kernel/linux.git/drivers/crypto/ccp, branch v3.18.62Linux kernel stable tree (mirror)https://git.radix-linux.su/kernel/linux.git/atom?h=v3.18.622016-06-18T20:52:51+00:00crypto: ccp - Fix AES XTS error for request sizes above 40962016-06-18T20:52:51+00:00Tom Lendackythomas.lendacky@amd.com2016-05-20T22:33:03+00:00urn:sha1:ce0cad42490c559fc3ca204bb6f5a581f6ef5573
[ Upstream commit ab6a11a7c8ef47f996974dd3c648c2c0b1a36ab1 ]
The ccp-crypto module for AES XTS support has a bug that can allow requests
greater than 4096 bytes in size to be passed to the CCP hardware. The CCP
hardware does not support request sizes larger than 4096, resulting in
incorrect output. The request should actually be handled by the fallback
mechanism instantiated by the ccp-crypto module.
Add a check to insure the request size is less than or equal to the maximum
supported size and use the fallback mechanism if it is not.
Cc: <stable@vger.kernel.org> # 3.14.x-
Signed-off-by: Tom Lendacky <thomas.lendacky@amd.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Sasha Levin <sasha.levin@oracle.com>
crypto: ccp - Prevent information leakage on export2016-05-09T01:21:51+00:00Tom Lendackythomas.lendacky@amd.com2016-04-13T15:52:25+00:00urn:sha1:1e53b1951e8a48266144d3a79a6a03950111b717
[ Upstream commit f709b45ec461b548c41a00044dba1f1b572783bf ]
Prevent information from leaking to userspace by doing a memset to 0 of
the export state structure before setting the structure values and copying
it. This prevents un-initialized padding areas from being copied into the
export area.
Cc: <stable@vger.kernel.org> # 3.14.x-
Reported-by: Ben Hutchings <ben@decadent.org.uk>
Signed-off-by: Tom Lendacky <thomas.lendacky@amd.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Sasha Levin <sasha.levin@oracle.com>
crypto: ccp - memset request context to zero during import2016-04-18T12:49:19+00:00Tom Lendackythomas.lendacky@amd.com2016-02-25T22:48:13+00:00urn:sha1:ead3fd505c30494ef27420c3ef70f42cb13ff5de
[ Upstream commit ce0ae266feaf35930394bd770c69778e4ef03ba9 ]
Since a crypto_ahash_import() can be called against a request context
that has not had a crypto_ahash_init() performed, the request context
needs to be cleared to insure there is no random data present. If not,
the random data can result in a kernel oops during crypto_ahash_update().
Cc: <stable@vger.kernel.org> # 3.14.x-
Signed-off-by: Tom Lendacky <thomas.lendacky@amd.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Sasha Levin <sasha.levin@oracle.com>
crypto: ccp - Don't assume export/import areas are aligned2016-04-12T13:10:24+00:00Tom Lendackythomas.lendacky@amd.com2016-02-02T17:38:21+00:00urn:sha1:52a497f9b5f1cfc5a2fbb507fbc4832f43e6a93b
[ Upstream commit b31dde2a5cb1bf764282abf934266b7193c2bc7c ]
Use a local variable for the exported and imported state so that
alignment is not an issue. On export, set a local variable from the
request context and then memcpy the contents of the local variable to
the export memory area. On import, memcpy the import memory area into
a local variable and then use the local variable to set the request
context.
Cc: <stable@vger.kernel.org> # 3.14.x-
Signed-off-by: Tom Lendacky <thomas.lendacky@amd.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Sasha Levin <sasha.levin@oracle.com>
crypto: ccp - Limit the amount of information exported2016-04-12T13:10:19+00:00Tom Lendackythomas.lendacky@amd.com2016-01-29T18:45:14+00:00urn:sha1:eabdb09463bb2474b8b47dffea3a0231671aaaa4
[ Upstream commit d1662165ae612ec8b5f94a6b07e65ea58b6dce34 ]
Since the exported information can be exposed to user-space, instead of
exporting the entire request context only export the minimum information
needed.
Cc: <stable@vger.kernel.org> # 3.14.x-
Signed-off-by: Tom Lendacky <thomas.lendacky@amd.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Sasha Levin <sasha.levin@oracle.com>
crypto: ccp - Add hash state import and export support2016-04-12T13:09:56+00:00Tom Lendackythomas.lendacky@amd.com2016-01-12T17:17:38+00:00urn:sha1:597a8627d548be5127c774aa0c1204ec04e8b764
[ Upstream commit 952bce9792e6bf36fda09c2e5718abb5d9327369 ]
Commit 8996eafdcbad ("crypto: ahash - ensure statesize is non-zero")
added a check to prevent ahash algorithms from successfully registering
if the import and export functions were not implemented. This prevents
an oops in the hash_accept function of algif_hash. This commit causes
the ccp-crypto module SHA support and AES CMAC support from successfully
registering and causing the ccp-crypto module load to fail because the
ahash import and export functions are not implemented.
Update the CCP Crypto API support to provide import and export support
for ahash algorithms.
Cc: <stable@vger.kernel.org> # 3.14.x-
Signed-off-by: Tom Lendacky <thomas.lendacky@amd.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Sasha Levin <sasha.levin@oracle.com>
crypto: LLVMLinux: Remove VLAIS from crypto/ccp/ccp-crypto-sha.c2014-10-14T08:51:23+00:00Jan-Simon Möllerdl9pf@gmx.de2014-09-04T18:39:24+00:00urn:sha1:61ded52438d5fdc4dea87f823c455f8ac1e426df
Replaced the use of a Variable Length Array In Struct (VLAIS) with a C99
compliant equivalent. This patch allocates the appropriate amount of memory
using a char array using the SHASH_DESC_ON_STACK macro.
The new code can be compiled with both gcc and clang.
Signed-off-by: Jan-Simon Möller <dl9pf@gmx.de>
Signed-off-by: Behan Webster <behanw@converseincode.com>
Reviewed-by: Mark Charlebois <charlebm@gmail.com>
Acked-by: Herbert Xu <herbert@gondor.apana.org.au>
crypto: ccp - Check for CCP before registering crypto algs2014-09-24T06:23:34+00:00Tom Lendackythomas.lendacky@amd.com2014-09-05T15:31:09+00:00urn:sha1:c9f21cb6388898bfe69886d001316dae7ecc9a4b
If the ccp is built as a built-in module, then ccp-crypto (whether
built as a module or a built-in module) will be able to load and
it will register its crypto algorithms. If the system does not have
a CCP this will result in -ENODEV being returned whenever a command
is attempted to be queued by the registered crypto algorithms.
Add an API, ccp_present(), that checks for the presence of a CCP
on the system. The ccp-crypto module can use this to determine if it
should register it's crypto alogorithms.
Cc: stable@vger.kernel.org
Reported-by: Scot Doyle <lkml14@scotdoyle.com>
Signed-off-by: Tom Lendacky <thomas.lendacky@amd.com>
Tested-by: Scot Doyle <lkml14@scotdoyle.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
PCI: Remove DEFINE_PCI_DEVICE_TABLE macro use2014-08-12T18:15:14+00:00Benoit Tainebenoit.taine@lip6.fr2014-08-08T13:56:03+00:00urn:sha1:9baa3c34ac4e27f7e062f266f50cc5dbea26a6c1
We should prefer `struct pci_device_id` over `DEFINE_PCI_DEVICE_TABLE` to
meet kernel coding style guidelines. This issue was reported by checkpatch.
A simplified version of the semantic patch that makes this change is as
follows (http://coccinelle.lip6.fr/):
// <smpl>
@@
identifier i;
declarer name DEFINE_PCI_DEVICE_TABLE;
initializer z;
@@
- DEFINE_PCI_DEVICE_TABLE(i)
+ const struct pci_device_id i[]
= z;
// </smpl>
[bhelgaas: add semantic patch]
Signed-off-by: Benoit Taine <benoit.taine@lip6.fr>
Signed-off-by: Bjorn Helgaas <bhelgaas@google.com>crypto: ccp - Do not sign extend input data to CCP2014-08-01T14:36:13+00:00Tom Lendackythomas.lendacky@amd.com2014-07-30T20:41:32+00:00urn:sha1:6391723293bb55f05b43973bbbc7a06822b50555
The CCP hardware interprets all numbers as unsigned numbers, therefore
sign extending input data is not valid. Modify the function calls
for RSA and ECC to not perform sign extending.
This patch is based on the cryptodev-2.6 kernel tree.
Signed-off-by: Tom Lendacky <thomas.lendacky@amd.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>