git://ftp.safe.ca / safe / jmp / linux-2.6 / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b16c3a2) | patch
[CRYPTO] aead: Add authenc
authorHerbert Xu <herbert@gondor.apana.org.au>
Thu, 30 Aug 2007 08:24:15 +0000 (16:24 +0800)
committerDavid S. Miller <davem@sunset.davemloft.net>
Wed, 10 Oct 2007 23:55:43 +0000 (16:55 -0700)
commit3c09f17c3d11f3e98928f55b600e6de22f58017a
tree1c707e78054804fba65719a6dc87bc555fe9566btree | snapshot
parentb16c3a2e2c0307f5370b2b5e18bcbe1437b5f3d8commit | diff
[CRYPTO] aead: Add authenc

This patch adds the authenc algorithm which constructs an AEAD algorithm
from an asynchronous block cipher and a hash.  The construction is done
by concatenating the encrypted result from the cipher with the output
from the hash, as is used by the IPsec ESP protocol.

The authenc algorithm exists as a template with four parameters:

authenc(auth, authsize, enc, enckeylen).

The authentication algorithm, the authentication size (i.e., truncating
the output of the authentication algorithm), the encryption algorithm,
and the encryption key length.  Both the size field and the key length
field are in bytes.  For example, AES-128 with SHA1-HMAC would be
represented by

authenc(hmac(sha1), 12, cbc(aes), 16)

The key for the authenc algorithm is the concatenation of the keys for
the authentication algorithm with the encryption algorithm.  For the
above example, if a key of length 36 bytes is given, then hmac(sha1)
would receive the first 20 bytes while the last 16 would be given to
cbc(aes).

Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
crypto/Kconfig diff | blob | history
crypto/Makefile diff | blob | history
crypto/algapi.c diff | blob | history
crypto/authenc.c [new file with mode: 0644] blob
include/crypto/algapi.h diff | blob | history
Full containers within linux kernel