Hosts the 0x221E linux distro kernel. https://universe.0xinfinity.dev/distro/kernel/atom?h=linux-4.2.y 2015-11-09T22:37:38Z 2015-11-09T22:37:38Z Herbert Xu herbert@gondor.apana.org.au 2015-10-19T10:23:57Z urn:sha1:4dc153b8f0b5bda19f930ef84bb8d4be5fff605a commit 3fc89adb9fa4beff31374a4bf50b3d099d88ae83 upstream. Currently a number of Crypto API operations may fail when a signal occurs. This causes nasty problems as the caller of those operations are often not in a good position to restart the operation. In fact there is currently no need for those operations to be interrupted by user signals at all. All we need is for them to be killable. This patch replaces the relevant calls of signal_pending with fatal_signal_pending, and wait_for_completion_interruptible with wait_for_completion_killable, respectively. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2015-06-03T02:48:34Z Herbert Xu herbert@gondor.apana.org.au 2015-05-28T14:07:56Z urn:sha1:c2110f28341cec2ecfd9474db15ac090bce1234c This patch ensures that the tfm context always has enough extra memory to ensure that it is aligned according to cra_alignment. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2015-05-13T02:31:25Z Herbert Xu herbert@gondor.apana.org.au 2015-05-11T09:47:39Z urn:sha1:d6ef2f198d4c9d95b77ee4918b97fc8a53c8a7b7 This patch adds a new primitive crypto_grab_spawn which is meant to replace crypto_init_spawn and crypto_init_spawn2. Under the new scheme the user no longer has to worry about reference counting the alg object before it is subsumed by the spawn. It is pretty much an exact copy of crypto_grab_aead. Prior to calling this function spawn->frontend and spawn->inst must have been set. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2015-04-26T06:33:15Z Herbert Xu herbert@gondor.apana.org.au 2015-04-23T06:48:05Z urn:sha1:bd4a7c69aaed79ae1a299db8063fe4daf5e4a2f1 The commit 59afdc7b32143528524455039e7557a46b60e4c8 ("crypto: api - Move module sig ifdef into accessor function") broke the build when modules are completely disabled because we directly dereference module->name. This patch fixes this by using the accessor function module_name. Reported-by: Fengguang Wu <fengguang.wu@intel.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2015-04-23T06:18:08Z Herbert Xu herbert@gondor.apana.org.au 2015-04-22T05:25:53Z urn:sha1:3133d76fc60bce6f3e00efb6c3540f2f449ff569 All users of fips_enabled should include linux/fips.h directly instead of getting it through internal.h. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2015-04-23T06:18:07Z Herbert Xu herbert@gondor.apana.org.au 2015-04-22T03:28:46Z urn:sha1:59afdc7b32143528524455039e7557a46b60e4c8 Currently we're hiding mod->sig_ok under an ifdef in open code. This patch adds a module_sig_ok accessor function and removes that ifdef. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Acked-by: Rusty Russell <rusty@rustcorp.com.au> 2015-04-21T02:19:54Z Herbert Xu herbert@gondor.apana.org.au 2015-04-20T05:39:00Z urn:sha1:38d21433112c25acdb8e93f60be629e7a1c27a26 This patch adds a crypto_alg_extsize helper that can be used by algorithm types such as pcompress and shash. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2015-04-16T03:26:16Z Herbert Xu herbert@gondor.apana.org.au 2015-04-16T03:07:13Z urn:sha1:34c9a0ffc75ad25b6a60f61e27c4a4b1189b8085 Commit 9c521a200bc3 ("crypto: api - remove instance when test failed") tried to grab a module reference count before the module was even set. Worse, it then goes on to free the module reference count after it is set so you quickly end up with a negative module reference count which prevents people from using any instances belonging to that module. This patch moves the module initialisation before the reference count. Reported-by: Linus Torvalds <torvalds@linux-foundation.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org> 2015-04-10T13:39:38Z Stephan Mueller smueller@chronox.de 2015-04-09T10:09:55Z urn:sha1:9c521a200bc3c12bd724e48a75c57d5358f672be A cipher instance is added to the list of instances unconditionally regardless of whether the associated test failed. However, a failed test implies that during another lookup, the cipher instance will be added to the list again as it will not be found by the lookup code. That means that the list can be filled up with instances whose tests failed. Note: tests only fail in reality in FIPS mode when a cipher is not marked as fips_allowed=1. This can be seen with cmac(des3_ede) that does not have a fips_allowed=1. When allocating the cipher, the allocation fails with -ENOENT due to the missing fips_allowed=1 flag (which causes the testmgr to return EINVAL). Yet, the instance of cmac(des3_ede) is shown in /proc/crypto. Allocating the cipher again fails again, but a 2nd instance is listed in /proc/crypto. The patch simply de-registers the instance when the testing failed. Signed-off-by: Stephan Mueller <smueller@chronox.de> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2015-04-10T13:39:24Z Herbert Xu herbert@gondor.apana.org.au 2015-04-09T09:40:35Z urn:sha1:e9b8e5beb7befe682f9fe90428ea534b01d66568 We currently initialise the crypto_alg ref count in the function __crypto_register_alg. As one of the callers of that function crypto_register_instance needs to obtain a ref count before it calls __crypto_register_alg, we need to move the initialisation out of there. Since both callers of __crypto_register_alg call crypto_check_alg, this is the logical place to perform the initialisation. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Acked-by: Stephan Mueller <smueller@chronox.de>