You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
43 lines
1.8 KiB
43 lines
1.8 KiB
if PACKAGE_libopenssl-afalg_sync
|
|
comment "Build Options"
|
|
|
|
config AFALG_DIGESTS
|
|
bool "Build support for digest acceleration"
|
|
help
|
|
Digests are fast in software, and accessing AF_ALG adds latency, so
|
|
you'll need a large request (16KB) just to match software speed.
|
|
This increases memory usage, and has problems when process fork
|
|
with open digest contexts (openssh will not work because of it).
|
|
|
|
config AFALG_FALLBACK
|
|
bool "Enable software fallback feature"
|
|
default y
|
|
help
|
|
Use software to fulfill small requests. Using AF_ALG adds latency,
|
|
which makes it slow to perform small requests. Enabling this
|
|
option overcomes this problem, at the cost of increased memory
|
|
and CPU usage. This is a new, experimental feature; if you
|
|
encounter any problem, this is the first option to disable.
|
|
The fallback will fail if you enable this engine alongside
|
|
devcrypto, so you'll not be able to install both at the same
|
|
time if this option is enabled.
|
|
|
|
config AFALG_UPDATE_CTR_IV
|
|
bool "Don't rely on kernel to update CTR IV"
|
|
default y
|
|
help
|
|
Don't count on the kernel driver to update the CTR-mode counter
|
|
(IV). At least one driver does not update the IV as a workaround
|
|
for DMA issues. With this option turned on, the engine will keep
|
|
track of the counter, and the IV will be sent with every update.
|
|
If fallback is enabled, then the counter needs to be updated by
|
|
the engine anyway, and sent with the request everytime there's a
|
|
switch from software to hardware, so this won't bring much gain in
|
|
that case.
|
|
|
|
config AFALG_ZERO_COPY
|
|
bool "Use Zero-Copy Mode"
|
|
help
|
|
Uses a Zero-Copy interface. Even though it is supposed to improve
|
|
performance, actual measurements indicate otherwise.
|
|
endif
|