Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit cc477bf6 authored by Ard Biesheuvel's avatar Ard Biesheuvel Committed by Herbert Xu
Browse files

crypto: arm/aes - replace bit-sliced OpenSSL NEON code 



This replaces the unwieldy generated implementation of bit-sliced AES
in CBC/CTR/XTS modes that originated in the OpenSSL project with a
new version that is heavily based on the OpenSSL implementation, but
has a number of advantages over the old version:
- it does not rely on the scalar AES cipher that also originated in the
  OpenSSL project and contains redundant lookup tables and key schedule
  generation routines (which we already have in crypto/aes_generic.)
- it uses the same expanded key schedule for encryption and decryption,
  reducing the size of the per-key data structure by 1696 bytes
- it adds an implementation of AES in ECB mode, which can be wrapped by
  other generic chaining mode implementations
- it moves the handling of corner cases that are non critical to performance
  to the glue layer written in C
- it was written directly in assembler rather than generated from a Perl
  script

Signed-off-by: default avatarArd Biesheuvel <ard.biesheuvel@linaro.org>
Signed-off-by: default avatarHerbert Xu <herbert@gondor.apana.org.au>
parent 1abee99e

arch/arm/crypto/Kconfig

+1 −0
Original line number Diff line number Diff line
@@ -73,6 +73,7 @@ config CRYPTO_AES_ARM_BS 
	depends on KERNEL_MODE_NEON

	select CRYPTO_BLKCIPHER

	select CRYPTO_SIMD

	select CRYPTO_AES_ARM

	help

	  Use a faster and more secure NEON based implementation of AES in CBC,

	  CTR and XTS modes

arch/arm/crypto/Makefile

+2 −5
Original line number Diff line number Diff line
@@ -28,7 +28,7 @@ endif 
endif



aes-arm-y	:= aes-cipher-core.o aes-cipher-glue.o

aes-arm-bs-y	:= aes-armv4.o aesbs-core.o aesbs-glue.o

aes-arm-bs-y	:= aes-neonbs-core.o aes-neonbs-glue.o

sha1-arm-y	:= sha1-armv4-large.o sha1_glue.o

sha1-arm-neon-y	:= sha1-armv7-neon.o sha1_neon_glue.o

sha256-arm-neon-$(CONFIG_KERNEL_MODE_NEON) := sha256_neon_glue.o
@@ -46,13 +46,10 @@ chacha20-neon-y := chacha20-neon-core.o chacha20-neon-glue.o 
quiet_cmd_perl = PERL    $@

      cmd_perl = $(PERL) $(<) > $(@)



$(src)/aesbs-core.S_shipped: $(src)/bsaes-armv7.pl

	$(call cmd,perl)



$(src)/sha256-core.S_shipped: $(src)/sha256-armv4.pl

	$(call cmd,perl)



$(src)/sha512-core.S_shipped: $(src)/sha512-armv4.pl

	$(call cmd,perl)



.PRECIOUS: $(obj)/aesbs-core.S $(obj)/sha256-core.S $(obj)/sha512-core.S
 
.PRECIOUS: $(obj)/sha256-core.S $(obj)/sha512-core.S