mbox series

[RFC,v2,0/2] generic: test HCTR2 filename encryption

Message ID 20220505193809.579026-1-nhuck@google.com (mailing list archive)
Headers show
Series generic: test HCTR2 filename encryption | expand


Nathan Huckleberry May 5, 2022, 7:38 p.m. UTC
This patchset is not intended to be accepted yet.  It is reliant on HCTR2
support in the kernel which has not yet been accepted.  See the HCTR2 patchset
here: https://lore.kernel.org/all/20220504001823.2483834-1-nhuck@google.com/

HCTR2 is a new wide-block encryption mode that can used for filename encryption
in fscrypt.  This patchset adds a reference implementation of HCTR2 to the
fscrypt testing utility and adds tests for filename encryption with HCTR2.

More information on HCTR2 can be found here: "Length-preserving encryption with
HCTR2": https://ia.cr/2021/1441

Changes in v2:
* Use POLYVAL multiplication directly instead of using GHASH trick
* Split reference implementation and tests into two patches
* Remove v1 policy tests
* Various small style fixes

Nathan Huckleberry (2):
  fscrypt-crypt-util: add HCTR2 reference implementation
  generic: add tests for fscrypt policies with HCTR2

 common/encrypt           |   2 +
 src/fscrypt-crypt-util.c | 338 ++++++++++++++++++++++++++++++++-------
 tests/generic/900        |  24 +++
 tests/generic/900.out    |   6 +
 tests/generic/901        |  26 +++
 tests/generic/901.out    |   6 +
 tests/generic/902        |  26 +++
 tests/generic/902.out    |   6 +
 8 files changed, 377 insertions(+), 57 deletions(-)
 create mode 100755 tests/generic/900
 create mode 100644 tests/generic/900.out
 create mode 100755 tests/generic/901
 create mode 100644 tests/generic/901.out
 create mode 100755 tests/generic/902
 create mode 100644 tests/generic/902.out