Received: by 2002:a05:6a10:a0d1:0:0:0:0 with SMTP id j17csp1055448pxa; Thu, 20 Aug 2020 00:57:29 -0700 (PDT) X-Google-Smtp-Source: ABdhPJyZNRO1IIYA/89rikb1ofyheWj8XuJLVjOw6yaT/VxEO9luU/y/v7EFcQAMhCpmSkmUpjoP X-Received: by 2002:a17:906:5a93:: with SMTP id l19mr2010627ejq.418.1597910249550; Thu, 20 Aug 2020 00:57:29 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1597910249; cv=none; d=google.com; s=arc-20160816; b=UdAYJaogU9GMoKPCAvHjMshG8PwUy4fjfD7jBRGIfBHFkezvop3uHJBsjiRSy5z1Bu uOqrw8wC1/7RIS1Tf7YPm0v9T7Mbmj3aDt25pOINmmnDSE28IBeDStQrVQ/gOA3gaQtS ++5BjJjUCuSJlz6R62VEFDI/v8rtb1AWOpXoaBJuYKY+bikPLVF1+xkcD9cGFtwXvPDp zQzjpDtCbtPnitemUqVg7mEMIFHdTyPsqidWv3XVY4eZxU34/ScVCklKyNgTDkZVJgje cQKvJwlN1AaV/LddS5KCE94oz+QNbv9XjrNA1jD1uwL6ofdiCQhfalUUJ5CI+VcnPg1J 1D/w== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=uT/1JN1eES0z5Xj4jAna3ZfbvfTKYaL8DHy9qaPW16o=; b=vp0NbgJRfWVEeVJ0M5lDaCGhgN9MRE6y+NoKhaM06k47CggW5fA+VC0oWNex3X/tR4 7yKjJB+O5uPpHBZFmXQ2NdO5x4v64sYIfnq9e7RXXKrDDaA2hUfz8036x2twLV3YL1gL ABLf/X9UysnBEDzBTK0tCLQA2i3vh+vDQaQlsKiMxNY0Bn2zEOk5WKmlpuDUMfJfC3d+ Sp3ZqiNA93/E+7UVk6vaJ0IBTKllrz8M2RWDeTnJI6mMJO1O/t/kVnOugYY5Dft64B7g osqg/otL7/iBWfyK9SmJ9TTdNv2I00+CWVXSz90IIMv4KpZO1ydKe9mU3K7ddmrVEU/w Fd5w== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=dDsjCbj6; spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id j3si770911edq.596.2020.08.20.00.57.05; Thu, 20 Aug 2020 00:57:29 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=dDsjCbj6; spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726951AbgHTH46 (ORCPT + 99 others); Thu, 20 Aug 2020 03:56:58 -0400 Received: from mail.kernel.org ([198.145.29.99]:38744 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1725916AbgHTH4x (ORCPT ); Thu, 20 Aug 2020 03:56:53 -0400 Received: from mail-oi1-f174.google.com (mail-oi1-f174.google.com [209.85.167.174]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPSA id 740A32076E for ; Thu, 20 Aug 2020 07:56:52 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=default; t=1597910212; bh=sMf+y+wctmuYbwLMEwLEBLkAV15W+edOEYiissjZ2ec=; h=References:In-Reply-To:From:Date:Subject:To:Cc:From; b=dDsjCbj6K9wgYsK1MplIvsdPkLKgkwI2gq7MnIQ44m5bb/OS56r8KuHtdfnSky4Mb iUp2dnf1HdM5m7+wcdZ9UxzjbfOC/ih0eahoPhXLB24KuJPdd/6si6PX+8BxlHL4N3 cbBVykvI+iHt8G63GCe0J83lbpz3zYt/jI/KwXRs= Received: by mail-oi1-f174.google.com with SMTP id h3so1127670oie.11 for ; Thu, 20 Aug 2020 00:56:52 -0700 (PDT) X-Gm-Message-State: AOAM532WFSssjyWhG5K7E+ihgsCk5vaebyOlH3d2qXQAhHEt9bmYZltZ 64JtARplz8N1UKTyixisLwkeaDCx/OKyEJMAfYs= X-Received: by 2002:a05:6808:b37:: with SMTP id t23mr1093938oij.174.1597910211786; Thu, 20 Aug 2020 00:56:51 -0700 (PDT) MIME-Version: 1.0 References: <8b248ef3-d4c7-43fd-6ae4-1c3381597579@candelatech.com> <20200820070142.GA21343@gondor.apana.org.au> <20200820070645.GA21395@gondor.apana.org.au> <20200820072910.GA21631@gondor.apana.org.au> <20200820074414.GA21848@gondor.apana.org.au> <20200820075353.GA21901@gondor.apana.org.au> In-Reply-To: <20200820075353.GA21901@gondor.apana.org.au> From: Ard Biesheuvel Date: Thu, 20 Aug 2020 09:56:40 +0200 X-Gmail-Original-Message-ID: Message-ID: Subject: Re: [PATCH 0/5] crypto: Implement cmac based on cbc skcipher To: Herbert Xu Cc: Ben Greear , Linux Crypto Mailing List , Eric Biggers Content-Type: text/plain; charset="UTF-8" Sender: linux-crypto-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-crypto@vger.kernel.org On Thu, 20 Aug 2020 at 09:54, Herbert Xu wrote: > > On Thu, Aug 20, 2020 at 09:48:02AM +0200, Ard Biesheuvel wrote: > > > > > Or are you saying on Ben's machine cbc-aesni would have worse > > > performance vs. aes-generic? > > > > > > > Yes, given the pathological overhead of FPU preserve/restore for every > > block of 16 bytes processed by the cbcmac wrapper. > > I'm sceptical. Do we have numbers showing this? You can get them > from tcrypt with my patch: > > https://patchwork.kernel.org/patch/11701343/ > > Just do > > modprobe tcrypt mode=400 alg='cmac(aes-aesni)' klen=16 > modprobe tcrypt mode=400 alg='cmac(aes-generic)' klen=16 > > > cmac() is not really relevant for performance, afaict. Only cbcmac() > > is used for bulk data. > > Sure but it's trivial to extend my cmac patch to support cbcmac. > Sure. Ben, care to have a go at the above on your hardware? It would help us get to the bottom of this issue.