Re: sync rijndael-alg-fst.c with OpenBSD

To: Alexander Nasonov <alnsn%yandex.ru@localhost>
Subject: Re: sync rijndael-alg-fst.c with OpenBSD
From: Taylor R Campbell <campbell+netbsd-tech-crypto%mumble.net@localhost>
Date: Sat, 1 Oct 2016 20:13:19 +0000

   Date: Sat, 1 Oct 2016 20:26:18 +0100
   From: Alexander Nasonov <alnsn%yandex.ru@localhost>

   If the goal is switching cgd to opencrypto, this is where all
   self-tests should be implemented.

That was a goal a long time ago.  It's not clear to me that opencrypto
is the way to go, though -- opencrypto was designed for an era when
hardware acceleration meant issuing asynchronous I/O requests over a
PCI bus, not when hardware acceleration meant executing a CPU
instruction.

In any case, it should be easy to add a self-test to
cgd_cipher_aes_init which panics if it fails.  Failure means kernel
memory or the CPU or something is screwy, so panicking is a reasonable
course of action.  This would be localized to cgd_crypto.c and require
no API changes.  I expect it should add at most a couple dozen lines
of code, mainly for the test vector itself.

Follow-Ups:
- re: sync rijndael-alg-fst.c with OpenBSD
  - From: matthew green

References:
- Re: sync rijndael-alg-fst.c with OpenBSD
  - From: Alexander Nasonov

Prev by Date: Re: sync rijndael-alg-fst.c with OpenBSD
Next by Date: re: sync rijndael-alg-fst.c with OpenBSD
Previous by Thread: Re: sync rijndael-alg-fst.c with OpenBSD
Next by Thread: re: sync rijndael-alg-fst.c with OpenBSD
Indexes:

Home | Main Index | Thread Index | Old Index