Well, in case of WireGuard if used as user space app, you would need to copy eve... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		lossolo on Aug 10, 2018 \| parent \| context \| favorite \| on: WireGuarding the mainline Well, in case of WireGuard if used as user space app, you would need to copy every invalid (by WG definition) packet from kernel space to user space to discard it instead of dropping it in kernel space. You would need to copy a lot of packets, that do not need to be copied to user space, instead of just processing them in kernel space.

Animats on Aug 10, 2018 [–]

Copying of recent data is cheap. It's already in cache. Fear of copying in microkernels comes mostly from Mach, which was decades ago.

lossolo on Aug 17, 2018 | [–]

You need to make context switches which are not cheap.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact