Any comments on this versus cryptoapi? It only allows you to use AES, whereas cyrptoapi gives a choice of several. Jari Ruusu wrote:
[linux-kernel also CC'd due to recent encrypted swap discussion]
In short: If file and swap crypto is all you need, this package is a hassle free replacement for international crypto patch and HVR's crypto-api.
This package provides loadable Linux kernel module (loop.o) that has AES cipher built-in. The AES cipher can be used to encrypt local file systems and disk partitions. For more information about compiling and using the driver, see the README file in the package.
Features: - GPL license. - No source modifications to kernel. No patch hassles when you are upgrading your kernel. - Works with all recent 2.4, 2.2 and 2.0 kernels, including distro vendor kernels. Encrypted disk images are compatible across all supported kernels. - AES cipher is used in CBC mode. Supports 128, 192 and 256 bit keys. - Passwords hashed with SHA-256, SHA-384 or SHA-512. - 512 byte based IV. IV is immune to variations in transfer size and does not depend on file system block size. - Device backed (partition backed) loop is capable of encrypting swap on 2.4 kernels.
Changes since previous release: - Little speed optimization in aes-glue.c - External encryption module locking bug is fixed (kernel 2.4 only). This bug did not affect loop-AES operation at all. This fix is from Ingo Rohloff. - On 2.4 kernels, device backed loop maintains private pre-allocated pool of RAM pages that are used when kernel is totally out of free RAM. This change also fixes stock loop.c sin of sleeping in make_request_fn().
Kernel 2.4 users who want to encrypt swap partitions should upgrade to this version. No need to upgrade if you use older 2.2 or 2.0 kernels.
bzip2 compressed tarball is here:
http://loop-aes.sourceforge.net/loop-AES-v1.4d.tar.bz2 md5sum 404f82796bacc479deb266f13ec260b8
PGP signature file, my public key, and fingerprint here:
http://loop-aes.sourceforge.net/loop-AES-v1.4d.tar.bz2.sign http://loop-aes.sourceforge.net/PGP-public-key.asc 1024/3A220F51 5B 4B F9 BB D3 3F 52 E9 DB 1D EB E3 24 0E A9 DD
Regards, Jari Ruusu <jari.ruusu@pp.inet.fi>
Linux-crypto: cryptography in and on the Linux system Archive: http://mail.nl.linux.org/linux-crypto/
-- Harmon Seaver, MLIS CyberShamanix Work 920-203-9633 hseaver@cybershamanix.com Home 920-233-5820 hseaver@ameritech.net http://www.cybershamanix.com/resume.html