Re: [PATCH] /dev/crypto for Linux
From: Jeff Garzik
Date: Wed Aug 25 2004 - 09:19:20 EST
What is it good for?
One can build really light-weigth programs with crypto support that
don't need any external libraries (e.g. OpenSSL) or built-in algorithms.
Easier testing of new CryptoAPI ciphers (later also hashes and maybe
asymmetric ciphers as well).
Once, maybe, userspace access to crypto accelerators through kernel
drivers.
Let's see...
1) This increases context switches over a solution that links with
libcrypto and libssl.
2) "build really lightweight programs with crypto support" implies that
you think it's a benefit to use the kernel as your crypto lib. Shared libs
3) Your proposal actually avoids existing, working hardware crypto
support such as Broadcom's hwcrypto driver which is fully supported by
openssh.
4) "open it and use ioctls to transfer data" is typically a bad idea.
ioctl(2) is a historical Unix mistake, to be avoided where possible.
read(2)/write(2) are to be used to transfer data.
Jeff
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/