ius-coredev team mailing list archive

Thread
Date

Re: [Question #225826]: AES-NI support for OpenSSL

To: ius-coredev@xxxxxxxxxxxxxxxxxxx
From: Jason Campbell <question225826@xxxxxxxxxxxxxxxxxxxxx>
Date: Thu, 04 Apr 2013 21:01:18 -0000
Reply-to: question225826@xxxxxxxxxxxxxxxxxxxxx
Sender: bounces@xxxxxxxxxxxxx

Question #225826 on IUS Community Project changed:
https://answers.launchpad.net/ius/+question/225826

    Status: Open => Solved

Jason Campbell confirmed that the question is solved:
After finding a Ubuntu thread, it seems the optimizations are built-in
now.  Here is benchmark comparison:

RHEL:

$ openssl speed -engine aesni aes-256-cbc
engine "aesni" set.
OpenSSL 1.0.0-fips 29 Mar 2010
built on: Fri Oct 12 05:52:01 EDT 2012
options:bn(64,64) md2(int) rc4(16x,int) des(idx,cisc,16,int) aes(partial) blowfish(idx)
compiler: gcc -fPIC -DOPENSSL_PIC -DZLIB -DOPENSSL_THREADS -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H -DKRB5_MIT -m64 -DL_ENDIAN -DTERMIO -Wall -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m64 -mtune=generic -Wa,--noexecstack -DMD32_REG_T=int -DOPENSSL_IA32_SSE2 -DOPENSSL_BN_ASM_MONT -DSHA1_ASM -DSHA256_ASM -DSHA512_ASM -DMD5_ASM -DAES_ASM -DWHIRLPOOL_ASM
The 'numbers' are in 1000s of bytes per second processed.
type             16 bytes     64 bytes    256 bytes   1024 bytes   8192 bytes
aes-256 cbc      74433.36k    80299.29k    81754.11k   172597.93k   173405.53k

IUS:

$ openssl speed aes-256-cbc
OpenSSL 1.0.1e 11 Feb 2013
built on: Wed Feb 13 11:31:32 EST 2013
options:bn(64,64) md2(int) rc4(16x,int) des(idx,cisc,16,int) aes(partial) idea(int) blowfish(idx)
compiler: gcc -fPIC -DOPENSSL_PIC -DZLIB -DOPENSSL_THREADS -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H -DKRB5_MIT -m64 -DL_ENDIAN -DTERMIO -Wall -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m64 -mtune=generic -Wa,--noexecstack -DPURIFY -DOPENSSL_IA32_SSE2 -DOPENSSL_BN_ASM_MONT -DOPENSSL_BN_ASM_MONT5 -DOPENSSL_BN_ASM_GF2m -DSHA1_ASM -DSHA256_ASM -DSHA512_ASM -DMD5_ASM -DAES_ASM -DVPAES_ASM -DBSAES_ASM -DWHIRLPOOL_ASM -DGHASH_ASM
The 'numbers' are in 1000s of bytes per second processed.
type             16 bytes     64 bytes    256 bytes   1024 bytes   8192 bytes
aes-256 cbc      74276.77k    78848.39k    81812.65k   173653.67k   171010.73k

I think that clearly falls into the margin of error, this can be
considered closed.  Thanks.

-- 
You received this question notification because you are a member of IUS
Core Development, which is an answer contact for IUS Community Project.