Re: [RFC V1 3/7] crypto: ghash - Optimized GHASH computations

From: Eric Biggers
Date: Fri Jan 15 2021 - 20:44:23 EST

Next message: Yonghong Song: "Re: [PATCH bpf-next 1/4] bpf: enable task local storage for tracing programs"
Previous message: Atish Patra: "Re: [PATCH 3/4] RISC-V: Fix L1_CACHE_BYTES for RV32"
In reply to: Eric Biggers: "Re: [RFC V1 3/7] crypto: ghash - Optimized GHASH computations"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Jan 15, 2021 at 04:14:40PM -0800, Dey, Megha wrote:
> > Hello Megha,
> >
> > What is the purpose of this separate GHASH module? GHASH is only used
> > in combination with AES-CTR to produce GCM, and this series already
> > contains a GCM driver.
> >
> > Do cores exist that implement PCLMULQDQ but not AES-NI?
> >
> > If not, I think we should be able to drop this patch (and remove the
> > existing PCLMULQDQ GHASH driver as well)
>
> AFAIK, dm-verity (authenticated but not encrypted file system) is one use
> case for authentication only.
>
> Although I am not sure if GHASH is specifically used for this or SHA?
>
> Also, I do not know of any cores that implement PCLMULQDQ and not AES-NI.
>

dm-verity only uses unkeyed hash algorithms. So no, it doesn't use GHASH.

- Eric

Next message: Yonghong Song: "Re: [PATCH bpf-next 1/4] bpf: enable task local storage for tracing programs"
Previous message: Atish Patra: "Re: [PATCH 3/4] RISC-V: Fix L1_CACHE_BYTES for RV32"
In reply to: Eric Biggers: "Re: [RFC V1 3/7] crypto: ghash - Optimized GHASH computations"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]