No GnuPG library for now

Werner Koch wk at gnupg.org
Fri Oct 20 08:45:00 CEST 2000


On Thu, 19 Oct 2000, Russ Allbery wrote:

> I'm not sure I'm completely following what you're saying, but there are
> some real problems with the separate program approach in practice.  A fork
> consumes a lot of resources and can be difficult to manage well.

Depends on what you do.  The most resource intensive operations (in
terms of processing time) are definetly the crypto operations. There
is not much you can gain in performance if you remove the fork.  OTH
I see see the problems of a system which has to verify a lot of
signatures - If I had to to do this now, I'd write a daemon which
cares about signature verification.  And i it turns out that you are
runnin out of memory or kernel table space, there is the possibility
to add a fast verify interface to GnuPG which make gpg hanging in a
loop wait for signatures to verify.  It is not complicated to do it:
code it (g10/g10.c) and may be you have to address a few memory allocation
issues.  


    Werner


BTW, we are doing consulting and if you ask us, we can implement it
for you ;)


-- 
Werner Koch				GnuPG key:  621CC013
OpenIT GmbH                             http://www.OpenIT.de



More information about the Gnupg-devel mailing list