Re: Looking for non-NIC hardware-offload for wpa2 decrypt.

Looking for non-NIC hardware-offload for wpa2 decrypt. · Ben Greear <hidden> · 2014-03-31
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Christian Lamparter <chunkeey@googlemail.com> · 2014-03-31
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Ben Greear <hidden> · 2014-07-28
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Christian Lamparter <chunkeey@googlemail.com> · 2014-07-29
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Ben Greear <hidden> · 2014-07-29
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Christian Lamparter <chunkeey@googlemail.com> · 2014-07-30
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Ben Greear <hidden> · 2014-07-30
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Jouni Malinen <hidden> · 2014-07-31
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Christian Lamparter <chunkeey@googlemail.com> · 2014-07-31
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Ben Greear <hidden> · 2014-08-05
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Christian Lamparter <chunkeey@googlemail.com> · 2014-08-07
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Ben Greear <hidden> · 2014-08-07
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Christian Lamparter <chunkeey@googlemail.com> · 2014-08-10
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Ben Greear <hidden> · 2014-08-12
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Christian Lamparter <chunkeey@googlemail.com> · 2014-08-14
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Ben Greear <hidden> · 2014-08-14
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Ben Greear <hidden> · 2014-08-19
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Christian Lamparter <chunkeey@googlemail.com> · 2014-08-20
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Ben Greear <hidden> · 2014-08-20
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Christian Lamparter <chunkeey@googlemail.com> · 2014-08-22
Re: Looking for non-NIC hardware-offload for wpa2 decrypt. · Johannes Berg <johannes@sipsolutions.net> · 2014-07-30

From: Ben Greear <hidden>
Date: 2014-08-07 17:45:06

On 08/07/2014 07:05 AM, Christian Lamparter wrote:

The high overhead (math_state_restore and fpu_save_init) are caused by 
the way ccm.c interacts with the aesni implementation when calculating
the MAC [1] (in compute_mac).

quoted

   [ ... ]
	/* now encrypt rest of data */
	while (datalen >= 16) {
		crypto_xor(odata, data, bs);
		crypto_cipher_encrypt_one(tfm, odata, odata);

		datalen -= 16;
		data += 16;
	}
  [...]

crypto_cipher_encrypt_one is a wrapper which in your case calls 
aesni's aes_encrypt [2].

And aes_encrypt looks like this:

quoted

	[...]
	kernel_fpu_begin();
	aesni_enc(ctx, dst, src); <-- this is where it goes to _aesni_enc1
	kernel_fpu_end();
	[...]

Or: for every 16 Bytes of payload there is one fpu context save and
restore... ouch!

I have never messed with this kind of stuff...

Any idea if it would work to put the fpu_begin/end a bit higher and do all those 16 byte
chunks in a batch without messing with the FPU for each chunk?

Thanks,
Ben

-- 
Ben Greear [off-list ref]
Candela Technologies Inc  http://www.candelatech.com

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help