Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 21 Jun 2001 13:15:12 -0700
From:      Kris Kennaway <kris@obsecurity.org>
To:        Terry Lambert <tlambert2@mindspring.com>
Cc:        Giorgos Keramidas <keramida@ceid.upatras.gr>, Kris Kennaway <kris@obsecurity.org>, Peter Wemm <peter@wemm.org>, Steve Kargl <sgk@troutmask.apl.washington.edu>, current@FreeBSD.ORG
Subject:   Re: convert libgmp to a port?
Message-ID:  <20010621131512.A52345@xor.obsecurity.org>
In-Reply-To: <3B2FABA8.D439B306@mindspring.com>; from tlambert2@mindspring.com on Tue, Jun 19, 2001 at 12:44:40PM -0700
References:  <20010616201135.A60010@troutmask.apl.washington.edu> <20010617063845.E53DA39E9@overcee.netplex.com.au> <20010617182256.A17724@hades.hell.gr> <20010617135156.B94632@xor.obsecurity.org> <20010618010338.A50655@hades.hell.gr> <3B2FABA8.D439B306@mindspring.com>

next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Jun 19, 2001 at 12:44:40PM -0700, Terry Lambert wrote:
> Giorgos Keramidas wrote:
> > 
> > On Sun, Jun 17, 2001 at 01:51:56PM -0700, Kris Kennaway wrote:
> > 
> > > libbn is already part of OpenSSH; it's a trivial matter to make it
                               ^^^^^^^
I meant to say OpenSSL here, of course.

> > > into a standalone library.  In other words, we already include two
> > > functionally equivalent bignum libraries in FreeBSD, so one of them
> > > should go.
> > 
> > I couldn't agree more :)
> 
> I'm going to word this strongly, mostly because I feel
> strongly about the underlying issues.
> 
> The SSL one is known to be very slow, and was written
> as a proof of concept by the author.  Please read the
> release notes; it is seriously slow.  Replacing it will
> increase your SSL performance significantly.

I know of no-one who has developed patches to make OpenSSL work with
an external math library (e.g. libgmp).  The OpenSSL guys are very
interested in cleaning up their legacy code; you should work with them
if you are interested.

In FreeBSD, the only use of the libgmp code is for non-speed-critical
applications, so replacing it with a less efficient library doesn't
cost anything.  libgmp will still exist in ports for applications
which want to make use of a more efficient library.

Kris

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010621131512.A52345>