Lines Matching refs:cipher
8 cipher types:
33 A single block cipher may even be called with multiple templates.
34 However, templates cannot be used without a single cipher.
63 When using the synchronous API operation, the caller invokes a cipher
65 That means, the caller waits until the cipher operation completes.
71 implies that the invocation of a cipher operation will complete almost
72 instantly. That invocation triggers the cipher operation but it does not
73 signal its completion. Before invoking a cipher operation, the caller
75 signal the completion of the cipher operation. Furthermore, the caller
84 A cipher is referenced by the caller with a string. That string has the
89 template(single block cipher)
92 where "template" and "single block cipher" is the aforementioned
93 template and single block cipher, respectively. If applicable,
98 template1(template2(single block cipher)))
102 or a single block cipher. For example, AES on newer Intel hardware has
105 which cipher implementation is used? The answer to that question is the
106 priority number assigned to each cipher implementation by the kernel
107 crypto API. When a caller uses the string to refer to a cipher during
108 initialization of a cipher handle, the kernel crypto API looks up all
112 Now, a caller may have the need to refer to a specific cipher
115 the cipher implementation to register a unique name in addition to
117 sure to refer to the intended cipher implementation.
123 applicable to a cipher, it is not displayed:
125 - name: the generic name of the cipher that is subject to the
126 priority-based selection -- this name can be used by the cipher
130 - driver: the unique name of the cipher -- this name can be used by the
131 cipher allocation API calls
133 - module: the kernel module providing the cipher implementation (or
136 - priority: the priority value of the cipher implementation
138 - refcnt: the reference count of the respective cipher (i.e. the number
139 of current consumers of this cipher)
141 - selftest: specification whether the self test for the cipher passed
147 - cipher for single block ciphers that may be used with an
154 - aead for AEAD cipher type
160 - kpp for a Key-agreement Protocol Primitive (KPP) cipher such as
163 - blocksize: blocksize of cipher in bytes
178 When allocating a cipher handle, the caller only specifies the cipher
182 not provide a separate way to select the particular symmetric cipher key
188 The different cipher handle allocation functions allow the specification
192 The type flag specifies the type of the cipher algorithm. The caller
195 the aforementioned cipher types:
197 - CRYPTO_ALG_TYPE_CIPHER Single block cipher
204 - CRYPTO_ALG_TYPE_BLKCIPHER Synchronous multi-block cipher
206 - CRYPTO_ALG_TYPE_ABLKCIPHER Asynchronous multi-block cipher
219 - CRYPTO_ALG_TYPE_AKCIPHER Asymmetric cipher
227 The mask flag restricts the type of cipher. The only allowed flag is
228 CRYPTO_ALG_ASYNC to restrict the cipher lookup function to
233 cipher implementation for the given cipher name. That means, even when a
234 caller uses a cipher name that exists during its initialization call,
241 The kernel crypto API has an internal structure where a cipher
244 implement the complete cipher.
247 existing cipher implementations. The first section addresses the most
254 using the AEAD cipher with the automated IV generation. The shown
258 the caller may not use the AEAD cipher with a separate IV generator. In
261 The depicted example decomposes the AEAD cipher of GCM(AES) based on the
266 It is possible that some streamlined cipher implementations (like
270 the AES cipher are all merged into one cipher implementation registered
276 Each block in the following ASCII art is an independent cipher instance
279 crypto API for the cipher implementation type.
281 The blocks below indicate the cipher type as well as the specific logic
282 implemented in the cipher.
286 uses the API applicable to the cipher type specified for the block.
314 | cipher |
323 as the cipher for ESP. The following call sequence is now depicted in
327 encryption operation of the AEAD cipher with IV generator.
332 AEAD cipher. In our case, during the instantiation of SEQIV, the
333 cipher handle for GCM is provided to SEQIV. This means that SEQIV
334 invokes AEAD cipher operations with the GCM cipher handle.
337 ciphers are instantiated. The cipher handles for CTR(AES) and GHASH
341 the GHASH cipher in the right manner to implement the GCM
344 3. The GCM AEAD cipher type implementation now invokes the SKCIPHER API
345 with the instantiated CTR(AES) cipher handle.
347 During instantiation of the CTR(AES) cipher, the CIPHER type
348 implementation of AES is instantiated. The cipher handle for AES is
356 cipher handle to encrypt one block.
358 5. The GCM AEAD implementation also invokes the GHASH cipher
410 During initialization of the HMAC cipher, the SHASH cipher type of
411 SHA256 is instantiated. The cipher handle for the SHA256 instance is
415 where the SHA256 cipher handle is used.
417 2. The HMAC instance now invokes the SHASH API with the SHA256 cipher