Received: by 2002:a25:f815:0:0:0:0:0 with SMTP id u21csp3575402ybd;
        Fri, 28 Jun 2019 11:01:00 -0700 (PDT)
X-Google-Smtp-Source: APXvYqwe3a0CyEtDhXmg5hX8JEye5el1CNPFg0OylC+L8xcx+z8vzKUpe7ui1K/SefEU1cSHSCHs
X-Received: by 2002:a63:1b66:: with SMTP id b38mr10461183pgm.54.1561744859960;
        Fri, 28 Jun 2019 11:00:59 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1561744859; cv=none;
        d=google.com; s=arc-20160816;
        b=honXNCXmek91B1sMPQ5aYMCsffXi+voQudctHEIOawYpDxLQ6IZMS96qQLRDAn/3An
         BQF0b7d/+tqak65h6HchcSksoL6ciiZA0adqjp1dY37pnUdMeQ10S+o7HNFCOrKEll/w
         iYsjk4uvVoYwahy2DJ7e/PtCe9HRwjVlDrqVWfpe8zTEhsBflLsmC6XzCvCMkTmDC17C
         RJBqI0xdtqmoEfLCTk+/TvbrAEXUy4IZEyqIq4mhZB70MOVEcUF/XFVv9Kg5RMrm2mI/
         MO99Bxgy5t+s9sS/Suyyibi+LDcE/OYi+NbU2X76xmJL+HAIeHTKSUAZb0+Lz4Zh4G5A
         t7lQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:user-agent:in-reply-to
         :content-disposition:mime-version:references:message-id:subject:cc
         :to:from:date:dkim-signature;
        bh=I0clQkWxusnNVugz3vyjhxm2SCgmiNbJZLS/emDAWfg=;
        b=mx4BY9D39Xtvx+xO5DBmjFsGpukk7VDIUjRRWiNzjvalk2POwMIWbUAehfVi6se03Z
         tRv3yMnTWxSsDRyZOD02rb8Db/mP8uvk+3lwSI4QIMDWRN2zg2HWq3K0ggMT2S9gtvau
         54DDsw0nnpQGjrqh8sUlZjbRRax4roiZWyx5K5qvrqmWUHer63K+FmptsYiNBst6NF2b
         mBRePzwzyk9sVIX/mhKHqGiuCkvCtCCouyz55m1JQ7GZ3fBW1BowIh5DWU5JiIf4RQ74
         Ppswwho0Jq+rHRoHVeAMl2bHFEISh1wZRDOwRICpxu+lsx4KxXBn7BXonUIMxs4W/qK2
         HdAQ==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@kernel.org header.s=default header.b=eDSD6s0a;
       spf=pass (google.com: best guess record for domain of linux-crypto-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Return-Path: <linux-crypto-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id z14si2883468pju.64.2019.06.28.11.00.45;
        Fri, 28 Jun 2019 11:00:59 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-crypto-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@kernel.org header.s=default header.b=eDSD6s0a;
       spf=pass (google.com: best guess record for domain of linux-crypto-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726674AbfF1SAl (ORCPT <rfc822;tputra6004@gmail.com>
        + 99 others); Fri, 28 Jun 2019 14:00:41 -0400
Received: from mail.kernel.org ([198.145.29.99]:33060 "EHLO mail.kernel.org"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1726443AbfF1SAl (ORCPT <rfc822;linux-crypto@vger.kernel.org>);
        Fri, 28 Jun 2019 14:00:41 -0400
Received: from gmail.com (unknown [104.132.1.77])
        (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
        (No client certificate requested)
        by mail.kernel.org (Postfix) with ESMTPSA id 02E782083B;
        Fri, 28 Jun 2019 18:00:39 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
        s=default; t=1561744840;
        bh=zMbrJScFqvYyJzkDW2lrEXk0xjEy7/G9qum3AIR8LGI=;
        h=Date:From:To:Cc:Subject:References:In-Reply-To:From;
        b=eDSD6s0atcsZcpHu8qZ3VBRxOXB7XzOdnmdmzWDzH+lDu5zEFnrf4OY0nfJaCBf9C
         dS5HwVXaj8n6rqdZ+plvdqk0EU+Psyc47f67lW1Dr8DJmC5FPtsxcyiG25O/5TeCNb
         JdGTA0dGgVDTXuR3DuC3S866aFfMM37i5KFH3st0=
Date:   Fri, 28 Jun 2019 11:00:38 -0700
From:   Eric Biggers <ebiggers@kernel.org>
To:     Ard Biesheuvel <ard.biesheuvel@linaro.org>
Cc:     linux-crypto@vger.kernel.org,
        Herbert Xu <herbert@gondor.apana.org.au>, dm-devel@redhat.com,
        linux-fscrypt@vger.kernel.org,
        Gilad Ben-Yossef <gilad@benyossef.com>,
        Milan Broz <gmazyland@gmail.com>
Subject: Re: [PATCH v6 2/7] fs: crypto: invoke crypto API for ESSIV handling
Message-ID: <20190628180037.GC103946@gmail.com>
References: <20190628152112.914-1-ard.biesheuvel@linaro.org>
 <20190628152112.914-3-ard.biesheuvel@linaro.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20190628152112.914-3-ard.biesheuvel@linaro.org>
User-Agent: Mutt/1.10.1 (2018-07-13)
Sender: linux-crypto-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-crypto.vger.kernel.org>
X-Mailing-List: linux-crypto@vger.kernel.org

On Fri, Jun 28, 2019 at 05:21:07PM +0200, Ard Biesheuvel wrote:
> diff --git a/fs/crypto/keyinfo.c b/fs/crypto/keyinfo.c
> index dcd91a3fbe49..f39667d4316a 100644
> --- a/fs/crypto/keyinfo.c
> +++ b/fs/crypto/keyinfo.c
> @@ -13,14 +13,10 @@
>  #include <linux/hashtable.h>
>  #include <linux/scatterlist.h>
>  #include <linux/ratelimit.h>
> -#include <crypto/aes.h>
>  #include <crypto/algapi.h>
> -#include <crypto/sha.h>
>  #include <crypto/skcipher.h>
>  #include "fscrypt_private.h"
>  
> -static struct crypto_shash *essiv_hash_tfm;
> -
>  /* Table of keys referenced by FS_POLICY_FLAG_DIRECT_KEY policies */
>  static DEFINE_HASHTABLE(fscrypt_master_keys, 6); /* 6 bits = 64 buckets */
>  static DEFINE_SPINLOCK(fscrypt_master_keys_lock);
> @@ -144,10 +140,9 @@ static struct fscrypt_mode available_modes[] = {
>  	},
>  	[FS_ENCRYPTION_MODE_AES_128_CBC] = {
>  		.friendly_name = "AES-128-CBC",
> -		.cipher_str = "cbc(aes)",
> +		.cipher_str = "essiv(cbc(aes),aes,sha256)",
>  		.keysize = 16,
> -		.ivsize = 16,
> -		.needs_essiv = true,
> +		.ivsize = 8,
>  	},

Now that the essiv template takes the same size IV, the .ivsize here needs to be
left as 16.

- Eric