Re: [Qemu-block] [Qemu-devel] [PATCH v1 1/2] crypto: use glib as fallbac

qemu-block

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-block] [Qemu-devel] [PATCH v1 1/2] crypto: use glib as fallbac

From:	Eric Blake
Subject:	Re: [Qemu-block] [Qemu-devel] [PATCH v1 1/2] crypto: use glib as fallback for hash algorithm
Date:	Wed, 6 Jul 2016 08:53:56 -0600
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.3.0

On 07/06/2016 05:58 AM, Alberto Garcia wrote:
> On Tue 05 Jul 2016 12:49:59 PM CEST, "Daniel P. Berrange" <address@hidden> 
> wrote:
> 
>> GLib >= 2.16 provides GChecksum API which is good enough
>> for md5, sha1, sha256 and sha512. Use this as a final
>> fallback if neither nettle or gcrypt are available. This
>> lets us remove the stub hash impl, and so callers can
>> be sure those 4 algs are always available at compile
>> time. They may still be disabled at runtime, so a check
>> for qcrypto_hash_supports() is still best practice to
>> report good error messages.
> 
> Sorry if I missed the explanation, but how do you disable them at
> runtime ?

FIPS is a common case where portions of a crypto lib are disabled at
runtime based on whether the system is running in FIPS mode or not.  I
don't think any of the hashes in the glib fallback are necessarily
covered by FIPS disabling, so much as the qcrypto interface being
interested in generically catering to this behavior across the various
implementations.

-- 
Eric Blake   eblake redhat com    +1-919-301-3266
Libvirt virtualization library http://libvirt.org

signature.asc
Description: OpenPGP digital signature

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-block] [PATCH v1 0/2] Use GChecksum as fallback hash impl, Daniel P. Berrange, 2016/07/05
- [Qemu-block] [PATCH v1 1/2] crypto: use glib as fallback for hash algorithm, Daniel P. Berrange, 2016/07/05
  - Re: [Qemu-block] [Qemu-devel] [PATCH v1 1/2] crypto: use glib as fallback for hash algorithm, Eric Blake, 2016/07/05
    - Re: [Qemu-block] [Qemu-devel] [PATCH v1 1/2] crypto: use glib as fallback for hash algorithm, Daniel P. Berrange, 2016/07/05
  - Re: [Qemu-block] [PATCH v1 1/2] crypto: use glib as fallback for hash algorithm, Alberto Garcia, 2016/07/06
    - Re: [Qemu-block] [Qemu-devel] [PATCH v1 1/2] crypto: use glib as fallback for hash algorithm, Eric Blake <=
    - Re: [Qemu-block] [Qemu-devel] [PATCH v1 1/2] crypto: use glib as fallback for hash algorithm, Daniel P. Berrange, 2016/07/07
  - Re: [Qemu-block] [PATCH v1 1/2] crypto: use glib as fallback for hash algorithm, Alberto Garcia, 2016/07/07
- [Qemu-block] [PATCH v1 2/2] Revert "block: don't register quorum driver if SHA256 support is unavailable", Daniel P. Berrange, 2016/07/05
  - Re: [Qemu-block] [Qemu-devel] [PATCH v1 2/2] Revert "block: don't register quorum driver if SHA256 support is unavailable", Eric Blake, 2016/07/05
  - Re: [Qemu-block] [PATCH v1 2/2] Revert "block: don't register quorum driver if SHA256 support is unavailable", Alberto Garcia, 2016/07/07
- [Qemu-block] [PATCH v1 3/2] crypto: don't open-code qcrypto_hash_supports, Daniel P. Berrange, 2016/07/05
  - Re: [Qemu-block] [PATCH v1 3/2] crypto: don't open-code qcrypto_hash_supports, Eric Blake, 2016/07/05
  - Re: [Qemu-block] [PATCH v1 3/2] crypto: don't open-code qcrypto_hash_supports, Alberto Garcia, 2016/07/07

Prev by Date: Re: [Qemu-block] [PATCH v3 10/32] blockdev: Move qcow2 probe to its own file
Next by Date: Re: [Qemu-block] [PATCH v3 11/32] blockdev: Move qed probe to its own file
Previous by thread: Re: [Qemu-block] [PATCH v1 1/2] crypto: use glib as fallback for hash algorithm
Next by thread: Re: [Qemu-block] [Qemu-devel] [PATCH v1 1/2] crypto: use glib as fallback for hash algorithm
Index(es):
- Date
- Thread