Re: misc/132277: poor performance using criptodevice for IPSEC
- From: Patrick Lamaizière <patfbsd@xxxxxxxxxxxxx>
- Date: Sat, 14 Mar 2009 12:10:03 GMT
The following reply was made to PR kern/132277; it has been noted by GNATS.
From: Patrick =?ISO-8859-15?Q?Lamaizi=E8re?= <patfbsd@xxxxxxxxxxxxx>
Cc: Vasile Marii <marii.vasile@xxxxxxxxx>
Subject: Re: misc/132277: poor performance using criptodevice for IPSEC
Date: Sat, 14 Mar 2009 13:05:52 +0100
Le Sun, 8 Mar 2009 20:00:11 GMT,
Patrick Lamaizière <patfbsd@xxxxxxxxxxxxx>:
I've made some tests on IPsec with glxsb and the performances are
very bad (around 14 Mbits).
I think the problem is that glxsb handles only one request at a time.
When it is busy, it blocks the Open Crypto Framework with ERESTART
and it unblocks the OCF when the previous request is completed. Then
the OCF has to wake up and to resubmit the request. It looks like
this performs very badly when using it with IPsec.
If glxsb processes the requests synchronously it performs quite
better, around 50 Mbits.
I've filled a PR with a patch for glxb(4): kern/132622
freebsd-net@xxxxxxxxxxx mailing list
To unsubscribe, send any mail to "freebsd-net-unsubscribe@xxxxxxxxxxx"
- Prev by Date: Re: IGMP+WiFi panic on recent kernel - in igmp_fasttimo()
- Next by Date: Re: kern/132625: [iwn] iwn drivers don't support setting country
- Previous by thread: Re: misc/132277: poor performance using criptodevice for IPSEC
- Next by thread: Re: kern/132342: commit references a PR