• Herbert Xu's avatar
    [CRYPTO] skcipher: Add givcrypt operations and givcipher type · 61da88e2
    Herbert Xu authored
    Different block cipher modes have different requirements for intialisation
    vectors.  For example, CBC can use a simple randomly generated IV while
    modes such as CTR must use an IV generation mechanisms that give a stronger
    guarantee on the lack of collisions.  Furthermore, disk encryption modes
    have their own IV generation algorithms.
    
    Up until now IV generation has been left to the users of the symmetric
    key cipher API.  This is inconvenient as the number of block cipher modes
    increase because the user needs to be aware of which mode is supposed to
    be paired with which IV generation algorithm.
    
    Therefore it makes sense to integrate the IV generation into the crypto
    API.  This patch takes the first step in that direction by creating two
    new ablkcipher operations, givencrypt and givdecrypt that generates an
    IV before performing the actual encryption or decryption.
    
    The operations are currently not exposed to the user.  That will be done
    once the underlying functionality has actually been implemented.
    
    It also creates the underlying givcipher type.  Algorithms that directly
    generate IVs would use it instead of ablkcipher.  All other algorithms
    (including all existing ones) would generate a givcipher algorithm upon
    registration.  This givcipher algorithm will be constructed from the geniv
    string that's stored in every algorithm.  That string will locate a template
    which is instantiated by the blkcipher/ablkcipher algorithm in question to
    give a givcipher algorithm.
    Signed-off-by: default avatarHerbert Xu <herbert@gondor.apana.org.au>
    61da88e2
skcipher.h 916 Bytes