You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@trafficserver.apache.org by "Bryan Call (JIRA)" <ji...@apache.org> on 2015/05/01 01:38:07 UTC

[jira] [Updated] (TS-3576) Remove the need for FIPS locking for OpenSSL

     [ https://issues.apache.org/jira/browse/TS-3576?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Bryan Call updated TS-3576:
---------------------------
    Summary: Remove the need for FIPS locking for OpenSSL  (was: Remove the need for FIPS locking in OpenSSL)

> Remove the need for FIPS locking for OpenSSL
> --------------------------------------------
>
>                 Key: TS-3576
>                 URL: https://issues.apache.org/jira/browse/TS-3576
>             Project: Traffic Server
>          Issue Type: Improvement
>          Components: SSL
>            Reporter: Bryan Call
>             Fix For: 6.0.0
>
>
> I was talking to John Foley on the OpenSSL mailing list and he said we can eliminate the FIPS lock after the FIPS POST has been completed.
> The FIPS locks (CRYPTO_LOCK_FIPS & CRYPTO_LOCK_FIPS2) have had the most lock contention on all the locks in the benchmarking I have been doing in the lab on 56 core, 10Gige boxes.
> I have been testing a patch and the results have been very good.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)