RE: authencesn compatibility problemn between software crypto and talitos driver

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



> Seems that somehow I got confused, considering the "one/single-pass over data" description the same as "combined mode algorithm".
> I will post a fix or revert the patch if HW does not allow the correct behaviour.

Horia,

Do you plan to fix talitos driver to make it ESN capable in the near future? Or just simply remove ESN option completely.

The freescale crypto engine is still capable of doing AES-CBC + HMAC-SHAxxx in one shot.
"DESC_HDR_TYPE_IPSEC_ESP" may not able to achieve authencesn.
But the hmac-snoop-aes should do the job well. 
2 descriptors are needed.
The first one is to do AES-CBC,
The second one snoop the output from the first crypto operation and then does HMAC-SHAxxx.
The two descriptors are chained and pushed to crypto engine at the same time. Callback is triggered only when both operations are done.
Since you are from freescale, I assume you know what I am talking about.



��.n��������+%������w��{.n�����{���{ay�ʇڙ���f���h������_�(�階�ݢj"��������G����?���&��



[Index of Archives]     [Kernel]     [Gnu Classpath]     [Gnu Crypto]     [DM Crypt]     [Netfilter]     [Bugtraq]

  Powered by Linux