16 Jul, 2020

1 commit

• 7bcb2c99f   crypto: algapi - use common mechanism for inheriting flags ... Browse Code »

  The flag CRYPTO_ALG_ASYNC is "inherited" in the sense that when a
  template is instantiated, the template will have CRYPTO_ALG_ASYNC set if
  any of the algorithms it uses has CRYPTO_ALG_ASYNC set.

  We'd like to add a second flag (CRYPTO_ALG_ALLOCATES_MEMORY) that gets
  "inherited" in the same way. This is difficult because the handling of
  CRYPTO_ALG_ASYNC is hardcoded everywhere. Address this by:

  - Add CRYPTO_ALG_INHERITED_FLAGS, which contains the set of flags that
  have these inheritance semantics.

  - Add crypto_algt_inherited_mask(), for use by template ->create()
  methods. It returns any of these flags that the user asked to be
  unset and thus must be passed in the 'mask' to crypto_grab_*().

  - Also modify crypto_check_attr_type() to handle computing the 'mask'
  so that most templates can just use this.

  - Make crypto_grab_*() propagate these flags to the template instance
  being created so that templates don't have to do this themselves.

  Make crypto/simd.c propagate these flags too, since it "wraps" another
  algorithm, similar to a template.

  Based on a patch by Mikulas Patocka
  (https://lore.kernel.org/r/alpine.LRH.2.02.2006301414580.30526@file01.intranet.prod.int.rdu2.redhat.com).

  Signed-off-by: Eric Biggers
  Signed-off-by: Herbert Xu

  Eric Biggers

  2020-07-16 19:49:08 +0800  

09 Jan, 2020

1 commit

• af5034e8e   crypto: remove propagation of CRYPTO_TFM_RES_* flags ... Browse Code »

  The CRYPTO_TFM_RES_* flags were apparently meant as a way to make the
  ->setkey() functions provide more information about errors. But these
  flags weren't actually being used or tested, and in many cases they
  weren't being set correctly anyway. So they've now been removed.

  Also, if someone ever actually needs to start better distinguishing
  ->setkey() errors (which is somewhat unlikely, as this has been unneeded
  for a long time), we'd be much better off just defining different return
  values, like -EINVAL if the key is invalid for the algorithm vs.
  -EKEYREJECTED if the key was rejected by a policy like "no weak keys".
  That would be much simpler, less error-prone, and easier to test.

  So just remove CRYPTO_TFM_RES_MASK and all the unneeded logic that
  propagates these flags around.

  Signed-off-by: Eric Biggers
  Signed-off-by: Herbert Xu

  Eric Biggers

  2020-01-09 11:30:53 +0800  

21 May, 2019

1 commit

• 1ccea77e2   treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 13 ... Browse Code »

  Based on 2 normalized pattern(s):

  this program is free software you can redistribute it and or modify
  it under the terms of the gnu general public license as published by
  the free software foundation either version 2 of the license or at
  your option any later version this program is distributed in the
  hope that it will be useful but without any warranty without even
  the implied warranty of merchantability or fitness for a particular
  purpose see the gnu general public license for more details you
  should have received a copy of the gnu general public license along
  with this program if not see http www gnu org licenses

  this program is free software you can redistribute it and or modify
  it under the terms of the gnu general public license as published by
  the free software foundation either version 2 of the license or at
  your option any later version this program is distributed in the
  hope that it will be useful but without any warranty without even
  the implied warranty of merchantability or fitness for a particular
  purpose see the gnu general public license for more details [based]
  [from] [clk] [highbank] [c] you should have received a copy of the
  gnu general public license along with this program if not see http
  www gnu org licenses

  extracted by the scancode license scanner the SPDX license identifier

  GPL-2.0-or-later

  has been chosen to replace the boilerplate/reference in 355 file(s).

  Signed-off-by: Thomas Gleixner
  Reviewed-by: Kate Stewart
  Reviewed-by: Jilayne Lovejoy
  Reviewed-by: Steve Winslow
  Reviewed-by: Allison Randal
  Cc: linux-spdx@vger.kernel.org
  Link: https://lkml.kernel.org/r/20190519154041.837383322@linutronix.de
  Signed-off-by: Greg Kroah-Hartman

  Thomas Gleixner

  2019-05-21 17:28:45 +0800  

22 Mar, 2019

2 commits

• 8b8d91d4c   crypto: simd - convert to use crypto_simd_usable() ... Browse Code »

  Replace all calls to may_use_simd() in the shared SIMD helpers with
  crypto_simd_usable(), in order to allow testing the no-SIMD code paths.

  Signed-off-by: Eric Biggers
  Reviewed-by: Ard Biesheuvel
  Signed-off-by: Herbert Xu

  Eric Biggers

  2019-03-22 20:57:27 +0800  
• 1661131a0   crypto: simd - support wrapping AEAD algorithms ... Browse Code »

  Update the crypto_simd module to support wrapping AEAD algorithms.
  Previously it only supported skciphers. The code for each is similar.

  I'll be converting the x86 implementations of AES-GCM, AEGIS, and MORUS
  to use this. Currently they each independently implement the same
  functionality. This will not only simplify the code, but it will also
  fix the bug detected by the improved self-tests: the user-provided
  aead_request is modified. This is because these algorithms currently
  reuse the original request, whereas the crypto_simd helpers build a new
  request in the original request's context.

  Signed-off-by: Eric Biggers
  Signed-off-by: Herbert Xu

  Eric Biggers

  2019-03-22 20:57:26 +0800  

09 Nov, 2018

1 commit

• 508a1c4df   crypto: simd - correctly take reqsize of wrapped skcipher into account ... Browse Code »

  The simd wrapper's skcipher request context structure consists
  of a single subrequest whose size is taken from the subordinate
  skcipher. However, in simd_skcipher_init(), the reqsize that is
  retrieved is not from the subordinate skcipher but from the
  cryptd request structure, whose size is completely unrelated to
  the actual wrapped skcipher.

  Reported-by: Qian Cai
  Signed-off-by: Ard Biesheuvel
  Tested-by: Qian Cai
  Signed-off-by: Herbert Xu

  Ard Biesheuvel

  2018-11-09 17:35:43 +0800  

03 Mar, 2018

1 commit

• d14f0a1fc   crypto: simd - allow registering multiple algorithms at once ... Browse Code »

  Add a function to crypto_simd that registers an array of skcipher
  algorithms, then allocates and registers the simd wrapper algorithms for
  them. It assumes the naming scheme where the names of the underlying
  algorithms are prefixed with two underscores.

  Also add the corresponding 'unregister' function.

  Most of the x86 crypto modules will be able to use these.

  Signed-off-by: Eric Biggers
  Signed-off-by: Herbert Xu

  Eric Biggers

  2018-03-03 00:03:17 +0800  

29 Nov, 2017

1 commit

• 1af39daaa   crypto: replace FSF address with web source in license notices ... Browse Code »

  A few years ago the FSF moved and "59 Temple Place" is wrong. Having this
  still in our source files feels old and unmaintained.

  Let's take the license statement serious and not confuse users.

  As https://www.gnu.org/licenses/gpl-howto.html suggests, we replace the
  postal address with "".

  Signed-off-by: Martin Kepplinger
  Signed-off-by: Herbert Xu

  Martin Kepplinger

  2017-11-29 14:33:25 +0800  

28 Nov, 2016

1 commit

• 266d05160   crypto: simd - Add simd skcipher helper ... Browse Code »

  This patch adds the simd skcipher helper which is meant to be
  a replacement for ablk helper. It replaces the underlying blkcipher
  interface with skcipher, and also presents the top-level algorithm
  as an skcipher.

  Signed-off-by: Herbert Xu

  Herbert Xu

  2016-11-28 21:23:18 +0800