[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [PATCH v4 0/8] Introduce akcipher service for virtio-crypto
From: |
Paolo Bonzini |
Subject: |
Re: [PATCH v4 0/8] Introduce akcipher service for virtio-crypto |
Date: |
Tue, 12 Apr 2022 11:47:17 +0200 |
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.7.0 |
In our plan, the feature is designed for HTTPS offloading case and
other applications which use kernel RSA/ecdsa by keyctl syscall.
Hi Zhenwei,
what is the % of time spent doing asymmetric key operations in your
benchmark? I am not very familiar with crypto acceleration but my
understanding has always been that most time is spent doing either
hashing (for signing) or symmetric key operations (for encryption).
If I understand correctly, without support for acceleration these
patches are more of a demonstration of virtio-crypto, or usable for
testing purposes.
Would it be possible to extend virtio-crypto to use keys already in the
host keyctl, or in a PKCS#11 smartcard, so that virtio-crypto could also
provide the functionality of an HSM? Or does the standard require that
the keys are provided by the guest?
Paolo
- Re: [PATCH v4 3/8] crypto: Introduce akcipher crypto class, (continued)
- [PATCH v4 4/8] crypto: add ASN.1 decoder, zhenwei pi, 2022/04/11
- [PATCH v4 5/8] crypto: Implement RSA algorithm by hogweed, zhenwei pi, 2022/04/11
- [PATCH v4 6/8] crypto: Implement RSA algorithm by gcrypt, zhenwei pi, 2022/04/11
- [PATCH v4 7/8] tests/crypto: Add test suite for crypto akcipher, zhenwei pi, 2022/04/11
- [PATCH v4 8/8] crypto: Introduce RSA algorithm, zhenwei pi, 2022/04/11
- Re: [PATCH v4 0/8] Introduce akcipher service for virtio-crypto,
Paolo Bonzini <=
- PING: [PATCH v4 0/8] Introduce akcipher service for virtio-crypto, zhenwei pi, 2022/04/20