On Thu, Dec 03, 2015 at 06:38:20AM -0500, Sowmini Varadhan wrote: > On (12/03/15 09:45), Steffen Klassert wrote: > > pcrypt(echainiv(authenc(hmac(sha1-ssse3),cbc-aes-aesni))) > > > > Result: > > > > iperf -c 10.0.0.12 -t 60 > > ------------------------------------------------------------ > > Client connecting to 10.0.0.12, TCP port 5001 > > TCP window size: 45.0 KByte (default) > > ------------------------------------------------------------ > > [ 3] local 192.168.0.12 port 39380 connected with 10.0.0.12 port 5001 > > [ ID] Interval Transfer Bandwidth > > [ 3] 0.0-60.0 sec 32.8 GBytes 4.70 Gbits/sec > > > > I provide more informatios as soon as the code is available. > > that's pretty good compared to the baseline. This is GRO in combination with a pcrypt parallelized crypto algorithm, without the parallelization GRO/GSO does not help because crypto is the bottleneck then. > I'd like to try out our patches, when they are ready. I've pushed it to https://git.kernel.org/cgit/linux/kernel/git/klassert/linux-stk.git/log/?h=net-next-ipsec-offload It is just example code, nothing that I would show usually. But you asked for it, so here is it :) The GRO part seems to work well, the GSO part is just a hack at the moment. -- To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html