[dm-crypt] Request for Comments about Chained-IV feature in Linux crypto framework

Yu, Wenqian wenqian.yu at intel.com
Mon Aug 7 00:07:16 CEST 2017


Thanks for the information, Herbert.  Let me check see the detail of explicit IV generators.

Thanks,
- Wenqian

-----Original Message-----
From: linux-crypto-owner at vger.kernel.org [mailto:linux-crypto-owner at vger.kernel.org] On Behalf Of Herbert Xu
Sent: Thursday, August 3, 2017 12:00 PM
To: Yu, Wenqian <wenqian.yu at intel.com>
Cc: linux-crypto at vger.kernel.org; dm-devel at redhat.com; m-crypt at saout.de; Milan Broz <gmazyland at gmail.com>; Keating, Brian A <brian.a.keating at intel.com>; Will, Brian <brian.will at intel.com>; Li, Weigang <weigang.li at intel.com>; Cabiddu, Giovanni <giovanni.cabiddu at intel.com>
Subject: Re: Request for Comments about Chained-IV feature in Linux crypto framework

On Thu, Aug 03, 2017 at 01:12:32AM +0000, Yu, Wenqian wrote:
> Hi, Herbert and all,
> 
> For saving the offload cost of symmetric cipher to hardware accelerator, we have a proposal (chained-IV) to batch multiple SG with different IV into one skcipher request, which also benefits SW implementation. The existing skcipher with SG list in crypto framework is treating all SG in the SG list as one single buffer to symmetric crypto operation with same IV.  In some use case the IV for each SG is different (e.g. dm-crypt, the IV for each sector is different). Could you please give quick comments on the below proposal before implementation?

We've had this discussion already.  The current plan is to use explicit IV generators, as seen here

https://patchwork.kernel.org/patch/9803473/

So please help review the existing patches and if there are any inadequacies, please comment.

Thanks.
--
Email: Herbert Xu <herbert at gondor.apana.org.au> Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt


More information about the dm-crypt mailing list