From: Dmitri Petchkine <dpetchkine@certicom.com>
To: Dan Malek <dan@embeddedalley.com>
Cc: linuxppc-embedded@ozlabs.org
Subject: Re: Memory coherency on MPC8272
Date: Fri, 22 Jun 2007 16:47:30 -0400 [thread overview]
Message-ID: <467C3562.4080401@certicom.com> (raw)
In-Reply-To: <AC13379B-60F2-4F76-A2F8-275285E92B0A@embeddedalley.com>
On 06/22/2007 03:35 PM, Dan Malek wrote:
> On Jun 22, 2007, at 10:28 AM, Dmitri Petchkine wrote:
>> My understanding that the security hardware of MPC8272 uses DMA to write
>> results into the memory which may cause a coherency problem.
>
> Where did you get such an (incorrect) understanding?
> I suggest you acquire your understanding from reading the
> MPC8272 reference manual, since it describes the cache
> and snooping options between the SEC and memory,
> as well as among the SEC units.
>
>> My exposure to such hardware issues is very limited, so I appreciate any
>> advice on how to fix it.
>
> The code snippet clearly shows you don't understand
> the user/kernel interface, since your access to "param" isn't
> correct.
Please note that I'm NOT writing a driver for SEC1, I'm using it. The
driver has been written by Freescale. The piece of code I quoted in my
previous email and you reference to has been coded by Freescale guys. If
you want take a look, the sources can be downloaded from
http://www.freescale.com/webapp/sps/download/license.jsp?colCode=SEC1DRVRS&location=null&fpsp=1
Before performing any crypto operation, my application calls the SEC1
driver to allocate memory buffers (via IOCTL_MALLOC) in the kernel space
and copy all the user buffers into the kernel space (via
IOCTL_COPYFROM), including the request structure itself.
After the completion of the crypt op, the application copies (via
IOCTL_COPYTO) the request structure back to the user space as well as
all the output buffers.
> The SEC is complex and has subtle control
> considerations, any part of this could be incorrect. I
> suspect your coding errors are hidden/highlighted
> by adding the code for the printing, not the actual
> operation itself.
Yes it might be that I use the driver improperly. Although the app's
interaction with it is very limited: set up a structure in the kernel
space, do a crypto op, get data back to the user space. All of it is
done through ioctl().
The application is a quite comprehensive unit test for crypto, which
includes DES/TDES/AES/RC4, SHA-1/SHA-2/MD5, RSA, DSA, DH, and ECC. It
can be built also as a kernel module - this passes all the exact same
tests, which gives me some assurance that request structures for the
SEC1 hardware are set properly.
Thanks
Dmitri Petchkine
prev parent reply other threads:[~2007-06-22 20:47 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2007-06-22 17:28 Memory coherency on MPC8272 Dmitri Petchkine
2007-06-22 19:35 ` Dan Malek
2007-06-22 20:47 ` Dmitri Petchkine [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=467C3562.4080401@certicom.com \
--to=dpetchkine@certicom.com \
--cc=dan@embeddedalley.com \
--cc=linuxppc-embedded@ozlabs.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).