Linux Kernel https://git.stealer.net/cgit.cgi/user/sven/linux.git/atom?h=v4.20.7 2018-09-28T04:46:08Z 2018-09-28T04:46:08Z Kees Cook keescook@chromium.org 2018-09-19T02:10:52Z urn:sha1:36b3875a97b85e60eb612f8c72d19271c70b08fd In the quest to remove all stack VLA usage from the kernel[1], this replaces struct crypto_skcipher and SKCIPHER_REQUEST_ON_STACK() usage with struct crypto_sync_skcipher and SYNC_SKCIPHER_REQUEST_ON_STACK(), which uses a fixed stack size. [1] https://lkml.kernel.org/r/CA+55aFzCG-zNmZwX4A2FQpadafLfEzK6CC=qPXydAacU1RqZWA@mail.gmail.com Signed-off-by: Kees Cook <keescook@chromium.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2018-01-12T12:03:35Z Eric Biggers ebiggers@google.com 2018-01-03T19:16:26Z urn:sha1:a208fa8f33031b9e0aba44c7d1b7e68eb0cbd29e We need to consistently enforce that keyed hashes cannot be used without setting the key. To do this we need a reliable way to determine whether a given hash algorithm is keyed or not. AF_ALG currently does this by checking for the presence of a ->setkey() method. However, this is actually slightly broken because the CRC-32 algorithms implement ->setkey() but can also be used without a key. (The CRC-32 "key" is not actually a cryptographic key but rather represents the initial state. If not overridden, then a default initial state is used.) Prepare to fix this by introducing a flag CRYPTO_ALG_OPTIONAL_KEY which indicates that the algorithm has a ->setkey() method, but it is not required to be called. Then set it on all the CRC-32 algorithms. The same also applies to the Adler-32 implementation in Lustre. Also, the cryptd and mcryptd templates have to pass through the flag from their underlying algorithm. Cc: stable@vger.kernel.org Signed-off-by: Eric Biggers <ebiggers@google.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2018-01-12T12:03:09Z Eric Biggers ebiggers@google.com 2018-01-03T19:16:23Z urn:sha1:841a3ff329713f796a63356fef6e2f72e4a3f6a3 When the cryptd template is used to wrap an unkeyed hash algorithm, don't install a ->setkey() method to the cryptd instance. This change is necessary for cryptd to keep working with unkeyed hash algorithms once we start enforcing that ->setkey() is called when present. Cc: stable@vger.kernel.org Signed-off-by: Eric Biggers <ebiggers@google.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2017-12-11T11:36:58Z Colin Ian King colin.king@canonical.com 2017-11-30T11:26:14Z urn:sha1:eaf356e4be27abcc3b741a3dd7e9bd530390c607 The cryptd_max_cpu_qlen module parameter is local to the source and does not need to be in global scope, so make it static. Cleans up sparse warning: crypto/cryptd.c:35:14: warning: symbol 'cryptd_max_cpu_qlen' was not declared. Should it be static? Signed-off-by: Colin Ian King <colin.king@canonical.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2017-11-29T06:33:31Z Jon Maxwell jmaxwell37@gmail.com 2017-11-22T05:08:17Z urn:sha1:c3a536056374ef8412c7ffa13790303ec02d8f46 Make the cryptd queue length configurable. We recently had customer where this needed to be tuned to accommodate the aesni_intel module and prevent packet drop. Signed-off-by: Jon Maxwell <jmaxwell37@gmail.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2017-11-03T14:11:16Z Gilad Ben-Yossef gilad@benyossef.com 2017-10-18T07:00:33Z urn:sha1:6b80ea389a0bceee6a0a801474b78ad0a8cd034d The crypto API was using the -EBUSY return value to indicate both a hard failure to submit a crypto operation into a transformation provider when the latter was busy and the backlog mechanism was not enabled as well as a notification that the operation was queued into the backlog when the backlog mechanism was enabled. Having the same return code indicate two very different conditions depending on a flag is both error prone and requires extra runtime check like the following to discern between the cases: if (err == -EINPROGRESS || (err == -EBUSY && (ahash_request_flags(req) & CRYPTO_TFM_REQ_MAY_BACKLOG))) This patch changes the return code used to indicate a crypto op failed due to the transformation provider being transiently busy to -ENOSPC. Signed-off-by: Gilad Ben-Yossef <gilad@benyossef.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2016-11-28T13:23:18Z Herbert Xu herbert@gondor.apana.org.au 2016-11-22T12:08:23Z urn:sha1:4e0958d19bd86ee8121cf044eac4395c7e504fb3 This patch adds skcipher support to cryptd alongside ablkcipher. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2016-11-01T00:37:17Z Tobias Klauser tklauser@distanz.ch 2016-10-31T14:42:43Z urn:sha1:89277a7d0ed49344be44e5383e56b10a1203f0c3 Remove the unused but set variable tfm in cryptd_enqueue_request to fix the following warning when building with 'W=1': crypto/cryptd.c:125:21: warning: variable 'tfm' set but not used [-Wunused-but-set-variable] Signed-off-by: Tobias Klauser <tklauser@distanz.ch> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2016-09-07T13:04:36Z Ard Biesheuvel ard.biesheuvel@linaro.org 2016-09-01T13:25:43Z urn:sha1:0bd2223594a4dcddc1e34b15774a3a4776f7749e When calling .import() on a cryptd ahash_request, the structure members that describe the child transform in the shash_desc need to be initialized like they are when calling .init() Cc: stable@vger.kernel.org Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2016-08-31T14:50:40Z Herbert Xu herbert@gondor.apana.org.au 2016-08-25T08:49:51Z urn:sha1:31bd44e7687be8a70e1e744e5cb84974b798d568 The AEAD code path incorrectly uses the child tfm to track the cryptd refcnt, and then potentially frees the child tfm. Fixes: 81760ea6a95a ("crypto: cryptd - Add helpers to check...") Reported-by: Sowmini Varadhan <sowmini.varadhan@oracle.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>