Linux kernel source tree https://git.amat.us/linux/atom/include/crypto?h=v2.6.24-rc3 2007-10-10T23:55:50Z 2007-10-10T23:55:50Z Jan Glauber jang@de.ibm.com 2007-10-09T14:43:13Z urn:sha1:5265eeb2b036835021591173ac64e624baaff55c There are currently several SHA implementations that all define their own initialization vectors and size values. Since this values are idential move them to a header file under include/crypto. Signed-off-by: Jan Glauber <jang@de.ibm.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2007-10-10T23:55:48Z Herbert Xu herbert@gondor.apana.org.au 2007-10-04T07:24:05Z urn:sha1:7607bd8ff03b8af5af887931318cb2bb20361856 This patch adds the helper blkcipher_walk_virt_block which is similar to blkcipher_walk_virt but uses a supplied block size instead of the block size of the block cipher. This is useful for CTR where the block size is 1 but we still want to walk by the block size of the underlying cipher. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2007-10-10T23:55:45Z Rik Snel rsnel@cube.dyndns.org 2007-09-19T12:23:13Z urn:sha1:f19f5111c94053ba4931892f5c01c806de33942e XTS currently considered to be the successor of the LRW mode by the IEEE1619 workgroup. LRW was discarded, because it was not secure if the encyption key itself is encrypted with LRW. XTS does not have this problem. The implementation is pretty straightforward, a new function was added to gf128mul to handle GF(128) elements in ble format. Four testvectors from the specification http://grouper.ieee.org/groups/1619/email/pdf00086.pdf were added, and they verify on my system. Signed-off-by: Rik Snel <rsnel@cube.dyndns.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2007-10-10T23:55:43Z Herbert Xu herbert@gondor.apana.org.au 2007-08-30T08:24:15Z urn:sha1:3c09f17c3d11f3e98928f55b600e6de22f58017a This patch adds the authenc algorithm which constructs an AEAD algorithm from an asynchronous block cipher and a hash. The construction is done by concatenating the encrypted result from the cipher with the output from the hash, as is used by the IPsec ESP protocol. The authenc algorithm exists as a template with four parameters: authenc(auth, authsize, enc, enckeylen). The authentication algorithm, the authentication size (i.e., truncating the output of the authentication algorithm), the encryption algorithm, and the encryption key length. Both the size field and the key length field are in bytes. For example, AES-128 with SHA1-HMAC would be represented by authenc(hmac(sha1), 12, cbc(aes), 16) The key for the authenc algorithm is the concatenation of the keys for the authentication algorithm with the encryption algorithm. For the above example, if a key of length 36 bytes is given, then hmac(sha1) would receive the first 20 bytes while the last 16 would be given to cbc(aes). Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2007-10-10T23:55:41Z Herbert Xu herbert@gondor.apana.org.au 2007-08-26T11:12:47Z urn:sha1:2de98e75449fc1c43d2fbb857668ae62d4f5eece Since not everyone needs a queue pointer and those who need it can always get it from the context anyway the queue pointer in the common alg object is redundant. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2007-10-10T23:55:39Z Herbert Xu herbert@gondor.apana.org.au 2007-08-30T07:36:14Z urn:sha1:1ae978208e2ee9ba1b01d309164bc5e590cd242d This patch adds crypto_aead which is the interface for AEAD (Authenticated Encryption with Associated Data) algorithms. AEAD algorithms perform authentication and encryption in one step. Traditionally users (such as IPsec) would use two different crypto algorithms to perform these. With AEAD this comes down to one algorithm and one operation. Of course if traditional algorithms were used we'd still be doing two operations underneath. However, real AEAD algorithms may allow the underlying operations to be optimised as well. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2007-10-10T23:55:37Z Sebastian Siewior sebastian@breakpoint.cc 2007-08-02T12:41:53Z urn:sha1:aa379a6ab17ff5b06552c52360ce6d9f8c7c209a This is function does the same thing for ablkcipher that is done for blkcipher by crypto_blkcipher_ctx_aligned(): it returns an aligned address of the private ctx. Signed-off-by: Sebastian Siewior <sebastian@breakpoint.cc> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2007-05-02T04:38:32Z Herbert Xu herbert@gondor.apana.org.au 2007-04-16T10:49:20Z urn:sha1:124b53d020622ffa24e27406f2373d5a3debd0d3 This patch adds the cryptd module which is a template that takes a synchronous software crypto algorithm and converts it to an asynchronous one by executing it in a kernel thread. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2007-05-02T04:38:32Z Herbert Xu herbert@gondor.apana.org.au 2007-04-08T11:31:36Z urn:sha1:a73e69965fa2647faa36caf40f4132b9c99d61fd As it is whenever a new algorithm with the same name is registered users of the old algorithm will be removed so that they can take advantage of the new algorithm. This presents a problem when the new algorithm is not equivalent to the old algorithm. In particular, the new algorithm might only function on top of the existing one. Hence we should not remove users unless they can make use of the new algorithm. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2007-05-02T04:38:31Z Herbert Xu herbert@gondor.apana.org.au 2007-04-16T10:48:54Z urn:sha1:b5b7f08869340aa8cfa23303f7d195f161479592 This patch adds the mid-level interface for asynchronous block ciphers. It also includes a generic queueing mechanism that can be used by other asynchronous crypto operations in future. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>