[dm-devel] Request for Comments about Chained-IV feature in Linux crypto framework
Herbert Xu
herbert at gondor.apana.org.au
Thu Aug 3 03:59:40 UTC 2017
On Thu, Aug 03, 2017 at 01:12:32AM +0000, Yu, Wenqian wrote:
> Hi, Herbert and all,
>
> For saving the offload cost of symmetric cipher to hardware accelerator, we have a proposal (chained-IV) to batch multiple SG with different IV into one skcipher request, which also benefits SW implementation. The existing skcipher with SG list in crypto framework is treating all SG in the SG list as one single buffer to symmetric crypto operation with same IV. In some use case the IV for each SG is different (e.g. dm-crypt, the IV for each sector is different). Could you please give quick comments on the below proposal before implementation?
We've had this discussion already. The current plan is to use
explicit IV generators, as seen here
https://patchwork.kernel.org/patch/9803473/
So please help review the existing patches and if there are any
inadequacies, please comment.
Thanks.
--
Email: Herbert Xu <herbert at gondor.apana.org.au>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt
More information about the dm-devel
mailing list