Jari: I am a bit confused as to what you mean with this message. What is "in place encryption"? Your previous message says that loop-aes in fact does do encrypted swap. Can you give us some information on how that might otherwise work? Very Respectfully, Stuart Blake Tener, IT3, USNR-R, N3GWG Beverly Hills, California VTU 1904G (Volunteer Training Unit) stuart@xxxxxxxxxxx west coast: (310)-358-0202 P.O. Box 16043, Beverly Hills, CA 90209-2043 east coast: (215)-338-6005 P.O. Box 45859, Philadelphia, PA 19149-5859 Telecopier: (419)-715-6073 fax to email gateway via www.efax.com (it's free!) JOIN THE US NAVY RESERVE, SERVE YOUR COUNTRY, AND BENEFIT FROM IT ALL. Saturday, September 29, 2001 9:29 AM -----Original Message----- From: owner-linux-crypto@xxxxxxxxxxxx [mailto:owner-linux-crypto@xxxxxxxxxxxx]On Behalf Of Jari Ruusu Sent: Saturday, September 29, 2001 7:54 AM To: Herbert Valerio Riedel Cc: linux-crypto@xxxxxxxxxxxx Subject: Re: new version of loop.c patch > Herbert Valerio Riedel wrote: > On Sat, 2001-09-29 at 11:13, Herbert Valerio Riedel wrote: > > > another nice thing is, that the other 2.4.10 changes to loop.c allow us > > to get rid of one buffer-allocate+copy-overhead, by the use of > > LO_FLAGS_BH_REMAP, so we can use in-place encryption... > > > > now I've got only to audit the ciphers to check, whether they are safe > > regarding in-place operation... > > ps: this should allow swap encryption over loop devices, without the need > for pre-allocated buffers as worked around in loop-AES... > > jari, can you confirm this? :-) In-place encryption won't work for swap-out path, sorry. VM often swaps out something AND still wants to use original unmodified data. I learned that the hard way! :-) Regards, Jari Ruusu <jari.ruusu@xxxxxxxxxx> Linux-crypto: cryptography in and on the Linux system Archive: http://mail.nl.linux.org/linux-crypto/ Linux-crypto: cryptography in and on the Linux system Archive: http://mail.nl.linux.org/linux-crypto/
