talos-obmc-linux/drivers/crypto, branch dev-4.13Talos™ II Linux sources for OpenBMChttps://git.raptorcs.com/git/talos-obmc-linux/atom?h=dev-4.132017-10-05T07:47:28+00:00crypto: talitos - fix hashing2017-10-05T07:47:28+00:00LEROY Christophechristophe.leroy@c-s.fr2017-09-13T10:44:57+00:00urn:sha1:f18f482fd512c863ba1952a42872671329b7efbf
commit 886a27c0fc8a34633aadb0986dba11d8c150ae2e upstream.
md5sum on some files gives wrong result
Exemple:
With the md5sum from libkcapi:
c15115c05bad51113f81bdaee735dd09 test
With the original md5sum:
bbdf41d80ba7e8b2b7be3a0772be76cb test
This patch fixes this issue
Signed-off-by: Christophe Leroy <christophe.leroy@c-s.fr>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
crypto: talitos - fix sha2242017-10-05T07:47:28+00:00LEROY Christophechristophe.leroy@c-s.fr2017-09-13T10:44:51+00:00urn:sha1:3f934b4fa7ff69ee4e1344401b887fa0eed52173
commit afd62fa26343be6445479e75de9f07092a061459 upstream.
Kernel crypto tests report the following error at startup
[ 2.752626] alg: hash: Test 4 failed for sha224-talitos
[ 2.757907] 00000000: 30 e2 86 e2 e7 8a dd 0d d7 eb 9f d5 83 fe f1 b0
00000010: 2d 5a 6c a5 f9 55 ea fd 0e 72 05 22
This patch fixes it
Signed-off-by: Christophe Leroy <christophe.leroy@c-s.fr>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
crypto: talitos - Don't provide setkey for non hmac hashing algs.2017-10-05T07:47:28+00:00LEROY Christophechristophe.leroy@c-s.fr2017-09-12T09:03:39+00:00urn:sha1:b91a1fa5f120762e0d34686b067124c698eac478
commit 56136631573baa537a15e0012055ffe8cfec1a33 upstream.
Today, md5sum fails with error -ENOKEY because a setkey
function is set for non hmac hashing algs, see strace output below:
mmap(NULL, 378880, PROT_READ, MAP_SHARED, 6, 0) = 0x77f50000
accept(3, 0, NULL) = 7
vmsplice(5, [{"bin/\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0"..., 378880}], 1, SPLICE_F_MORE|SPLICE_F_GIFT) = 262144
splice(4, NULL, 7, NULL, 262144, SPLICE_F_MORE) = -1 ENOKEY (Required key not available)
write(2, "Generation of hash for file kcap"..., 50) = 50
munmap(0x77f50000, 378880) = 0
This patch ensures that setkey() function is set only
for hmac hashing.
Signed-off-by: Christophe Leroy <christophe.leroy@c-s.fr>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
crypto: caam/qi - properly set IV after {en,de}crypt2017-09-27T12:43:14+00:00Horia Geantăhoria.geanta@nxp.com2017-07-10T05:40:30+00:00urn:sha1:c6f18d933a63dafd9560723f0d19fbe4140a1660
commit a68a193805224d90bedd94e9e8ac287600f07b78 upstream.
caam/qi needs a fix similar to what was done for caam/jr in
commit "crypto: caam/qi - properly set IV after {en,de}crypt",
to allow for ablkcipher/skcipher chunking/streaming.
Fixes: b189817cf789 ("crypto: caam/qi - add ablkcipher and authenc algorithms")
Suggested-by: David Gstir <david@sigma-star.at>
Signed-off-by: Horia Geantă <horia.geanta@nxp.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
crypto: caam/qi - fix typo in authenc alg driver name2017-09-27T12:43:14+00:00Horia Geantăhoria.geanta@nxp.com2017-07-10T05:40:27+00:00urn:sha1:19be4d9f16f06b66d2e00dc7595ee0bbe52870d4
commit 84ea95436b83884fa55780618ffaf4bbe3312166 upstream.
s/desi/des for echainiv(authenc(hmac(sha256),cbc(des))) alg.
Fixes: b189817cf7894 ("crypto: caam/qi - add ablkcipher and authenc algorithms")
Signed-off-by: Horia Geantă <horia.geanta@nxp.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
crypto: ccp - Fix XTS-AES-128 support on v5 CCPs2017-09-27T12:43:14+00:00Gary R Hookgary.hook@amd.com2017-07-25T19:12:11+00:00urn:sha1:6cd73ad0a033847ee0cab2c6d33835d081fc0c4e
commit e652399edba99a5497f0d80f240c9075d3b43493 upstream.
Version 5 CCPs have some new requirements for XTS-AES: the type field
must be specified, and the key requires 512 bits, with each part
occupying 256 bits and padded with zeroes.
Signed-off-by: Gary R Hook <ghook@amd.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
crypto: caam/qi - fix compilation with DEBUG enabled2017-09-09T15:39:22+00:00Horia Geantăhoria.geanta@nxp.com2017-07-10T05:40:28+00:00urn:sha1:9808d1a5e20575b07620fcdbadc93ebedf1a593f
commit 972b812bd1e17cb0a9112f565951795f886fcc94 upstream.
caam/qi driver does not compile when DEBUG is enabled
(CRYPTO_DEV_FSL_CAAM_DEBUG=y):
drivers/crypto/caam/caamalg_qi.c: In function 'ablkcipher_done':
drivers/crypto/caam/caamalg_qi.c:794:2: error: implicit declaration of function 'dbg_dump_sg' [-Werror=implicit-function-declaration]
dbg_dump_sg(KERN_ERR, "dst @" __stringify(__LINE__)": ",
Since dbg_dump_sg() is shared between caam/jr and caam/qi, move it
in a shared location and export it.
At the same time:
-reduce ifdeferry by providing a no-op implementation for !DEBUG case
-rename it to caam_dump_sg() to be consistent in terms of
exported symbols namespace (caam_*)
Fixes: b189817cf789 ("crypto: caam/qi - add ablkcipher and authenc algorithms")
Signed-off-by: Horia Geantă <horia.geanta@nxp.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
crypto: caam/qi - fix compilation with CONFIG_DEBUG_FORCE_WEAK_PER_CPU=y2017-09-09T15:39:22+00:00Horia Geantăhoria.geanta@nxp.com2017-07-10T05:40:29+00:00urn:sha1:224aec7e1cb4f71dad248e4d6d5915643c663367
commit 1ed289f7b78c34565a33dbe6f8c482e71f493934 upstream.
caam/qi driver fails to compile when CONFIG_DEBUG_FORCE_WEAK_PER_CPU=y.
Fix it by making the offending local per_cpu variable global.
Fixes: 67c2315def06c ("crypto: caam - add Queue Interface (QI) backend support")
Reported-by: kbuild test robot <fengguang.wu@intel.com>
Signed-off-by: Horia Geantă <horia.geanta@nxp.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
crypto: ixp4xx - Fix error handling path in 'aead_perform()'2017-08-09T12:01:33+00:00Herbert Xuherbert@gondor.apana.org.au2017-08-02T08:40:47+00:00urn:sha1:28389575a8cf933a5f3c378556b9f4d3cce0efd2
In commit 0f987e25cb8a, the source processing has been moved in front of
the destination processing, but the error handling path has not been
modified accordingly.
Free resources in the correct order to avoid some leaks.
Cc: <stable@vger.kernel.org>
Fixes: 0f987e25cb8a ("crypto: ixp4xx - Fix false lastlen uninitialised warning")
Reported-by: Christophe JAILLET <christophe.jaillet@wanadoo.fr>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Reviewed-by: Arnd Bergmann <arnd@arndb.de>
crypto: inside-secure - fix the sha state length in hmac_sha1_setkey2017-08-03T05:36:11+00:00Antoine Ténartantoine.tenart@free-electrons.com2017-07-19T09:02:31+00:00urn:sha1:60c4081ec4195389f4fa1fce83eaad5e4b948748
A check is performed on the ipad/opad in the safexcel_hmac_sha1_setkey
function, but the index used by the loop doing it is wrong. It is
currently the size of the state array while it should be the size of a
sha1 state. This patch fixes it.
Fixes: 1b44c5a60c13 ("crypto: inside-secure - add SafeXcel EIP197 crypto engine driver")
Reported-by: Dan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: Antoine Tenart <antoine.tenart@free-electrons.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>