[v2,0/2] crypto: aegis128 SIMD improvements

Message ID	20191014161645.1961-1-ard.biesheuvel@linaro.org (mailing list archive)
Headers	show Return-Path: <SRS0=VKJi=YH=vger.kernel.org=linux-crypto-owner@kernel.org> From: Ard Biesheuvel <ard.biesheuvel@linaro.org> To: linux-crypto@vger.kernel.org Cc: linux-arm-kernel@lists.infradead.org, herbert@gondor.apana.org.au, Ard Biesheuvel <ard.biesheuvel@linaro.org>, Ondrej Mosnacek <omosnace@redhat.com> Subject: [PATCH v2 0/2] crypto: aegis128 SIMD improvements Date: Mon, 14 Oct 2019 18:16:43 +0200 Message-Id: <20191014161645.1961-1-ard.biesheuvel@linaro.org> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Sender: linux-crypto-owner@vger.kernel.org Precedence: bulk
Series	crypto: aegis128 SIMD improvements \| expand [v2,0/2] crypto: aegis128 SIMD improvements [v2,1/2] crypto: aegis128 - avoid function pointers for parameterization [v2,2/2] crypto: aegis128 - duplicate init() and final() hooks in SIMD code

Message ID

20191014161645.1961-1-ard.biesheuvel@linaro.org (mailing list archive)

Headers

From: Ard Biesheuvel <ard.biesheuvel@linaro.org>
To: linux-crypto@vger.kernel.org
Cc: linux-arm-kernel@lists.infradead.org, herbert@gondor.apana.org.au,
        Ard Biesheuvel <ard.biesheuvel@linaro.org>,
        Ondrej Mosnacek <omosnace@redhat.com>
Subject: [PATCH v2 0/2] crypto: aegis128 SIMD improvements
Date: Mon, 14 Oct 2019 18:16:43 +0200
Message-Id: <20191014161645.1961-1-ard.biesheuvel@linaro.org>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Sender: linux-crypto-owner@vger.kernel.org
Precedence: bulk

Series

crypto: aegis128 SIMD improvements | expand

Message

Ard Biesheuvel Oct. 14, 2019, 4:16 p.m. UTC

Refactor the aegis128 code to get rid of indirect calls, and implement
SIMD versions of the init() and final() hooks. This results in a ~2x
speedup on ARM Cortex-A57 for ~1500 byte inputs.

Changes since v1:
- fix missing Sbox loads for plain SIMD on GCC
- fix endianness issue in final_simd() routine

Cc: Ondrej Mosnacek <omosnace@redhat.com>

Ard Biesheuvel (2):
  crypto: aegis128 - avoid function pointers for parameterization
  crypto: aegis128 - duplicate init() and final() hooks in SIMD code

 crypto/aegis128-core.c       | 125 ++++++++++----------
 crypto/aegis128-neon-inner.c |  50 ++++++++
 crypto/aegis128-neon.c       |  21 ++++
 3 files changed, 134 insertions(+), 62 deletions(-)

Comments

Herbert Xu Oct. 25, 2019, 3:18 p.m. UTC | #1

On Mon, Oct 14, 2019 at 06:16:43PM +0200, Ard Biesheuvel wrote:
> Refactor the aegis128 code to get rid of indirect calls, and implement
> SIMD versions of the init() and final() hooks. This results in a ~2x
> speedup on ARM Cortex-A57 for ~1500 byte inputs.
> 
> Changes since v1:
> - fix missing Sbox loads for plain SIMD on GCC
> - fix endianness issue in final_simd() routine
> 
> Cc: Ondrej Mosnacek <omosnace@redhat.com>
> 
> Ard Biesheuvel (2):
>   crypto: aegis128 - avoid function pointers for parameterization
>   crypto: aegis128 - duplicate init() and final() hooks in SIMD code
> 
>  crypto/aegis128-core.c       | 125 ++++++++++----------
>  crypto/aegis128-neon-inner.c |  50 ++++++++
>  crypto/aegis128-neon.c       |  21 ++++
>  3 files changed, 134 insertions(+), 62 deletions(-)

All applied.  Thanks.