lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date:   Fri, 3 Feb 2017 18:20:59 +0800
From:   Herbert Xu <herbert@...dor.apana.org.au>
To:     Cyrille Pitchen <cyrille.pitchen@...el.com>
Cc:     davem@...emloft.net, nicolas.ferre@...el.com, smueller@...onox.de,
        linux-crypto@...r.kernel.org, linux-kernel@...r.kernel.org,
        linux-arm-kernel@...ts.infradead.org
Subject: Re: [PATCH v3 00/12] crypto: atmel-authenc: add support to
 authenc(hmac(shaX),Y(aes)) modes

On Thu, Jan 26, 2017 at 05:07:45PM +0100, Cyrille Pitchen wrote:
> Hi all,
> 
> this series of patches has been based and tested on next-20170125 with
> CRYPTO_MANAGER_DISABLED_TESTS not set.
> 
> The series adds support to the hmac(shaX) algorithms first, then combines
> both the Atmel SHA and AES hardware accelerators to implement
> authenc(hmac(shaX),Y(aes)) algorithms as used by IPSEC/SSL connections.
> 
> It has also been tested with strongswan + xl2tpd to create an IPSEC+L2TP
> (transport mode) VPN and strongswan only (tunnel mode) for an IPSEC VPN.
> 
> Then iperf was used to measure the bandwidth improvement in tunnel mode:
> 
> drivers                                    AES SHA SPLIP iperf half-duplex
>                                                          Mbit/s
> authenc(hmac(sha1-generic),cbc(aes))        SW   SW  N/A 27.7
> authenc(hmac(sha1-generic),atmel-cbc-aes)   HW   SW  N/A 30.2 (mainline)
> authenc(atmel-hmac-sha1,atmel-cbc-aes)      HW   HW   no 29.1
> atmel-authenc-hmac-sha1-cbc-aes             HW   HW  yes 38.8
> 
> SPLIP: Secure Protocol Layers Improved Performances (AES+SHA combined).
> 
> Some patches of this series are purely transitional: I've split the
> modifications into many patches to ease the review.

All applied.  Thanks.
-- 
Email: Herbert Xu <herbert@...dor.apana.org.au>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ