On Sat, 11 Mar 2023 at 10:42, Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx> wrote: > > On Sat, Mar 11, 2023 at 10:25:48AM +0100, Ard Biesheuvel wrote: > > > > So what use case is the driver for this sync skcipher change? And how > > The main reason I wanted to do this is because I'd like to get > rid of crypto_cipher. I'm planning on replacing the underlying > simple ciphers with their ECB equivalent. > > > will this work with existing templates? Do they all have to implement > > two flavors now? > > Let's say we're calling this vkcipher. Because the existing > skcipher templates should continue to work with an underlying > vkcipher algorithm, I won't be adding any vkcipher template > unless there is a specific use-case, such as CFB here. > > But I will do the common ones like CBC/CTR. > Interesting. So I think having an interface like this would be useful. However, to answer your original question, I don't think it makes sense for James's stuff to be gated on this. In fact, I think communication with the TPM should have as few moving parts as possible, given how disruptive it might be if it fails, so I'd suggest we merge this code in any case, and stick to simple library interfaces where we can.