blackbird-op-linux/crypto/wp512.c, branch v4.4Blackbird™ Linux sources for OpenPOWERhttps://git.raptorcs.com/git/blackbird-op-linux/atom?h=v4.42015-01-13T11:29:11+00:00crypto: add missing crypto module aliases2015-01-13T11:29:11+00:00Mathias Krauseminipli@googlemail.com2015-01-11T17:17:42+00:00urn:sha1:3e14dcf7cb80b34a1f38b55bc96f02d23fdaaaaf
Commit 5d26a105b5a7 ("crypto: prefix module autoloading with "crypto-"")
changed the automatic module loading when requesting crypto algorithms
to prefix all module requests with "crypto-". This requires all crypto
modules to have a crypto specific module alias even if their file name
would otherwise match the requested crypto algorithm.
Even though commit 5d26a105b5a7 added those aliases for a vast amount of
modules, it was missing a few. Add the required MODULE_ALIAS_CRYPTO
annotations to those files to make them get loaded automatically, again.
This fixes, e.g., requesting 'ecb(blowfish-generic)', which used to work
with kernels v3.18 and below.
Also change MODULE_ALIAS() lines to MODULE_ALIAS_CRYPTO(). The former
won't work for crypto modules any more.
Fixes: 5d26a105b5a7 ("crypto: prefix module autoloading with "crypto-"")
Cc: Kees Cook <keescook@chromium.org>
Signed-off-by: Mathias Krause <minipli@googlemail.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
crypto: prefix module autoloading with "crypto-"2014-11-24T14:43:57+00:00Kees Cookkeescook@chromium.org2014-11-21T01:05:53+00:00urn:sha1:5d26a105b5a73e5635eae0629b42fa0a90e07b7b
This prefixes all crypto module loading with "crypto-" so we never run
the risk of exposing module auto-loading to userspace via a crypto API,
as demonstrated by Mathias Krause:
https://lkml.org/lkml/2013/3/4/70
Signed-off-by: Kees Cook <keescook@chromium.org>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
crypto: memzero_explicit - make sure to clear out sensitive data2014-10-17T15:44:07+00:00Daniel Borkmanndborkman@redhat.com2014-09-07T21:23:38+00:00urn:sha1:7185ad2672a7d50bc384de0e38d90b75d99f3d82
Recently, in commit 13aa93c70e71 ("random: add and use memzero_explicit()
for clearing data"), we have found that GCC may optimize some memset()
cases away when it detects a stack variable is not being used anymore
and going out of scope. This can happen, for example, in cases when we
are clearing out sensitive information such as keying material or any
e.g. intermediate results from crypto computations, etc.
With the help of Coccinelle, we can figure out and fix such occurences
in the crypto subsytem as well. Julia Lawall provided the following
Coccinelle program:
@@
type T;
identifier x;
@@
T x;
... when exists
when any
-memset
+memzero_explicit
(&x,
-0,
...)
... when != x
when strict
@@
type T;
identifier x;
@@
T x[...];
... when exists
when any
-memset
+memzero_explicit
(x,
-0,
...)
... when != x
when strict
Therefore, make use of the drop-in replacement memzero_explicit() for
exactly such cases instead of using memset().
Signed-off-by: Daniel Borkmann <dborkman@redhat.com>
Cc: Julia Lawall <julia.lawall@lip6.fr>
Cc: Herbert Xu <herbert@gondor.apana.org.au>
Cc: Theodore Ts'o <tytso@mit.edu>
Cc: Hannes Frederic Sowa <hannes@stressinduktion.org>
Acked-by: Hannes Frederic Sowa <hannes@stressinduktion.org>
Acked-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Theodore Ts'o <tytso@mit.edu>
crypto: whirlpool - use crypto_[un]register_shashes2012-08-01T09:47:27+00:00Jussi Kivilinnajussi.kivilinna@mbnet.fi2012-07-11T11:20:41+00:00urn:sha1:f4b0277e7ef435733b888a62cf9c4c12b219e7c5
Combine all shash algs to be registered and use new crypto_[un]register_shashes
functions. This simplifies init/exit code.
Signed-off-by: Jussi Kivilinna <jussi.kivilinna@mbnet.fi>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
crypto: whirlpool - count rounds from 02011-10-21T12:24:16+00:00Alexey Dobriyanadobriyan@gmail.com2011-09-27T05:26:24+00:00urn:sha1:ac4385d250d83fae0148607d9fb694aa6e90ab9c
rc[0] is unused because rounds are counted from 1.
Save an u64!
Signed-off-by: Alexey Dobriyan <adobriyan@gmail.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
crypto: wp512 - Switch to shash2008-12-25T00:02:22+00:00Adrian-Ken Rueegseggerken@codelabs.ch2008-12-07T11:34:37+00:00urn:sha1:4946510baac6aaa8658528e3deefc7e9ba2951a9
This patch changes wp512, wp384 and wp256 to the new shash interface.
Signed-off-by: Adrian-Ken Rueegsegger <ken@codelabs.ch>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
[CRYPTO] all: Clean up init()/fini()2008-04-21T02:19:34+00:00Kamalesh Babulalkamalesh@linux.vnet.ibm.com2008-04-05T13:00:57+00:00urn:sha1:3af5b90bde5000abc739996cb03fd718e753d053
On Thu, Mar 27, 2008 at 03:40:36PM +0100, Bodo Eggert wrote:
> Kamalesh Babulal <kamalesh@linux.vnet.ibm.com> wrote:
>
> > This patch cleanups the crypto code, replaces the init() and fini()
> > with the <algorithm name>_init/_fini
>
> This part ist OK.
>
> > or init/fini_<algorithm name> (if the
> > <algorithm name>_init/_fini exist)
>
> Having init_foo and foo_init won't be a good thing, will it? I'd start
> confusing them.
>
> What about foo_modinit instead?
Thanks for the suggestion, the init() is replaced with
<algorithm name>_mod_init ()
and fini () is replaced with <algorithm name>_mod_fini.
Signed-off-by: Kamalesh Babulal <kamalesh@linux.vnet.ibm.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
cleanup asm/scatterlist.h includes2007-11-02T07:47:06+00:00Adrian Bunkbunk@kernel.org2007-10-30T09:35:04+00:00urn:sha1:87ae9afdcada236d0a1b38ce2c465a65916961dc
Not architecture specific code should not #include <asm/scatterlist.h>.
This patch therefore either replaces them with
#include <linux/scatterlist.h> or simply removes them if they were
unused.
Signed-off-by: Adrian Bunk <bunk@kernel.org>
Signed-off-by: Jens Axboe <jens.axboe@oracle.com>
[CRYPTO] all: Pass tfm instead of ctx to algorithms2006-06-26T07:34:39+00:00Herbert Xuherbert@gondor.apana.org.au2006-05-16T12:09:29+00:00urn:sha1:6c2bb98bc33ae33c7a33a133a4cd5a06395fece5
Up until now algorithms have been happy to get a context pointer since
they know everything that's in the tfm already (e.g., alignment, block
size).
However, once we have parameterised algorithms, such information will
be specific to each tfm. So the algorithm API needs to be changed to
pass the tfm structure instead of the context pointer.
This patch is basically a text substitution. The only tricky bit is
the assembly routines that need to get the context pointer offset
through asm-offsets.h.
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
[CRYPTO] Use standard byte order macros wherever possible2006-01-09T22:15:34+00:00Herbert Xuherbert@gondor.apana.org.au2005-10-30T10:25:15+00:00urn:sha1:06ace7a9bafeb9047352707eb79e8eaa0dfdf5f2
A lot of crypto code needs to read/write a 32-bit/64-bit words in a
specific gender. Many of them open code them by reading/writing one
byte at a time. This patch converts all the applicable usages over
to use the standard byte order macros.
This is based on a previous patch by Denis Vlasenko.
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>