25 Apr
2013
25 Apr
'13
4:51 p.m.
Nikos Mavrogiannopoulos n.mavrogiannopoulos@gmail.com writes:
Moreover, I need two hmac contexts in order to implement reset().
Can you explain how this works and what is needed? I don't remember much of TLS, so I have no idea what "reset" means here.
On plain HMAC the memory for the hashes was not that significant, but on umac that method is quite wasteful. I don't see a straightforward solution to that though, without a high level API.
Would it help to have a separate struct for the expanded key, and use that key with several per-message contexts? A bit like the split between struct gcm_key and struct gcm_ctx, in gcm.h? The same could be done also with hmac, if needed.
Regards, /Niels
--
Niels Möller. PGP-encrypted email is preferred. Keyid C0B98E26.
Internet email is subject to wholesale government surveillance.