On 08/18/2014 11:59 PM, Anthony Scarpino wrote:
Interesting changes. It's going to take me some time to look over this as I have a different projects involving GHASH that would cause a conflict with the code change layout you have posted.
What kind of changes do you plan? Using intrinsics for the finite field multiplication?
I'd like to work on a follow-up patch to reduce memory allocation during AES-GCM TLS transfers. Even after my GHASH changes, it seems we allocate four bytes for every byte received, which should be easy enough to avoid.
-- Florian Weimer / Red Hat Product Security
