Re: [PATCH encrypted swsusp 1/3] core functionality

From: Pavel Machek
Date: Mon Apr 11 2005 - 06:04:03 EST

Next message: Pavel Machek: "Re: [PATCH encrypted swsusp 1/3] core functionality"
Previous message: Pavel Machek: "Re: Oops in swsusp"
In reply to: folkert: "Re: [PATCH encrypted swsusp 1/3] core functionality"
Next in thread: folkert: "Re: [PATCH encrypted swsusp 1/3] core functionality"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi!

> > > The following patch adds the core functionality for the encrypted
> > > suspend image.
> > [Please inline patches, it makes it easier to comment on them.]
> > You seem to reuse same key/iv for all the blocks. I'm no crypto
> > expert, but I think that is seriously wrong... You probably should use
> > block number as a IV or something like that.
>
> Or use a feedback loop: xor your data with the outcome of the previous
> round. And for the initial block use 0x00...00 for 'previous block'-
> value.

I'd like to retain ability to read suspend image in any order (so that
code can be reused for swap encryption, etc).
Pavel
--
Boycott Kodak -- for their patent abuse against Java.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Pavel Machek: "Re: [PATCH encrypted swsusp 1/3] core functionality"
Previous message: Pavel Machek: "Re: Oops in swsusp"
In reply to: folkert: "Re: [PATCH encrypted swsusp 1/3] core functionality"
Next in thread: folkert: "Re: [PATCH encrypted swsusp 1/3] core functionality"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]