linux-toradex.git/arch/sparc/crypto, branch v3.10.73 Linux kernel for Apalis and Colibri modules crypto: prefix module autoloading with "crypto-" 2015-01-30T01:40:57+00:00 Kees Cook keescook@chromium.org 2014-11-21T01:05:53+00:00 e635e0d5b0adac839b91cc593babcb812cba3f18 commit 5d26a105b5a73e5635eae0629b42fa0a90e07b7b upstream. This prefixes all crypto module loading with "crypto-" so we never run the risk of exposing module auto-loading to userspace via a crypto API, as demonstrated by Mathias Krause: https://lkml.org/lkml/2013/3/4/70 Signed-off-by: Kees Cook <keescook@chromium.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 
commit 5d26a105b5a73e5635eae0629b42fa0a90e07b7b upstream.

This prefixes all crypto module loading with "crypto-" so we never run
the risk of exposing module auto-loading to userspace via a crypto API,
as demonstrated by Mathias Krause:

https://lkml.org/lkml/2013/3/4/70

Signed-off-by: Kees Cook <keescook@chromium.org>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
sparc64: Set CRYPTO_TFM_REQ_MAY_SLEEP consistently in CAMELLIA code. 2012-12-19T23:44:31+00:00 David S. Miller davem@davemloft.net 2012-12-19T23:44:31+00:00 62ba63dc892cf836ecb9ce4fdb7644d45c95070b We use the FPU and therefore cannot sleep during the crypto loops. Signed-off-by: David S. Miller <davem@davemloft.net> 
We use the FPU and therefore cannot sleep during the crypto
loops.

Signed-off-by: David S. Miller <davem@davemloft.net>
sparc64: Set CRYPTO_TFM_REQ_MAY_SLEEP consistently in DES code. 2012-12-19T23:43:38+00:00 David S. Miller davem@davemloft.net 2012-12-19T23:43:38+00:00 b3a37947074fa0a488d6c7ede58125b2278ab4e8 We use the FPU and therefore cannot sleep during the crypto loops. Signed-off-by: David S. Miller <davem@davemloft.net> 
We use the FPU and therefore cannot sleep during the crypto
loops.

Signed-off-by: David S. Miller <davem@davemloft.net>
sparc64: Fix ECB looping constructs in AES code. 2012-12-19T23:30:07+00:00 David S. Miller davem@davemloft.net 2012-12-19T23:30:07+00:00 ce6889515d5d481a5bd8ce5913dfed18f08310ea Things works better when you increment the source buffer pointer properly. Signed-off-by: David S. Miller <davem@davemloft.net> 
Things works better when you increment the source buffer pointer
properly.

Signed-off-by: David S. Miller <davem@davemloft.net>
sparc64: Set CRYPTO_TFM_REQ_MAY_SLEEP consistently in AES code. 2012-12-19T23:22:03+00:00 David S. Miller davem@davemloft.net 2012-12-19T23:22:03+00:00 b35d282ef7345320b594d48d8d70caedfa962a01 We use the FPU and therefore cannot sleep during the crypto loops. Signed-off-by: David S. Miller <davem@davemloft.net> 
We use the FPU and therefore cannot sleep during the crypto
loops.

Signed-off-by: David S. Miller <davem@davemloft.net>
sparc64: Fix AES ctr mode block size. 2012-12-19T23:20:23+00:00 David S. Miller davem@davemloft.net 2012-12-19T23:20:23+00:00 a8d97cef2168ffe5af1aeed6bf6cdc3ce53f3d0b Like the generic versions, we need to support a block size of '1' for CTR mode AES. This was discovered thanks to all of the new test cases added by Jussi Kivilinna. Signed-off-by: David S. Miller <davem@davemloft.net> 
Like the generic versions, we need to support a block size
of '1' for CTR mode AES.

This was discovered thanks to all of the new test cases added by
Jussi Kivilinna.

Signed-off-by: David S. Miller <davem@davemloft.net>
sparc64: Fix unrolled AES 256-bit key loops. 2012-12-19T23:19:11+00:00 David S. Miller davem@davemloft.net 2012-12-19T23:19:11+00:00 9f28ffc03e93343ac04874fda9edb7affea45165 The basic scheme of the block mode assembler is that we start by enabling the FPU, loading the key into the floating point registers, then iterate calling the encrypt/decrypt routine for each block. For the 256-bit key cases, we run short on registers in the unrolled loops. So the {ENCRYPT,DECRYPT}_256_2() macros reload the key registers that get clobbered. The unrolled macros, {ENCRYPT,DECRYPT}_256(), are not mindful of this. So if we have a mix of multi-block and single-block calls, the single-block unrolled 256-bit encrypt/decrypt can run with some of the key registers clobbered. Handle this by always explicitly loading those registers before using the non-unrolled 256-bit macro. This was discovered thanks to all of the new test cases added by Jussi Kivilinna. Signed-off-by: David S. Miller <davem@davemloft.net> 
The basic scheme of the block mode assembler is that we start by
enabling the FPU, loading the key into the floating point registers,
then iterate calling the encrypt/decrypt routine for each block.

For the 256-bit key cases, we run short on registers in the unrolled
loops.

So the {ENCRYPT,DECRYPT}_256_2() macros reload the key registers that
get clobbered.

The unrolled macros, {ENCRYPT,DECRYPT}_256(), are not mindful of this.

So if we have a mix of multi-block and single-block calls, the
single-block unrolled 256-bit encrypt/decrypt can run with some
of the key registers clobbered.

Handle this by always explicitly loading those registers before using
the non-unrolled 256-bit macro.

This was discovered thanks to all of the new test cases added by
Jussi Kivilinna.

Signed-off-by: David S. Miller <davem@davemloft.net>
sparc64: Fix build with mix of modular vs. non-modular crypto drivers. 2012-11-10T04:55:16+00:00 David S. Miller davem@davemloft.net 2012-11-10T04:53:32+00:00 226f7cea949303a3e1911999a9a2c71b0a708e73 We tried linking in a single built object to hold the device table, but only works if all of the sparc64 crypto modules get built the same way (modular vs. non-modular). Just include the device ID stub into each driver source file so that the table gets compiled into the correct result in all cases. Reported-by: Meelis Roos <mroos@linux.ee> Signed-off-by: David S. Miller <davem@davemloft.net> 
We tried linking in a single built object to hold the device table,
but only works if all of the sparc64 crypto modules get built the same
way (modular vs. non-modular).

Just include the device ID stub into each driver source file so that
the table gets compiled into the correct result in all cases.

Reported-by: Meelis Roos <mroos@linux.ee>
Signed-off-by: David S. Miller <davem@davemloft.net>
sparc64: Fix function argument comment in camellia_sparc64_key_expand asm. 2012-09-21T19:04:51+00:00 David S. Miller davem@davemloft.net 2012-09-21T19:04:51+00:00 274504f5e62882bb43ea6599b1308607956f20d9 Signed-off-by: David S. Miller <davem@davemloft.net> 
Signed-off-by: David S. Miller <davem@davemloft.net>
sparc64: Fix IV handling bug in des_sparc64_cbc_decrypt 2012-09-18T02:57:30+00:00 David S. Miller davem@davemloft.net 2012-09-18T02:57:30+00:00 65d5fcf5c284735d3a4254cb17691842385984bb The IV wasn't being propagated properly past the first loop iteration. This bug lived only because the crypto layer tests for cbc(des) do not have any cases that go more than one loop. Signed-off-by: David S. Miller <davem@davemloft.net> 
The IV wasn't being propagated properly past the first loop
iteration.

This bug lived only because the crypto layer tests for
cbc(des) do not have any cases that go more than one loop.

Signed-off-by: David S. Miller <davem@davemloft.net>