Eric Lee / smarc-fsl-linux-kernel

08 Aug, 2020

1 commit

453431a54 mm, treewide: rename kzfree() to kfree_sensitive() ... Browse Code »

As said by Linus:

A symmetric naming is only helpful if it implies symmetries in use.
Otherwise it's actively misleading.

In "kzalloc()", the z is meaningful and an important part of what the
caller wants.

In "kzfree()", the z is actively detrimental, because maybe in the
future we really _might_ want to use that "memfill(0xdeadbeef)" or
something. The "zero" part of the interface isn't even _relevant_.

The main reason that kzfree() exists is to clear sensitive information
that should not be leaked to other future users of the same memory
objects.

Rename kzfree() to kfree_sensitive() to follow the example of the recently
added kvfree_sensitive() and make the intention of the API more explicit.
In addition, memzero_explicit() is used to clear the memory to make sure
that it won't get optimized away by the compiler.

The renaming is done by using the command sequence:

git grep -w --name-only kzfree |\
xargs sed -i 's/kzfree/kfree_sensitive/'

followed by some editing of the kfree_sensitive() kerneldoc and adding
a kzfree backward compatibility macro in slab.h.

[akpm@linux-foundation.org: fs/crypto/inline_crypt.c needs linux/slab.h]
[akpm@linux-foundation.org: fix fs/crypto/inline_crypt.c some more]

Suggested-by: Joe Perches
Signed-off-by: Waiman Long
Signed-off-by: Andrew Morton
Acked-by: David Howells
Acked-by: Michal Hocko
Acked-by: Johannes Weiner
Cc: Jarkko Sakkinen
Cc: James Morris
Cc: "Serge E. Hallyn"
Cc: Joe Perches
Cc: Matthew Wilcox
Cc: David Rientjes
Cc: Dan Carpenter
Cc: "Jason A . Donenfeld"
Link: http://lkml.kernel.org/r/20200616154311.12314-3-longman@redhat.com
Signed-off-by: Linus Torvalds

Waiman Long
2020-08-08 02:33:22 +0800

31 May, 2019

1 commit

2874c5fd2 treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152 ... Browse Code »

Based on 1 normalized pattern(s):

this program is free software you can redistribute it and or modify
it under the terms of the gnu general public license as published by
the free software foundation either version 2 of the license or at
your option any later version

extracted by the scancode license scanner the SPDX license identifier

GPL-2.0-or-later

has been chosen to replace the boilerplate/reference in 3029 file(s).

Signed-off-by: Thomas Gleixner
Reviewed-by: Allison Randal
Cc: linux-spdx@vger.kernel.org
Link: https://lkml.kernel.org/r/20190527070032.746973796@linutronix.de
Signed-off-by: Greg Kroah-Hartman

Thomas Gleixner
2019-05-31 02:26:32 +0800

18 Apr, 2019

2 commits

f1774cb89 X.509: parse public key parameters from x509 for akcipher ... Browse Code »

Some public key algorithms (like EC-DSA) keep in parameters field
important data such as digest and curve OIDs (possibly more for
different EC-DSA variants). Thus, just setting a public key (as
for RSA) is not enough.

Append parameters into the key stream for akcipher_set_{pub,priv}_key.
Appended data is: (u32) algo OID, (u32) parameters length, parameters
data.

This does not affect current akcipher API nor RSA ciphers (they could
ignore it). Idea of appending parameters to the key stream is by Herbert
Xu.

Cc: David Howells
Cc: Denis Kenzior
Cc: keyrings@vger.kernel.org
Signed-off-by: Vitaly Chikunov
Reviewed-by: Denis Kenzior
Signed-off-by: Herbert Xu

Vitaly Chikunov
2019-04-18 22:15:02 +0800
c7381b012 crypto: akcipher - new verify API for public key algorithms ... Browse Code »

Previous akcipher .verify() just `decrypts' (using RSA encrypt which is
using public key) signature to uncover message hash, which was then
compared in upper level public_key_verify_signature() with the expected
hash value, which itself was never passed into verify().

This approach was incompatible with EC-DSA family of algorithms,
because, to verify a signature EC-DSA algorithm also needs a hash value
as input; then it's used (together with a signature divided into halves
`r||s') to produce a witness value, which is then compared with `r' to
determine if the signature is correct. Thus, for EC-DSA, nor
requirements of .verify() itself, nor its output expectations in
public_key_verify_signature() wasn't sufficient.

Make improved .verify() call which gets hash value as input and produce
complete signature check without any output besides status.

Now for the top level verification only crypto_akcipher_verify() needs
to be called and its return value inspected.

Make sure that `digest' is in kmalloc'd memory (in place of `output`) in
{public,tpm}_key_verify_signature() as insisted by Herbert Xu, and will
be changed in the following commit.

Cc: David Howells
Cc: keyrings@vger.kernel.org
Signed-off-by: Vitaly Chikunov
Reviewed-by: Denis Kenzior
Signed-off-by: Herbert Xu

Vitaly Chikunov
2019-04-18 22:15:02 +0800

07 Dec, 2018

2 commits

f7d76e05d crypto: user - fix use_after_free of struct xxx_request ... Browse Code »

All crypto_stats functions use the struct xxx_request for feeding stats,
but in some case this structure could already be freed.

For fixing this, the needed parameters (len and alg) will be stored
before the request being executed.
Fixes: cac5818c25d0 ("crypto: user - Implement a generic crypto statistics")
Reported-by: syzbot

Signed-off-by: Corentin Labbe
Signed-off-by: Herbert Xu

Corentin Labbe
2018-12-07 14:15:00 +0800
6e8e72cd2 crypto: user - convert all stats from u32 to u64 ... Browse Code »

All the 32-bit fields need to be 64-bit. In some cases, UINT32_MAX crypto
operations can be done in seconds.

Reported-by: Eric Biggers
Signed-off-by: Corentin Labbe
Signed-off-by: Herbert Xu

Corentin Labbe
2018-12-07 14:15:00 +0800

28 Sep, 2018

1 commit

cac5818c2 crypto: user - Implement a generic crypto statistics ... Browse Code »

This patch implement a generic way to get statistics about all crypto
usages.

Signed-off-by: Corentin Labbe
Signed-off-by: Herbert Xu

Corentin Labbe
2018-09-28 12:46:25 +0800

10 Jun, 2017

1 commit

561f8e2df crypto: akcipher - assume key is already set in maxsize ... Browse Code »

As of now, crypto_akcipher_maxsize() can not be reached without
successfully setting the key for the transformation. akcipher
algorithm implementations check if the key was set and then return
the output buffer size required for the given key.

Change the return type to unsigned int and always assume that this
function is called after a successful setkey of the transformation.
akcipher algorithm implementations will remove the check if key is not NULL
and directly return the max size.

Signed-off-by: Tudor Ambarus
Signed-off-by: Herbert Xu

Tudor-Dan Ambarus
2017-06-10 12:04:29 +0800

17 Feb, 2016

1 commit

e1eabc057 crypto: doc - add akcipher API ... Browse Code »

Reference the new akcipher API calls in the kernel crypto API DocBook.

Also, fix the comments in the akcipher.h file: double dashes do not look
good in the DocBook; fix a typo.

Signed-off-by: Stephan Mueller
Signed-off-by: Herbert Xu

Stephan Mueller
2016-02-17 04:07:53 +0800

11 Dec, 2015

1 commit

e14a1f1e3 crypto: akcipher - fix typos in include/crypto/akcipher.h ... Browse Code »

Fix numerous spelling error in include/crypto/akcipher.h

Signed-off-by: LABBE Corentin
Signed-off-by: Herbert Xu

LABBE Corentin
2015-12-11 22:55:13 +0800

14 Oct, 2015

1 commit

22287b0b5 crypto: akcipher - Changes to asymmetric key API ... Browse Code »

Setkey function has been split into set_priv_key and set_pub_key.
Akcipher requests takes sgl for src and dst instead of void *.
Users of the API i.e. two existing RSA implementation and
test mgr code have been updated accordingly.

Signed-off-by: Tadeusz Struk
Signed-off-by: Herbert Xu

Tadeusz Struk
2015-10-14 22:23:16 +0800

17 Jun, 2015

1 commit

3c339ab83 crypto: akcipher - add PKE API ... Browse Code »

Add Public Key Encryption API.

Signed-off-by: Tadeusz Struk

Made CRYPTO_AKCIPHER invisible like other type config options.

Signed-off-by: Herbert Xu

Tadeusz Struk
2015-06-17 17:03:14 +0800