user/sven/linux.git/include/crypto, branch v5.4.38Linux Kernel
https://git.stealer.net/cgit.cgi/user/sven/linux.git/atom?h=v5.4.382020-01-17T18:48:46Zcrypto: algif_skcipher - Use chunksize instead of blocksize2020-01-17T18:48:46ZHerbert Xuherbert@gondor.apana.org.au2019-09-10T01:42:05Zurn:sha1:d7835f2b853bae5f6c0edf8bffc1eeff9c858e86
commit 5b0fe9552336338acb52756daf65dd7a4eeca73f upstream.
When algif_skcipher does a partial operation it always process data
that is a multiple of blocksize. However, for algorithms such as
CTR this is wrong because even though it can process any number of
bytes overall, the partial block must come at the very end and not
in the middle.
This is exactly what chunksize is meant to describe so this patch
changes blocksize to chunksize.
Fixes: 8ff590903d5f ("crypto: algif_skcipher - User-space...")
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Acked-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity2019-09-28T02:37:27ZLinus Torvaldstorvalds@linux-foundation.org2019-09-28T02:37:27Zurn:sha1:f1f2f614d535564992f32e720739cb53cf03489f
Pull integrity updates from Mimi Zohar:
"The major feature in this time is IMA support for measuring and
appraising appended file signatures. In addition are a couple of bug
fixes and code cleanup to use struct_size().
In addition to the PE/COFF and IMA xattr signatures, the kexec kernel
image may be signed with an appended signature, using the same
scripts/sign-file tool that is used to sign kernel modules.
Similarly, the initramfs may contain an appended signature.
This contained a lot of refactoring of the existing appended signature
verification code, so that IMA could retain the existing framework of
calculating the file hash once, storing it in the IMA measurement list
and extending the TPM, verifying the file's integrity based on a file
hash or signature (eg. xattrs), and adding an audit record containing
the file hash, all based on policy. (The IMA support for appended
signatures patch set was posted and reviewed 11 times.)
The support for appended signature paves the way for adding other
signature verification methods, such as fs-verity, based on a single
system-wide policy. The file hash used for verifying the signature and
the signature, itself, can be included in the IMA measurement list"
* 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity:
ima: ima_api: Use struct_size() in kzalloc()
ima: use struct_size() in kzalloc()
sefltest/ima: support appended signatures (modsig)
ima: Fix use after free in ima_read_modsig()
MODSIGN: make new include file self contained
ima: fix freeing ongoing ahash_request
ima: always return negative code for error
ima: Store the measurement again when appraising a modsig
ima: Define ima-modsig template
ima: Collect modsig
ima: Implement support for module-style appended signatures
ima: Factor xattr_verify() out of ima_appraise_measurement()
ima: Add modsig appraise_type option for module-style appended signatures
integrity: Select CONFIG_KEYS instead of depending on it
PKCS#7: Introduce pkcs7_get_digest()
PKCS#7: Refactor verify_pkcs7_signature()
MODSIGN: Export module signature definitions
ima: initialize the "template" field with the default template
crypto: skcipher - add the ability to abort a skcipher walk2019-09-09T07:35:38ZArd Biesheuvelard.biesheuvel@linaro.org2019-09-03T16:43:30Zurn:sha1:6017826b494008895632e092cc49c0bdb3019eab
After starting a skcipher walk, the only way to ensure that all
resources it has tied up are released is to complete it. In some
cases, it will be useful to be able to abort a walk cleanly after
it has started, so add this ability to the skcipher walk API.
Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
crypto: sha256 - Remove sha256/224_init code duplication2019-09-05T04:54:54ZHans de Goedehdegoede@redhat.com2019-09-01T20:35:32Zurn:sha1:c75c66bbaa56f130e2be095402422e56f608aa62
lib/crypto/sha256.c and include/crypto/sha256_base.h define
99% identical functions to init a sha256_state struct for sha224 or
sha256 use.
This commit moves the functions from lib/crypto/sha256.c to
include/crypto/sha.h (making them static inline) and makes the
sha224/256_base_init static inline functions from
include/crypto/sha256_base.h wrappers around the now also
static inline include/crypto/sha.h functions.
Signed-off-by: Hans de Goede <hdegoede@redhat.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
crypto: sha256 - Merge crypto/sha256.h into crypto/sha.h2019-09-05T04:54:54ZHans de Goedehdegoede@redhat.com2019-09-01T20:35:31Zurn:sha1:34d6245fbc81e764806a65fceaeb3ab3274a1e63
The generic sha256 implementation from lib/crypto/sha256.c uses data
structs defined in crypto/sha.h, so lets move the function prototypes
there too.
Signed-off-by: Hans de Goede <hdegoede@redhat.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
crypto: sha256 - Add sha224 support to sha256 library code2019-08-22T04:57:35ZHans de Goedehdegoede@redhat.com2019-08-17T14:24:34Zurn:sha1:7d2f5b0c43e0bb346fbf78daefd68cd0bfc56ca3
Add sha224 support to the lib/crypto/sha256 library code. This will allow
us to replace both the sha256 and sha224 parts of crypto/sha256_generic.c
when we remove the code duplication in further patches in this series.
Suggested-by: Eric Biggers <ebiggers@kernel.org>
Signed-off-by: Hans de Goede <hdegoede@redhat.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
crypto: sha256 - Make lib/crypto/sha256.c suitable for generic use2019-08-22T04:57:35ZHans de Goedehdegoede@redhat.com2019-08-17T14:24:33Zurn:sha1:01d3aee86625bd798a5e69afb92517d5530c7ed1
Before this commit lib/crypto/sha256.c has only been used in the s390 and
x86 purgatory code, make it suitable for generic use:
* Export interesting symbols
* Add -D__DISABLE_EXPORTS to CFLAGS_sha256.o for purgatory builds to
avoid the exports for the purgatory builds
* Add to lib/crypto/Makefile and crypto/Kconfig
Signed-off-by: Hans de Goede <hdegoede@redhat.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
crypto: sha256 - Move lib/sha256.c to lib/crypto2019-08-22T04:57:35ZHans de Goedehdegoede@redhat.com2019-08-17T14:24:31Zurn:sha1:ad767ee858b38af634c957a792cb001d54a7b981
Generic crypto implementations belong under lib/crypto not directly in
lib, likewise the header should be in include/crypto, not include/linux.
Note that the code in lib/crypto/sha256.c is not yet available for
generic use after this commit, it is still only used by the s390 and x86
purgatory code. Making it suitable for generic use is done in further
patches in this series.
Signed-off-by: Hans de Goede <hdegoede@redhat.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
crypto: des - remove now unused __des3_ede_setkey()2019-08-22T04:57:33ZArd Biesheuvelard.biesheuvel@linaro.org2019-08-15T09:01:11Zurn:sha1:18fbe0da8e98fe167fbfe1757003e2a2a74d24f3
Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
crypto: des - split off DES library from generic DES cipher driver2019-08-22T04:57:33ZArd Biesheuvelard.biesheuvel@linaro.org2019-08-15T09:01:09Zurn:sha1:04007b0e6cbbab5836ac891626e91edf10d46341
Another one for the cipher museum: split off DES core processing into
a separate module so other drivers (mostly for crypto accelerators)
can reuse the code without pulling in the generic DES cipher itself.
This will also permit the cipher interface to be made private to the
crypto API itself once we move the only user in the kernel (CIFS) to
this library interface.
Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>