On Wed, 25 May 2016, David Howells wrote:
Mat Martineau <mathew.j.martineau@xxxxxxxxxxxxxxx> wrote:
Since the KDF patches are not yet merged, I'm not sure of the best way to
accomodate the future feature. We could future-proof KEYCTL_DH_COMPUTE by
adding a 5th arg, an optional pointer to KDF configuration (NAME and
LABEL).
If we want to do this, it needs to be done before the merge window closes,
maybe by -rc2. Just requiring the extra argument to be 0 for now and/or
extending struct keyctl_dh_params to include some must-be-zeroed spare space
would do for now.
I sent a patch ([PATCH] KEYS: Add optional key derivation parameters for
DH) to define the additional parameter. For now, an error is returned if
KDF configuration is provided.
--
Mat Martineau
Intel OTC
--
To unsubscribe from this list: send the line "unsubscribe linux-crypto" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
