Re: Announce loop-AES-v1.4d file/swap crypto package

3 Sep 2001


      Any comments on this versus cryptoapi? It only allows you to use AES, whereas
cyrptoapi gives a choice of several.


Jari Ruusu wrote:
...
[linux-kernel also CC'd due to recent encrypted swap discussion]
In short: If file and swap crypto is all you need, this package is a hassle
free replacement for international crypto patch and HVR's crypto-api.
This package provides loadable Linux kernel module (loop.o) that has AES
cipher built-in. The AES cipher can be used to encrypt local file systems
and disk partitions. For more information about compiling and using the
driver, see the README file in the package.
Features:
- GPL license.
- No source modifications to kernel. No patch hassles when you are upgrading
  your kernel.
- Works with all recent 2.4, 2.2 and 2.0 kernels, including distro vendor
  kernels. Encrypted disk images are compatible across all supported
  kernels.
- AES cipher is used in CBC mode. Supports 128, 192 and 256 bit keys.
- Passwords hashed with SHA-256, SHA-384 or SHA-512.
- 512 byte based IV. IV is immune to variations in transfer size and does
  not depend on file system block size.
- Device backed (partition backed) loop is capable of encrypting swap on 2.4
  kernels.
Changes since previous release:
- Little speed optimization in aes-glue.c
- External encryption module locking bug is fixed (kernel 2.4 only). This
  bug did not affect loop-AES operation at all. This fix is from Ingo
  Rohloff.
- On 2.4 kernels, device backed loop maintains private pre-allocated pool of
  RAM pages that are used when kernel is totally out of free RAM. This
  change also fixes stock loop.c sin of sleeping in make_request_fn().
Kernel 2.4 users who want to encrypt swap partitions should upgrade to this
version. No need to upgrade if you use older 2.2 or 2.0 kernels.
bzip2 compressed tarball is here:
http://loop-aes.sourceforge.net/loop-AES-v1.4d.tar.bz2
    md5sum 404f82796bacc479deb266f13ec260b8
PGP signature file, my public key, and fingerprint here:
http://loop-aes.sourceforge.net/loop-AES-v1.4d.tar.bz2.sign
    http://loop-aes.sourceforge.net/PGP-public-key.asc
    1024/3A220F51 5B 4B F9 BB D3 3F 52 E9  DB 1D EB E3 24 0E A9 DD
Regards,
Jari Ruusu 
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/
--
Harmon Seaver, MLIS
CyberShamanix
Work 920-203-9633   hseaver@cybershamanix.com
Home 920-233-5820 hseaver@ameritech.net
http://www.cybershamanix.com/resume.html