Linux kernel stable tree (mirror) https://git.radix-linux.su/kernel/linux.git/atom?h=v5.15.208 2022-12-31T12:14:24+00:00 2022-12-31T12:14:24+00:00 Zhang Yiqun zhangyiqun@phytium.com.cn 2022-11-16T09:24:11+00:00 urn:sha1:221afb2a1b8de9c32cd6e5feb3405372031172b4 [ Upstream commit 1aa33fc8d4032227253ceb736f47c52b859d9683 ] In the past, the data for mb-skcipher test has been allocated twice, that means the first allcated memory area is without free, which may cause a potential memory leakage. So this patch is to remove one allocation to fix this error. Fixes: e161c5930c15 ("crypto: tcrypt - add multibuf skcipher...") Signed-off-by: Zhang Yiqun <zhangyiqun@phytium.com.cn> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: Sasha Levin <sashal@kernel.org> 2022-08-17T12:24:19+00:00 Jason A. Donenfeld Jason@zx2c4.com 2022-05-28T19:44:07+00:00 urn:sha1:3dd33a09f5dc12ccb0902923c4c784eb0f8c7554 [ Upstream commit 2d16803c562ecc644803d42ba98a8e0aef9c014e ] BLAKE2s has no currently known use as an shash. Just remove all of this unnecessary plumbing. Removing this shash was something we talked about back when we were making BLAKE2s a built-in, but I simply never got around to doing it. So this completes that project. Importantly, this fixs a bug in which the lib code depends on crypto_simd_disabled_for_test, causing linker errors. Also add more alignment tests to the selftests and compare SIMD and non-SIMD compression functions, to make up for what we lose from testmgr.c. Reported-by: gaochao <gaochao49@huawei.com> Cc: Eric Biggers <ebiggers@kernel.org> Cc: Ard Biesheuvel <ardb@kernel.org> Cc: stable@vger.kernel.org Fixes: 6048fdcc5f26 ("lib/crypto: blake2s: include as built-in") Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: Sasha Levin <sashal@kernel.org> 2021-11-18T18:16:39+00:00 Horia Geantă horia.geanta@nxp.com 2021-10-15T07:39:18+00:00 urn:sha1:19bbbeb408d0aa3aa5591d17a664423b69fc08e2 [ Upstream commit 3ae88f676aa63366ffa9eebb8ae787c7e19f0c57 ] Commit ad6d66bcac77e ("crypto: tcrypt - include 1420 byte blocks in aead and skcipher benchmarks") mentions: > power-of-2 block size. So let's add 1420 bytes explicitly, and round > it up to the next blocksize multiple of the algo in question if it > does not support 1420 byte blocks. but misses updating skcipher multi-buffer tests. Fix this by using the proper (rounded) input size. Fixes: ad6d66bcac77e ("crypto: tcrypt - include 1420 byte blocks in aead and skcipher benchmarks") Signed-off-by: Horia Geantă <horia.geanta@nxp.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: Sasha Levin <sashal@kernel.org> 2021-08-21T07:44:57+00:00 Tianjia Zhang tianjia.zhang@linux.alibaba.com 2021-08-13T07:55:08+00:00 urn:sha1:357a753f5ec7ccdec196fa825d906c3acc4bd57c tcrypt supports GCM/CCM mode, CMAC, CBCMAC, and speed test of SM4 algorithm. Signed-off-by: Tianjia Zhang <tianjia.zhang@linux.alibaba.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2021-08-21T07:44:57+00:00 Tianjia Zhang tianjia.zhang@linux.alibaba.com 2021-08-13T07:55:06+00:00 urn:sha1:7b3d52683b3a47c0ba1dfd6b5994a3a795b06972 There are several places where the return value check of crypto_aead_setkey and crypto_aead_setauthsize were lost. It is necessary to add these checks. At the same time, move the crypto_aead_setauthsize() call out of the loop, and only need to call it once after load transform. Fixee: 53f52d7aecb4 ("crypto: tcrypt - Added speed tests for AEAD crypto alogrithms in tcrypt test suite") Signed-off-by: Tianjia Zhang <tianjia.zhang@linux.alibaba.com> Reviewed-by: Vitaly Chikunov <vt@altlinux.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2021-07-30T02:58:31+00:00 Tianjia Zhang tianjia.zhang@linux.alibaba.com 2021-07-20T03:46:42+00:00 urn:sha1:a7fc80bb22eb0f13791ee4f70484e88316cc2a24 tcrypt supports testing of SM4 cipher algorithms that use avx instruction set acceleration. The implementation of sm4 instruction set acceleration supports up to 8 blocks in parallel encryption and decryption, which is 128 bytes. Therefore, the 128-byte block size is also added to block_sizes. Signed-off-by: Tianjia Zhang <tianjia.zhang@linux.alibaba.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2021-05-28T07:11:45+00:00 Ard Biesheuvel ardb@kernel.org 2021-05-20T10:40:00+00:00 urn:sha1:aa22cd7f67807eb8047221e57f8a327432ab8309 Fill some of the recently freed up slots in tcrypt with xxhash64 and blake2b/blake2s, so we can easily benchmark their kernel implementations from user space. Signed-off-by: Ard Biesheuvel <ardb@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2021-02-10T06:55:56+00:00 Ard Biesheuvel ardb@kernel.org 2021-02-01T18:02:30+00:00 urn:sha1:784506a1df57737fc8460fd644b30ac8fecaedf0 It is not trivial to trace back why exactly the tnepres variant of serpent was added ~17 years ago - Google searches come up mostly empty, but it seems to be related with the 'kerneli' version, which was based on an incorrect interpretation of the serpent spec. In other words, nobody is likely to care anymore today, so let's get rid of it. Signed-off-by: Ard Biesheuvel <ardb@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2021-01-29T05:07:04+00:00 Ard Biesheuvel ardb@kernel.org 2021-01-21T13:07:33+00:00 urn:sha1:663f63ee6d9cdc68adf9afca5427e5c2b5b4ae2d Salsa20 is not used anywhere in the kernel, is not suitable for disk encryption, and widely considered to have been superseded by ChaCha20. So let's remove it. Signed-off-by: Ard Biesheuvel <ardb@kernel.org> Acked-by: Mike Snitzer <snitzer@redhat.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2021-01-29T05:07:04+00:00 Ard Biesheuvel ardb@kernel.org 2021-01-21T13:07:32+00:00 urn:sha1:87cd723f8978c59bc4e28593da45d09ebf5d92a2 Tiger is never referenced anywhere in the kernel, and unlikely to be depended upon by userspace via AF_ALG. So let's remove it. Signed-off-by: Ard Biesheuvel <ardb@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>