Re: [PATCH] wireguard: convert index_hashtable and pubkey_hashtable into rhashtables

From: Jason A. Donenfeld
Date: Wed Sep 08 2021 - 07:27:37 EST

Next message: Pintu Agarwal: "Re: Kernel 4.14: Using dm-verity with squashfs rootfs - mounting issue"
Previous message: Paul Fertser: "Re: VUART compatibility (was: Re: [PATCH v2 0/3] arm: aspeed: Add UART routing support)"
In reply to: Hamza Mahfooz: "Re: [PATCH] wireguard: convert index_hashtable and pubkey_hashtable into rhashtables"
Next in thread: Hamza Mahfooz: "Re: [PATCH] wireguard: convert index_hashtable and pubkey_hashtable into rhashtables"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Hamza,

Thanks for this patch. I have a few concerns/questions about it:

- What's performance like? Does the abstraction of rhashtable
introduce overhead? These are used in fast paths -- for every packet
-- so being quick is important.

- How does this interact with the timing side channel concerns in the
comment of the file? Will the time required to find an unused index
leak the number of items in the hash table? Do we need stochastic
masking? Or is the construction of rhashtable such that we always get
ball-park same time?

Thanks,
Jason

Next message: Pintu Agarwal: "Re: Kernel 4.14: Using dm-verity with squashfs rootfs - mounting issue"
Previous message: Paul Fertser: "Re: VUART compatibility (was: Re: [PATCH v2 0/3] arm: aspeed: Add UART routing support)"
In reply to: Hamza Mahfooz: "Re: [PATCH] wireguard: convert index_hashtable and pubkey_hashtable into rhashtables"
Next in thread: Hamza Mahfooz: "Re: [PATCH] wireguard: convert index_hashtable and pubkey_hashtable into rhashtables"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]