Re: [CryptoAPI-devel] Re: [Design] [PATCH] USAGI IPsec

Sandy Harris (sandy@storm.ca)
Mon, 21 Oct 2002 19:27:07 -0700

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Alan Cox: "Re: compile failure in i2o_block.c on 2.5.44"
Previous message: Guillaume Boissiere: "[STATUS 2.5] October 21, 2002"

Herbert Valerio Riedel wrote:

>On Mon, 2002-10-21 at 04:41, David S. Miller wrote:
>
>
>
>>A completely new CryptoAPI subsystem has been implemented so that
>>full lists of page vectors can be passed into the ciphers, which is
>>necessary for a clean IPSEC implementation.
>>
>>
>
>oh... nice to learn about your plans (so late) at all ;-)
>
>well, it would be cool if you'd cooperate (or at least share
>information) with us (the official cryptoapi project ;-), as we're open
>for the design requirements of the next generation cryptoapi...
>
>...otherwise this may render the kerneli.org/cryptoapi effort completely
>useless :-/ ...of course, if it's your long term goal to take the
>cryptoapi development away from kerneli.org, I'd like to know too ;-)
>
>regards,
>
>
I think the long term goal should be to get good crypto, at least IPsec
and disk encryption,
into the mainline, standard Linux kernel. Also ipv6 support. Projects
like FreeS/WAN, USAGI
and cryptoapi seem necessary for getting the work done in the first
place, but eventually you
want to do away with patch sets and just have all the good stuff built
in to the kernel.

One payoff is integration. As I understand it, a current fully-patched
kernel has either MD-5
or SHA-1 in the /dev/random driver, both in FreeS/WAN, and possibly both
of those plus a
few other hashes in the CryptoAPI stuff. This is silly. The obvious fix
is for everyone to use
the CryptoAPI hashes and ciphers.

However, crypto is a special case. The US government (among others) has
a long history
of restricting it and, much as we would like to see good crypto in the
standard kernel,
there's a good case for being very careful to keep code out of their
clutches.

My suggestion would be that the standard kernel incorporate only one
good hash
and one good cipher, specifically AES and SHA-256 since (last I looked)
those
were en route to becoming requirements for IPsec. Let the FreeS/WAN and
CryptoAPI folk -- outside the US -- maintain the other ciphers and
hashes. That
way we have a fallback position if the US goes back to being viciously
restrictive.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alan Cox: "Re: compile failure in i2o_block.c on 2.5.44"
Previous message: Guillaume Boissiere: "[STATUS 2.5] October 21, 2002"