Linux kernel source tree https://git.amat.us/linux/atom/include/crypto/internal?h=v2.6.31-rc5 2009-03-04T07:05:33Z 2009-03-04T07:05:33Z Geert Uytterhoeven Geert.Uytterhoeven@sonycom.com 2009-03-04T07:05:33Z urn:sha1:a1d2f09544065b60598b8167d94a6371bff3e892 The current "comp" crypto interface supports one-shot (de)compression only, i.e. the whole data buffer to be (de)compressed must be passed at once, and the whole (de)compressed data buffer will be received at once. In several use-cases (e.g. compressed file systems that store files in big compressed blocks), this workflow is not suitable. Furthermore, the "comp" type doesn't provide for the configuration of (de)compression parameters, and always allocates workspace memory for both compression and decompression, which may waste memory. To solve this, add a "pcomp" partial (de)compression interface that provides the following operations: - crypto_compress_{init,update,final}() for compression, - crypto_decompress_{init,update,final}() for decompression, - crypto_{,de}compress_setup(), to configure (de)compression parameters (incl. allocating workspace memory). The (de)compression methods take a struct comp_request, which was mimicked after the z_stream object in zlib, and contains buffer pointer and length pairs for input and output. The setup methods take an opaque parameter pointer and length pair. Parameters are supposed to be encoded using netlink attributes, whose meanings depend on the actual (name of the) (de)compression algorithm. Signed-off-by: Geert Uytterhoeven <Geert.Uytterhoeven@sonycom.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2008-12-25T00:01:33Z Herbert Xu herbert@gondor.apana.org.au 2008-08-31T12:21:09Z urn:sha1:5f7082ed4f482f05db01d84dbf58190492ebf0ad This patch allows shash algorithms to be used through the old hash interface. This is a transitional measure so we can convert the underlying algorithms to shash before converting the users across. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2008-12-25T00:01:30Z Herbert Xu herbert@gondor.apana.org.au 2008-11-02T13:38:11Z urn:sha1:dec8b78606ebd5f309c38f2fb10196ce996dd18d It is often useful to save the partial state of a hash function so that it can be used as a base for two or more computations. The most prominent example is HMAC where all hashes start from a base determined by the key. Having an import/export interface means that we only have to compute that base once rather than for each message. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2008-12-25T00:01:26Z Herbert Xu herbert@gondor.apana.org.au 2008-08-31T05:47:27Z urn:sha1:7b5a080b3c46f0cac71c0d0262634c6517d4ee4f The shash interface replaces the current synchronous hash interface. It improves over hash in two ways. Firstly shash is reentrant, meaning that the same tfm may be used by two threads simultaneously as all hashing state is stored in a local descriptor. The other enhancement is that shash no longer takes scatter list entries. This is because shash is specifically designed for synchronous algorithms and as such scatter lists are unnecessary. All existing hash users will be converted to shash once the algorithms have been completely converted. There is also a new finup function that combines update with final. This will be extended to ahash once the algorithm conversion is done. This is also the first time that an algorithm type has their own registration function. Existing algorithm types will be converted to this way in due course. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2008-08-29T05:50:04Z Neil Horman nhorman@tuxdriver.com 2008-08-14T12:15:52Z urn:sha1:17f0f4a47df9aea9ee26c939f8057c35e0be1847 This patch adds a random number generator interface as well as a cryptographic pseudo-random number generator based on AES. It is meant to be used in cases where a deterministic CPRNG is required. One of the first applications will be as an input in the IPsec IV generation process. Signed-off-by: Neil Horman <nhorman@tuxdriver.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2008-08-29T05:50:00Z Herbert Xu herbert@gondor.apana.org.au 2008-08-17T08:04:30Z urn:sha1:5be5e667a9a5d8d5553e009e67bc692d95e5916a This patch moves the default IV generators into their own modules in order to break a dependency loop between cryptomgr, rng, and blkcipher. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2008-07-10T12:35:18Z Herbert Xu herbert@gondor.apana.org.au 2008-07-10T08:01:22Z urn:sha1:18e33e6d5cc0495826f5245777cd267732815e01 All new crypto interfaces should go into individual files as much as possible in order to ensure that crypto.h does not collapse under its own weight. This patch moves the ahash code into crypto/hash.h and crypto/internal/hash.h respectively. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2008-07-10T12:35:18Z Herbert Xu herbert@gondor.apana.org.au 2008-07-07T14:19:53Z urn:sha1:20036252fc61c624a49770fb89684ea5cfdfa05e This patch adds the walking helpers for hash algorithms akin to those of block ciphers. This is a necessary step before we can reimplement existing hash algorithms using the new ahash interface. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2008-03-08T12:29:43Z Herbert Xu herbert@gondor.apana.org.au 2008-03-08T12:29:43Z urn:sha1:f13ba2f7d3a877967477ec8f64e1dae7a967c7e2 The previous patch to move chainiv and eseqiv into blkcipher created a section mismatch for the chainiv exit function which was also called from __init. This patch removes the __exit marking on it. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2008-02-23T03:12:06Z Herbert Xu herbert@gondor.apana.org.au 2008-02-23T03:12:06Z urn:sha1:76fc60a2e3c6aa6e98cd3a5cb81a1855c637b274 For compatibility with dm-crypt initramfs setups it is useful to merge chainiv/seqiv into the crypto_blkcipher module. Since they're required by most algorithms anyway this is an acceptable trade-off. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>