search

ibmruntimes / openj9-openjdk-jdk11

Extensions for OpenJDK 11 for Eclipse OpenJ9
GNU General Public License v2.0
31 stars 112 forks source link

Optimize AES/CBC cipher initialization #700

Closed jasonkatonica closed 1 year ago

jasonkatonica commented 1 year ago

The EVP cipher initialization cost has been found to be expensive in the OpenSSL 3.x API compared to the OpenSSL 1.x API.

This update allows for two different types of initializations to occur. The first initialization type is a full initialization which sets the key, iv, and EVP cipher context. The second type of initialization sets just the key and iv and does NOT recreate and reinitialize the EVP context. The former of these two is required once per Cipher instance, the later of these two can be used whenever we are reusing a specific Java cipher object within methods such as Cipher.doFinal().

Signed-off by: Jason Katonica katonica@us.ibm.com

keithc-ca commented 1 year ago

Please correct the signed-off by line in the commit message (<> are missing).

keithc-ca commented 1 year ago

Jenkins compile win jdk11

keithc-ca commented 1 year ago

Testing of jdk_security{1,2,3} passed in https://openj9-jenkins.osuosl.org/job/Grinder/2872.