lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <f10b8f69-e9d8-e69d-3c28-f73f37007cd5@gmail.com>
Date:   Mon, 25 Nov 2019 16:16:23 -0700
From:   David Ahern <dsahern@...il.com>
To:     Tuong Lien <tuong.t.lien@...tech.com.au>, jon.maloy@...csson.com,
        maloy@...jonn.com, ying.xue@...driver.com, netdev@...r.kernel.org
Cc:     tipc-discussion@...ts.sourceforge.net
Subject: Re: [iproute2-next] tipc: add new commands to set TIPC AEAD key

On 11/20/19 8:46 PM, Tuong Lien wrote:
> Two new commands are added as part of 'tipc node' command:
> 
>  $tipc node set key KEY [algname ALGNAME] [nodeid NODEID]
>  $tipc node flush key
> 
> which enable user to set and remove AEAD keys in kernel TIPC (requires
> the kernel option - 'TIPC_CRYPTO').
> 
> For the 'set key' command, the given 'nodeid' parameter decides the
> mode to be applied to the key, particularly:
> 
> - If NODEID is empty, the key is a 'cluster' key which will be used for
> all message encryption/decryption from/to the node (i.e. both TX & RX).
> The same key will be set in the other nodes.
> 
> - If NODEID is own node, the key is used for message encryption (TX)
> from the node. Whereas, if NODEID is a peer node, the key is for
> message decryption (RX) from that peer node. This is the 'per-node-key'
> mode that each nodes in the cluster has its specific (TX) key.
> 
> Acked-by: Ying Xue <ying.xue@...driver.com>
> Acked-by: Jon Maloy <jon.maloy@...csson.com>
> Signed-off-by: Tuong Lien <tuong.t.lien@...tech.com.au>
> ---
>  include/uapi/linux/tipc.h         |  21 ++++++
>  include/uapi/linux/tipc_netlink.h |   4 ++
>  tipc/misc.c                       |  38 +++++++++++
>  tipc/misc.h                       |   1 +
>  tipc/node.c                       | 133 +++++++++++++++++++++++++++++++++++++-
>  5 files changed, 195 insertions(+), 2 deletions(-)
> 

applied to iproute2-next. Thanks

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ