localhost [127.0.0.1])
	by critter.freebsd.dk (8.13.1/8.13.1) with ESMTP id j22BeeWl069009;
	Wed, 2 Mar 2005 12:40:40 +0100 (CET)
	(envelope-from phk@critter.freebsd.dk)
To: "ALeine" <aleine@austrosearch.net>
From: "Poul-Henning Kamp" <phk@phk.freebsd.dk>
In-Reply-To: Your message of "Tue, 01 Mar 2005 07:37:38 PST."
             <200503011537.j21FbcmA055696@marlena.vvi.at> 
Date: Wed, 02 Mar 2005 12:40:40 +0100
Message-ID: <69008.1109763640@critter.freebsd.dk>
Sender: phk@critter.freebsd.dk
cc: hackers@freebsd.org
Subject: Re: FUD about CGD and GBDE 
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 02 Mar 2005 11:40:46 -0000

In message <200503011537.j21FbcmA055696@marlena.vvi.at>, "ALeine" writes:

>1. Introducing a sysctl variable to control how often (after how many writes)
>the random key is regenerated:
>
>kern.geom.bde.random_key_regeneration_cycle
>
>The way it works now would correspond to the value being 1 with
>regeneration happening on every write. Setting this higher would
>improve the performance and people could decide for themselves
>what value fits their needs.

I don't really think you would gain any performance, but I am open
to benchmarks proving me wrong.

>2. Backporting to 4.x - this has more or less come to the point that
>I would rather write the whole thing from scratch, similar to vncrypt
>(ports/security/vncrypt), only implementing the main principles found
>in GBDE.

I wouldn't bother.  4.x is nearing the EOL and you wouldn't get
much useful lifetime out of it.  It wouldn't be too much work to
do it however.

-- 
Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk@FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD committer       | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.