We should specify an interface with which a loadable module, developed
outside the U.S., could provide crypto functions, and other modules or
parts of the kernel could elect to use them if available. The
interface should be generic enough to not specialize on crypto stuff,
so we don't make the same mistake as the Kerberos people.
E.g. something like this in the kernel:
typedef int (*transfunc)(const char *src, int len, char *dst);
struct transform {
struct transform *next;
char name[8];
transfunc setup, trans1, trans2;
}
int register_transform(struct transform *trans);
and a Blowfish module could then have something like:
int bf_setup(const char *userkey, int userkeylen, char *key);
int bf_encr(const char *key, int plainlen, char *plain);
int bf_decr(const char *key, int cryptlen, char *crypt);
/* doing en/decryption in place */
struct transform bf_transform = { NULL, "BF", bf_setup, bf_encr, bf_decr };
Modules using crypto functions could check in the list of "transform"
structures if their desired algorithm is available and act
accordingly. (e.g. the loop device)
Of course this has to be worked out in detail, but the general idea
should be obvious: have a means of registering and accessing functions
that transform data blocks. (This could be used for non-crypto
purposes as well.)
olaf