12 Jan, 2018

1 commit

• 7660b1fb3   crypto: chacha20 - use rol32() macro from bitops.h ... Browse Code »

  For chacha20_block(), use the existing 32-bit left-rotate function
  instead of defining one ourselves.

  Signed-off-by: Eric Biggers
  Signed-off-by: Herbert Xu

  Eric Biggers

  2018-01-12 20:03:01 +0800  

29 Nov, 2017

1 commit

• 9f480faec   crypto: chacha20 - Fix keystream alignment for chacha20_block() ... Browse Code »

  When chacha20_block() outputs the keystream block, it uses 'u32' stores
  directly. However, the callers (crypto/chacha20_generic.c and
  drivers/char/random.c) declare the keystream buffer as a 'u8' array,
  which is not guaranteed to have the needed alignment.

  Fix it by having both callers declare the keystream as a 'u32' array.
  For now this is preferable to switching over to the unaligned access
  macros because chacha20_block() is only being used in cases where we can
  easily control the alignment (stack buffers).

  Signed-off-by: Eric Biggers
  Signed-off-by: Herbert Xu

  Eric Biggers

  2017-11-29 14:33:33 +0800  

03 Jul, 2016

1 commit

• e192be9d9   random: replace non-blocking pool with a Chacha20-based CRNG ... Browse Code »

  The CRNG is faster, and we don't pretend to track entropy usage in the
  CRNG any more.

  Signed-off-by: Theodore Ts'o

  Theodore Ts'o

  2016-07-03 12:57:23 +0800