Hi Yu, On Thu, May 24, 2018 at 10:26:12AM +0800, Yu Chen wrote: > Hi Stephan, > thanks for your reply, > On Wed, May 23, 2018 at 1:43 AM Stephan Mueller <smueller@xxxxxxxxxx> wrote: > > > Am Dienstag, 22. Mai 2018, 05:00:40 CEST schrieb Yu Chen: > > > Hi Yu, > > > > Hi all, > > > The request is that, we'd like to generate a symmetric key derived from > > > user provided passphase(not rely on any third-party library). May I > know if > > > there is a PBKDF2(Password-Based Key Derivation Function 2) support in > the > > > kernel? (https://tools.ietf.org/html/rfc2898#5.2) > > > We have hmac sha1 in the kernel, do we have plan to port/implement > > > corresponding PBKDF2 in the kernel too? > > > There is no PBKDF2 support in the kernel. > > I saw that there's already a kdf implementation using SP800-56A > in security/keys/dh.c, I think I can learn from that and implement PDKDF2 > using similar code. > > Ciao > > Stephan > Best, > Yu "Not having to rely on any third-party library" is not an excuse to add random code to the kernel, which runs in a privileged context. Please do PBKDF2 in userspace instead. - Eric