Re: A patch to loop.c for better cryption support

From: David Wagner (daw@mozart.cs.berkeley.edu)
Date: Mon Oct 16 2000 - 13:18:44 EST

Next message: Stephen Tweedie: "Re: mapping user space buffer to kernel address space"
Previous message: Igmar Palsenberg: "Re: Device Driver"
Next in thread: Ingo Rohloff: "Re: A patch to loop.c for better cryption support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Ingo Rohloff wrote:
>> There is a paper about why it is a bad idea to use
>> sequence numbers for CBC IV's. I just have to find the reference to it.
>
>Does this mean sequence as in 0,1,2,3,4 ... or does this mean
>any pre-calculate-able sequence ? In the former case we might just use
>a simple one way hash-function over the requested sector number.

It just means that 0,1,2,3,... is bad. Using SHA1(sector #) should be ok.

But do think carefully about what happens when you modify a sector!!
In particular, will you be re-using the old IV when you write the new
data? That could be problematic.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/

Next message: Stephen Tweedie: "Re: mapping user space buffer to kernel address space"
Previous message: Igmar Palsenberg: "Re: Device Driver"
Next in thread: Ingo Rohloff: "Re: A patch to loop.c for better cryption support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Mon Oct 23 2000 - 21:00:09 EST