GCM: GHASH optimizations
0e9e7d72f3c9Unpublished
Actions

Unpublished Commit · Learn More

Not On Permanent Ref: This commit is not an ancestor of any permanent ref.

Description

GCM: GHASH optimizations

* cipher/cipher-gcm.c [GCM_USE_TABLES] (gcmR, ghash): Replace with new.
[GCM_USE_TABLES] [GCM_TABLES_USE_U64] (bshift, fillM, do_ghash): New.
[GCM_USE_TABLES] [!GCM_TABLES_USE_U64] (bshift, fillM): Replace with
new.
[GCM_USE_TABLES] [!GCM_TABLES_USE_U64] (do_ghash): New.
(_gcry_cipher_gcm_tag): Remove extra memcpy to outbuf and use
buf_eq_const for comparing authentication tag.
* cipher/cipher-internal.h (gcry_cipher_handle): Different 'gcm_table'
for 32-bit and 64-bit platforms.

Patch improves GHASH speed.

Intel Haswell (x86-64):
Old:

GCM auth |     26.22 ns/B     36.38 MiB/s     83.89 c/B

New:

GCM auth |      3.18 ns/B     300.0 MiB/s     10.17 c/B

Intel Haswell (mingw32):
Old:

GCM auth |     27.27 ns/B     34.97 MiB/s     87.27 c/B

New:

GCM auth |      7.58 ns/B     125.7 MiB/s     24.27 c/B

Cortex-A8:
Old:

GCM auth |     231.4 ns/B      4.12 MiB/s     233.3 c/B

New:

GCM auth |     30.82 ns/B     30.94 MiB/s     31.07 c/B

Signed-off-by: Jussi Kivilinna <jussi.kivilinna@iki.fi>

Details

Provenance

jukivili

Authored on Nov 19 2013, 10:26 PM

Parents

rC332da0ed7c8f: Add some documentation for GCM mode

Branches

Unknown

Tags

Unknown

Event Timeline

Jussi Kivilinna <jussi.kivilinna@iki.fi> committed rC0e9e7d72f3c9: GCM: GHASH optimizations (authored by Jussi Kivilinna <jussi.kivilinna@iki.fi>).Nov 20 2013, 3:49 PM