Linux kernel stable tree (mirror) https://git.radix-linux.su/kernel/linux.git/atom?h=v5.15.210 2026-06-19T11:33:46+00:00 2026-06-19T11:33:46+00:00 Al Viro viro@zeniv.linux.org.uk 2026-05-30T11:40:43+00:00 urn:sha1:31882893cafa120d76059cc080eac3bec24495df [ Upstream commit de4eda9de2d957ef2d6a8365a01e26a435e958cb ] READ/WRITE proved to be actively confusing - the meanings are "data destination, as used with read(2)" and "data source, as used with write(2)", but people keep interpreting those as "we read data from it" and "we write data to it", i.e. exactly the wrong way. Call them ITER_DEST and ITER_SOURCE - at least that is harder to misinterpret... Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> Stable-dep-of: a4f0b001782b ("vsock/virtio: reset connection on receiving queue overflow") Signed-off-by: Sasha Levin <sashal@kernel.org> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2022-08-17T12:24:19+00:00 Jason A. Donenfeld Jason@zx2c4.com 2022-05-28T19:44:07+00:00 urn:sha1:3dd33a09f5dc12ccb0902923c4c784eb0f8c7554 [ Upstream commit 2d16803c562ecc644803d42ba98a8e0aef9c014e ] BLAKE2s has no currently known use as an shash. Just remove all of this unnecessary plumbing. Removing this shash was something we talked about back when we were making BLAKE2s a built-in, but I simply never got around to doing it. So this completes that project. Importantly, this fixs a bug in which the lib code depends on crypto_simd_disabled_for_test, causing linker errors. Also add more alignment tests to the selftests and compare SIMD and non-SIMD compression functions, to make up for what we lose from testmgr.c. Reported-by: gaochao <gaochao49@huawei.com> Cc: Eric Biggers <ebiggers@kernel.org> Cc: Ard Biesheuvel <ardb@kernel.org> Cc: stable@vger.kernel.org Fixes: 6048fdcc5f26 ("lib/crypto: blake2s: include as built-in") Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: Sasha Levin <sashal@kernel.org> 2021-08-21T07:44:57+00:00 Tianjia Zhang tianjia.zhang@linux.alibaba.com 2021-08-13T07:55:07+00:00 urn:sha1:68039d605f7bb34ea6dbd4e099bf98599d52b0ac The GCM/CCM mode of the SM4 algorithm is defined in the rfc 8998 specification, and the test case data also comes from rfc 8998. Signed-off-by: Tianjia Zhang <tianjia.zhang@linux.alibaba.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2021-06-28T03:28:08+00:00 Stephan Müller smueller@chronox.de 2021-06-24T15:44:35+00:00 urn:sha1:8833272d876eb5320e4c7c31cc455542510dc4c3 Considering that the HMAC(SHA-512) DRBG is the default DRBG now, a self test is to be provided. The test vector is obtained from a successful NIST ACVP test run. Signed-off-by: Stephan Mueller <smueller@chronox.de> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2021-05-28T07:11:47+00:00 Hui Tang tanghui20@huawei.com 2021-05-22T02:44:31+00:00 urn:sha1:8e568fc2a71d097a5549043a39984a46262b6035 Add test vector params for NIST P384, add test vector for NIST P384 on vector of tests. Vector param from: https://datatracker.ietf.org/doc/html/rfc5903#section-3.1 Signed-off-by: Hui Tang <tanghui20@huawei.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2021-05-28T07:11:47+00:00 Hui Tang tanghui20@huawei.com 2021-05-22T02:44:28+00:00 urn:sha1:6889fc2104e5d20899b91e61daf07a7524b2010d Add a comment that p192 will fail to register in FIPS mode. Fix ecdh-nist-p192's entry in testmgr by removing the ifdefs and not setting fips_allowed. Signed-off-by: Hui Tang <tanghui20@huawei.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2021-03-26T08:55:55+00:00 Herbert Xu herbert@gondor.apana.org.au 2021-03-26T08:55:55+00:00 urn:sha1:3877869d13a043a2dbab0d034e5eac3b21f4994d This pulls in the NIST P384/256/192 x509 changes. 2021-03-26T08:41:58+00:00 Saulo Alessandre saulo.alessandre@tse.jus.br 2021-03-16T21:07:35+00:00 urn:sha1:c12d448ba939cafc5fe04ae93bc3f4c27b5d213c Register NIST P384 as an akcipher and extend the testmgr with NIST P384-specific test vectors. Summary of changes: * crypto/ecdsa.c - add ecdsa_nist_p384_init_tfm - register and unregister P384 tfm * crypto/testmgr.c - add test vector for P384 on vector of tests * crypto/testmgr.h - add test vector params for P384(sha1, sha224, sha256, sha384 and sha512) Signed-off-by: Saulo Alessandre <saulo.alessandre@tse.jus.br> Tested-by: Stefan Berger <stefanb@linux.ibm.com> Acked-by: Jarkko Sakkinen <jarkko@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2021-03-26T08:41:58+00:00 Stefan Berger stefanb@linux.ibm.com 2021-03-16T21:07:32+00:00 urn:sha1:4e6602916bc692ee31ac5b8bd8195fb078556844 Add support for parsing the parameters of a NIST P256 or NIST P192 key. Enable signature verification using these keys. The new module is enabled with CONFIG_ECDSA: Elliptic Curve Digital Signature Algorithm (NIST P192, P256 etc.) is A NIST cryptographic standard algorithm. Only signature verification is implemented. Cc: Herbert Xu <herbert@gondor.apana.org.au> Cc: "David S. Miller" <davem@davemloft.net> Cc: linux-crypto@vger.kernel.org Signed-off-by: Stefan Berger <stefanb@linux.ibm.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2021-03-12T13:04:03+00:00 Meng Yu yumeng18@huawei.com 2021-03-04T06:35:46+00:00 urn:sha1:6763f5ea2d9ac9b5a34a374ee637b5e4f1f525dd 1. crypto and crypto/atmel-ecc: Move curve id of ECDH from the key into the algorithm name instead in crypto and atmel-ecc, so ECDH algorithm name change form 'ecdh' to 'ecdh-nist-pxxx', and we cannot use 'curve_id' in 'struct ecdh'; 2. crypto/testmgr and net/bluetooth: Modify 'testmgr.c', 'testmgr.h' and 'net/bluetooth' to adapt the modification. Signed-off-by: Meng Yu <yumeng18@huawei.com> Reviewed-by: Zaibo Xu <xuzaibo@huawei.com> Reported-by: kernel test robot <lkp@intel.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>