[PATCH 0/3] xfrm: Custom truncation lengths for authentication algorithms

2009-11-25 Thread Martin Willi
The following patchset adds support for defining truncation lengths
for authentication algorithms in userspace. The main purpose for this
is to support SHA256 in IPsec using the standardized 128 bit
instead of the currently used 96 bit truncation.

Martin Willi (3):
  xfrm: Define new XFRM netlink auth attribute with specified
truncation bits
  xfrm: Store aalg in xfrm_state with a user specified truncation
length
  xfrm: Use the user specified truncation length in ESP and AH

 include/linux/xfrm.h  |8 +++
 include/net/xfrm.h|   12 -
 net/ipv4/ah4.c|2 +-
 net/ipv4/esp4.c   |2 +-
 net/ipv6/ah6.c|2 +-
 net/ipv6/esp6.c   |2 +-
 net/xfrm/xfrm_state.c |2 +-
 net/xfrm/xfrm_user.c  |  129 ++---
 8 files changed, 145 insertions(+), 14 deletions(-)

--
To unsubscribe from this list: send the line unsubscribe linux-crypto in
the body of a message to majord...@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html


Re: [PATCH 0/3] xfrm: Custom truncation lengths for authentication algorithms

2009-11-25 Thread Herbert Xu
On Wed, Nov 25, 2009 at 11:29:50AM +0100, Martin Willi wrote:
 The following patchset adds support for defining truncation lengths
 for authentication algorithms in userspace. The main purpose for this
 is to support SHA256 in IPsec using the standardized 128 bit
 instead of the currently used 96 bit truncation.
 
 Martin Willi (3):
   xfrm: Define new XFRM netlink auth attribute with specified
 truncation bits
   xfrm: Store aalg in xfrm_state with a user specified truncation
 length
   xfrm: Use the user specified truncation length in ESP and AH

Looks great to me.  Thanks Martin!
-- 
Visit Openswan at http://www.openswan.org/
Email: Herbert Xu ~{PmVHI~} herb...@gondor.apana.org.au
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt
--
To unsubscribe from this list: send the line unsubscribe linux-crypto in
the body of a message to majord...@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html


Re: [PATCH 0/3] xfrm: Custom truncation lengths for authentication algorithms

2009-11-25 Thread David Miller
From: Martin Willi mar...@strongswan.org
Date: Wed, 25 Nov 2009 11:29:50 +0100

 The following patchset adds support for defining truncation lengths
 for authentication algorithms in userspace. The main purpose for this
 is to support SHA256 in IPsec using the standardized 128 bit
 instead of the currently used 96 bit truncation.
 
 Martin Willi (3):
   xfrm: Define new XFRM netlink auth attribute with specified
 truncation bits
   xfrm: Store aalg in xfrm_state with a user specified truncation
 length
   xfrm: Use the user specified truncation length in ESP and AH

All applied to net-next-2.6, thanks!
--
To unsubscribe from this list: send the line unsubscribe linux-crypto in
the body of a message to majord...@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html