Re: [PATCH 1/1][NEW] crypto API: rsa algorithm module patch (kernelversion 2.6.20.3)

From: Tasos Parisinos
Date: Thu Mar 22 2007 - 04:43:41 EST

Next message: Tomas M: "max_loop limit"
Previous message: Andy Whitcroft: "Re: 2.6.21-rc4-mm1"
In reply to: Randy Dunlap: "Re: [PATCH 1/1][NEW] crypto API: rsa algorithm module patch (kernelversion 2.6.20.3)"
Next in thread: Randy Dunlap: "Re: [PATCH 1/1][NEW] crypto API: rsa algorithm module patch (kernelversion 2.6.20.3)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,
Lots of good progress here, but still a few comments below.

Needs to apply to current mainline.

What do you mean by mainline?

Most (probably all) of these functions should also be "static"
unless they are meant for use outside of this module.

Which leads to the question: which functions are meant for
external/exported use?

And it would be really Good if those function headers were
documented in kernel-doc notation (not much of a change from
what you already have here; see Documentation/kernel-doc-nano-HOWTO.txt).

I think that if someone wants to do modular exponentiation rsa-style (where n is always odd)
using the montgomery algorithm i implement, only rsa_modexp should be static

But the rest of the API can be used for multi-precision integer arithmetics, so they could almost all
be exported (except rsa_load and rsa_unload). Do you think that this is namespace pollution?
In that case i should make them all static except rsa_modexp

About exportable comments, i just missed it, i will fix that

= tmp = buf[i + j] + (abuf[j] * (u64)bbuf[i]) + (tmp >> 32);

Break that line to < 80 columns, please.

+ tmp[j] = product = tmp[j] + (m * (u64)nbuf[j]) + (product >> 32);

Line too long.

Well this is going to be a problem, because i believe that in this way gcc will create the best code. These internal product
computations are essential and they get run many-many times. I will do my best to write it in less than 80 columns

Then i need to comment on some of the changes that where suggested on the previous patch but where not carried out

First of all the

UINT32_T_MAX

This is nowhere in linux/kernel.h but there are some equivalents but they are defined as macros that do some computation to compute the max 32 bit unsigned integer
and this would steal some (enough) clocks in loops that execute a lot. So i use the static value
0xFFFFFFFF which is more efficient.

Secondly the chunk that initializes the mpi data

/* Copy the data */
for (i = size - 1, j = 0; i >= 0; i--, j++)
buf[j / 4] |= ((u32)str[i] << ((j % 4) * 8));

Ok this is not pretty, its rather cruel. What i want to do is have a byte array for example

\xab\x11\xed\x43\x54\x34\x56\xcd

and make the mpi having data[0] = 0x543456cd and data[1]=0xab11ed43

I could reverse the byte array and then memcpy, what do you think?
Is there a faster (and prettier) way to do this? someone said ntohl but im not sure

Also there are places that memset or memcpy could be used, but i can't figure out if it
is more efficient to execute the set/copy loop my own or call such a function
What is your opinion on that?

All the other changes suggested where carried out

Tasos Parisinos
-

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Tomas M: "max_loop limit"
Previous message: Andy Whitcroft: "Re: 2.6.21-rc4-mm1"
In reply to: Randy Dunlap: "Re: [PATCH 1/1][NEW] crypto API: rsa algorithm module patch (kernelversion 2.6.20.3)"
Next in thread: Randy Dunlap: "Re: [PATCH 1/1][NEW] crypto API: rsa algorithm module patch (kernelversion 2.6.20.3)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]