Linux kernel stable tree (mirror) https://git.radix-linux.su/kernel/linux.git/atom?h=v6.6.132 2023-05-24T10:12:33+00:00 2023-05-24T10:12:33+00:00 Herbert Xu herbert@gondor.apana.org.au 2023-05-19T09:04:04+00:00 urn:sha1:b7be31b0d5088507b745bfa014798e52fad6dc7a Some shash algorithms are so simple that they don't have an init_tfm function. These can be cloned trivially. Check this before failing in crypto_clone_shash. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Acked-by: Ard Biesheuvel <ardb@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2023-05-02T10:22:24+00:00 Ondrej Mosnacek omosnace@redhat.com 2023-05-02T08:02:33+00:00 urn:sha1:b8969a1b69672b163d057e7745ebc915df689211 Checking the config via ifdef incorrectly compiles out the report functions when CRYPTO_USER is set to =m. Fix it by using IS_ENABLED() instead. Fixes: c0f9e01dd266 ("crypto: api - Check CRYPTO_USER instead of NET for report") Signed-off-by: Ondrej Mosnacek <omosnace@redhat.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2023-04-20T10:20:04+00:00 Herbert Xu herbert@gondor.apana.org.au 2023-04-13T06:24:19+00:00 urn:sha1:ed3630b83e9394acef27041de7a2223f1e875e9a This patch adds the helpers crypto_clone_ahash and crypto_clone_shash. They are the hash-specific counterparts of crypto_clone_tfm. This allows code paths that cannot otherwise allocate a hash tfm object to do so. Once a new tfm has been obtained its key could then be changed without impacting other users. Note that only algorithms that implement clone_tfm can be cloned. However, all keyless hashes can be cloned by simply reusing the tfm object. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Reviewed-by: Simon Horman <simon.horman@corigine.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2023-04-06T08:18:53+00:00 Herbert Xu herbert@gondor.apana.org.au 2023-03-28T03:57:09+00:00 urn:sha1:9697b328d11152d7b918ee82438d4283d4edb563 Remove the HASH_MAX_STATESIZE limit now that it is unused. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2023-03-14T09:06:42+00:00 Herbert Xu herbert@gondor.apana.org.au 2023-02-16T10:35:28+00:00 urn:sha1:c0f9e01dd266b8a8f674d9f6a388972b81be1641 The report function is currently conditionalised on CONFIG_NET. As it's only used by CONFIG_CRYPTO_USER, conditionalising on that instead of CONFIG_NET makes more sense. This gets rid of a rarely used code-path. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2023-03-14T09:06:41+00:00 Herbert Xu herbert@gondor.apana.org.au 2023-02-16T10:35:15+00:00 urn:sha1:42808e5dc602c12ef3eb42cf96cb416b55205fa4 Move all stat code specific to hash into the hash code. While we're at it, change the stats so that bytes and counts are always incremented even in case of error. This allows the reference counting to be removed as we can now increment the counters prior to the operation. After the operation we simply increase the error count if necessary. This is safe as errors can only occur synchronously (or rather, the existing code already ignored asynchronous errors which are only visible to the callback function). Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2022-12-30T14:56:27+00:00 Ard Biesheuvel ardb@kernel.org 2022-12-13T16:13:10+00:00 urn:sha1:aa9695157f65c55e5c85a1c194859d3c03e68018 kmap_atomic() is used to create short-lived mappings of pages that may not be accessible via the kernel direct map. This is only needed on 32-bit architectures that implement CONFIG_HIGHMEM, but it can be used on 64-bit other architectures too, where the returned mapping is simply the kernel direct address of the page. However, kmap_atomic() does not support migration on CONFIG_HIGHMEM configurations, due to the use of per-CPU kmap slots, and so it disables preemption on all architectures, not just the 32-bit ones. This implies that all scatterwalk based crypto routines essentially execute with preemption disabled all the time, which is less than ideal. So let's switch scatterwalk_map/_unmap and the shash/ahash routines to kmap_local() instead, which serves a similar purpose, but without the resulting impact on preemption on architectures that have no need for CONFIG_HIGHMEM. Cc: Eric Biggers <ebiggers@kernel.org> Cc: Herbert Xu <herbert@gondor.apana.org.au> Cc: "Elliott, Robert (Servers)" <elliott@hpe.com> Signed-off-by: Ard Biesheuvel <ardb@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2022-12-02T10:12:40+00:00 Herbert Xu herbert@gondor.apana.org.au 2022-11-25T04:36:39+00:00 urn:sha1:1c799571976da15e055f32a0e244697500e97f64 Previously we limited the maximum alignment mask to 63. This is mostly due to stack usage for shash. This patch introduces a separate limit for shash algorithms and increases the general limit to 127 which is the value that we need for DMA allocations on arm64. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2022-11-25T09:39:19+00:00 Eric Biggers ebiggers@google.com 2022-11-18T19:44:21+00:00 urn:sha1:c060e16ddb51a92b1f7fa84c628d287ea5799864 This reverts commit 22ca9f4aaf431a9413dcc115dd590123307f274f because CFI no longer breaks cross-module function address equality, so crypto_shash_alg_has_setkey() can now be an inline function like before. This commit should not be backported to kernels that don't have the new CFI implementation. Acked-by: Peter Zijlstra (Intel) <peterz@infradead.org> Reviewed-by: Sami Tolvanen <samitolvanen@google.com> Signed-off-by: Eric Biggers <ebiggers@google.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2022-08-02T23:14:47+00:00 Hannes Reinecke hare@suse.de 2022-06-27T09:51:57+00:00 urn:sha1:85cc424381804386d991f81e08b4933ca1f04214 Add helper function to determine if a given synchronous hash is supported. Signed-off-by: Hannes Reinecke <hare@suse.de> Reviewed-by: Sagi Grimberg <sagi@grimberg.me> Reviewed-by: Chaitanya Kulkarni <kch@nvidia.com> Reviewed-by: Himanshu Madhani <himanshu.madhani@oracle.com> Acked-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: Christoph Hellwig <hch@lst.de> Signed-off-by: Jens Axboe <axboe@kernel.dk>