No GnuPG library for now

Werner Koch wk@gnupg.org
Fri, 20 Oct 2000 07:45:00 +0200


On Thu, 19 Oct 2000, Russ Allbery wrote:


> I'm not sure I'm completely following what you're saying, but there are
> some real problems with the separate program approach in practice. A fork
> consumes a lot of resources and can be difficult to manage well.
Depends on what you do. The most resource intensive operations (in terms of processing time) are definetly the crypto operations. There is not much you can gain in performance if you remove the fork. OTH I see see the problems of a system which has to verify a lot of signatures - If I had to to do this now, I'd write a daemon which cares about signature verification. And i it turns out that you are runnin out of memory or kernel table space, there is the possibility to add a fast verify interface to GnuPG which make gpg hanging in a loop wait for signatures to verify. It is not complicated to do it: code it (g10/g10.c) and may be you have to address a few memory allocation issues. Werner BTW, we are doing consulting and if you ask us, we can implement it for you ;) -- Werner Koch GnuPG key: 621CC013 OpenIT GmbH http://www.OpenIT.de