Re: [PATCH 1/2] CryptoAPI: prepare for processing multiple buffersat a time

From: Michal Ludvig
Date: Fri Jan 14 2005 - 11:45:12 EST

Next message: Jüri Põldre: "Ethernet driver link state propagation to ip stack"
Previous message: linux-os: "Re: Random packets loss under x86_64 - routing?"
In reply to: Fruhwirth Clemens: "Re: [PATCH 1/2] CryptoAPI: prepare for processing multiple buffersat a time"
Next in thread: Fruhwirth Clemens: "Re: [PATCH 1/2] CryptoAPI: prepare for processing multiple buffersat a time"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 14 Jan 2005, Fruhwirth Clemens wrote:

> On Fri, 2005-01-14 at 14:10 +0100, Michal Ludvig wrote:
>
> > This patch extends crypto/cipher.c for offloading the whole chaining modes
> > to e.g. hardware crypto accelerators. It is much faster to let the
> > hardware do all the chaining if it can do so.
>
> Is there any connection to Evgeniy Polyakov's acrypto work? It appears,
> that there are two project for one objective. Would be nice to see both
> parties pulling on one string.

These projects do not compete at all. Evgeniy's work is a complete
replacement for current cryptoapi and brings the asynchronous
operations at the first place. My patches are simple and straightforward
extensions to current cryptoapi that enable offloading the chaining to
hardware where possible.

> > + void (*cia_ecb)(void *ctx, u8 *dst, const u8 *src, u8 *iv,
> > + size_t nbytes, int encdec, int inplace);
> > + void (*cia_cbc)(void *ctx, u8 *dst, const u8 *src, u8 *iv,
> > + size_t nbytes, int encdec, int inplace);
> > + void (*cia_cfb)(void *ctx, u8 *dst, const u8 *src, u8 *iv,
> > + size_t nbytes, int encdec, int inplace);
> > + void (*cia_ofb)(void *ctx, u8 *dst, const u8 *src, u8 *iv,
> > + size_t nbytes, int encdec, int inplace);
> > + void (*cia_ctr)(void *ctx, u8 *dst, const u8 *src, u8 *iv,
> > + size_t nbytes, int encdec, int inplace);
>
> What's the use of adding mode specific functions to the tfm struct? And
> why do they all have the same function type? For instance, the "iv" or
> "inplace" argument is meaningless for ECB.

The prototypes must be the same in my implementation, because in crypt()
only a pointer to the appropriate mode function is taken and further used
as "(func*)(arg, arg, ...)".

BTW these functions are not added to "struct crypto_tfm", but to "struct
crypto_alg" which describes what a particular module supports (i.e. along
with the block size, algorithm name, etc). In this case it can say that
e.g. padlock.ko supports encryption in CBC mode in addition to a common
single-block processing.

BTW I'll look at the pointers of the tweakable api over the weekend...

Michal Ludvig
--
* A mouse is a device used to point at the xterm you want to type in.
* Personal homepage - http://www.logix.cz/michal
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jüri Põldre: "Ethernet driver link state propagation to ip stack"
Previous message: linux-os: "Re: Random packets loss under x86_64 - routing?"
In reply to: Fruhwirth Clemens: "Re: [PATCH 1/2] CryptoAPI: prepare for processing multiple buffersat a time"
Next in thread: Fruhwirth Clemens: "Re: [PATCH 1/2] CryptoAPI: prepare for processing multiple buffersat a time"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]