RE: ghash

2019-07-19 Thread Pascal Van Leeuwen
> > Hmm, NIST SP 800-38D actually defines GHASH to take one argument, same as the > Linux version. So even outside Linux, there is no consensus on whether > "GHASH" > refers to the one argument or two argument versions. > Funny, I just stumbled upon that 2007 NIST specification myself minutes a

RE: ghash

2019-07-19 Thread Pascal Van Leeuwen
> > It's a universal keyed hash. Which you could use as a MAC, although, > > admittedly, > > it would be rather weak, which is why the tag is usually additionally > > encrypted. > > (which you could do externally, knowing that that's needed with GHASH) > > In any case, the crypto API's ghash does

Re: ghash

2019-07-19 Thread Eric Biggers
On Fri, Jul 19, 2019 at 02:48:11PM -0700, Eric Biggers wrote: > > > > > So are you proposing that it be renamed? Or are you proposing that a > > > multi > > > argument hashing API be added? Or are you proposing that universal > > > functions > > > not be exposed through the crypto API? What s

Re: ghash

2019-07-19 Thread Eric Biggers
> > Cc: linux-crypto@vger.kernel.org; Herbert Xu ; > > da...@davemloft.net > > Subject: Re: ghash > > > > Hi Pascal, > > > > On Fri, Jul 19, 2019 at 07:26:02PM +, Pascal Van Leeuwen wrote: > > > > -Original Message- > > >

RE: ghash

2019-07-19 Thread Pascal Van Leeuwen
Hi Eric, > -Original Message- > From: linux-crypto-ow...@vger.kernel.org > On Behalf Of Eric Biggers > Sent: Friday, July 19, 2019 9:57 PM > To: Pascal Van Leeuwen > Cc: linux-crypto@vger.kernel.org; Herbert Xu ; > da...@davemloft.net > Subject: Re: ghash >

Re: ghash

2019-07-19 Thread Eric Biggers
gt; Cc: linux-crypto@vger.kernel.org; Herbert Xu ; > > da...@davemloft.net > > Subject: Re: ghash > > > > On Fri, Jul 19, 2019 at 02:05:01PM +, Pascal Van Leeuwen wrote: > > > Hi, > > > > > > While implementing GHASH support for the inside-secure dr

RE: ghash

2019-07-19 Thread Pascal Van Leeuwen
> -Original Message- > From: linux-crypto-ow...@vger.kernel.org > On Behalf Of Eric Biggers > Sent: Friday, July 19, 2019 6:16 PM > To: Pascal Van Leeuwen > Cc: linux-crypto@vger.kernel.org; Herbert Xu ; > da...@davemloft.net > Subject: Re: ghash > > On F

Re: ghash

2019-07-19 Thread Eric Biggers
On Fri, Jul 19, 2019 at 02:05:01PM +, Pascal Van Leeuwen wrote: > Hi, > > While implementing GHASH support for the inside-secure driver and wondering > why I couldn't get > the test vectors to pass I have come to the conclusion that ghash-generic.c > actually does *not* > implement GHASH at

Re: ghash-clmulni: does not load

2015-11-26 Thread Stephan Mueller
Am Donnerstag, 26. November 2015, 13:45:26 schrieb Stephan Mueller: Hi, >Hi Tadeusz, > >testing the current cryptodev-2.6 tree, ghash-clmulni does not load. In the >init function > > err = crypto_register_ahash(&ghash_async_alg); > >returns EINVAL. It looks like the halg.statesize is missi