[GIT PULL] Crypto Update for 6.3
From: Herbert Xu
Date: Mon Feb 20 2023 - 00:22:52 EST
Hi Linus:
The following changes since commit 736f88689c6912f05d0116917910603a7ba97de7:
crypto: arm64/sm4 - fix possible crash with CFI enabled (2022-12-30 17:57:42 +0800)
are available in the Git repository at:
git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6.git v6.3-p1
for you to fetch changes up to 8b84475318641c2b89320859332544cf187e1cbd:
crypto: x86/aria-avx - Do not use avx2 instructions (2023-02-14 13:39:33 +0800)
----------------------------------------------------------------
This update includes the following changes:
API:
- Use kmap_local instead of kmap_atomic.
- Change request callback to take void pointer.
- Print FIPS status in /proc/crypto (when enabled).
Algorithms:
- Add rfc4106/gcm support on arm64.
- Add ARIA AVX2/512 support on x86.
Drivers:
- Add TRNG driver for StarFive SoC.
- Delete ux500/hash driver (subsumed by stm32/hash).
- Add zlib support in qat.
- Add RSA support in aspeed.
----------------------------------------------------------------
Alexander Lobakin (1):
crypto: octeontx2 - Fix objects shared between several modules
Ard Biesheuvel (5):
crypto: scatterwalk - use kmap_local() not kmap_atomic()
crypto: skcipher - Use scatterwalk (un)map interface for dst and src buffers
crypto: arm64/gcm - add RFC4106 support
crypto: tcrypt - include larger key sizes in RFC4106 benchmark
crypto: aead - fix inaccurate documentation
Arnd Bergmann (1):
crypto: wp512 - disable kmsan checks in wp512_process_buffer()
Christophe JAILLET (1):
crypto: virtio/akcipher - Do not use GFP_ATOMIC when not needed
Danny Tsen (6):
crypto: p10-aes-gcm - Update Kconfig and Makefile
crypto: p10-aes-gcm - Glue code for AES/GCM stitched implementation
crypto: p10-aes-gcm - An accelerated AES/GCM stitched implementation
crypto: p10-aes-gcm - Supporting functions for AES
crypto: p10-aes-gcm - Supporting functions for ghash
crypto: p10-aes-gcm - A perl script to process PowerPC assembler source
David Rientjes (1):
crypto: ccp - Avoid page allocation failure warning for SEV_GET_ID2
Eric Biggers (3):
crypto: x86/ghash - fix unaligned access in ghash_setkey()
crypto: x86/ghash - use le128 instead of u128
crypto: x86/ghash - add comment and fix broken link
Giovanni Cabiddu (2):
crypto: qat - fix out-of-bounds read
crypto: qat - drop log level of msg in get_instance_node()
Gustavo A. R. Silva (1):
crypto: aspeed - Replace zero-length array with flexible-array member
Herbert Xu (77):
crypto: arm/sha1 - Fix clang function cast warnings
crypto: lib/blake2s - Split up test function to halve stack usage
lib/mpi: Fix buffer overrun when SG is too long
crypto: caam - Avoid GCC memset bug warning
crypto: sun8i-ss - Remove GFP_DMA and add DMA alignment padding
crypto: caam - Remove GFP_DMA and add DMA alignment padding
crypto: talitos - Remove GFP_DMA and add DMA alignment padding
crypto: p10-aes-gcm - Revert implementation
crypto: essiv - Handle EBUSY correctly
crypto: seqiv - Handle EBUSY correctly
crypto: cryptd - Remove unnecessary skcipher_request_zero
crypto: bcm - Use subrequest for fallback
crypto: caam - Use ahash_request_complete
crypto: xts - Handle EBUSY correctly
crypto: engine - Fix excess parameter doc warning
Revert "crypto: rsa-pkcs1pad - Replace GFP_ATOMIC with GFP_KERNEL in pkcs1pad_encrypt_sign_complete"
crypto: img-hash - Fix sparse endianness warning
crypto: marvell/cesa - Use crypto_wait_req
hwrng: starfive - Enable compile testing
crypto: arm64/aes-ccm - Rewrite skcipher walker loop
crypto: safexcel - Use crypto_wait_req
crypto: arm64/sm4-gcm - Fix possible crash in GCM cryption
crypto: api - Add scaffolding to change completion function signature
dm: Add scaffolding to change completion function signature
net: macsec: Add scaffolding to change completion function signature
fs: ecryptfs: Use crypto_wait_req
Bluetooth: Use crypto_wait_req
net: ipv4: Add scaffolding to change completion function signature
net: ipv6: Add scaffolding to change completion function signature
tipc: Add scaffolding to change completion function signature
tls: Only use data field in crypto completion function
KEYS: DH: Use crypto_wait_req
crypto: cryptd - Use subreq for AEAD
crypto: acompress - Use crypto_request_complete
crypto: aead - Use crypto_request_complete
crypto: akcipher - Use crypto_request_complete
crypto: hash - Use crypto_request_complete
crypto: kpp - Use crypto_request_complete
crypto: skcipher - Use crypto_request_complete
crypto: engine - Use crypto_request_complete
crypto: rsa-pkcs1pad - Use akcipher_request_complete
crypto: cryptd - Use request_complete helpers
crypto: atmel - Use request_complete helpers
crypto: artpec6 - Use request_complete helpers
crypto: bcm - Use request_complete helpers
crypto: cpt - Use request_complete helpers
crypto: nitrox - Use request_complete helpers
crypto: ccp - Use request_complete helpers
crypto: chelsio - Use request_complete helpers
crypto: hifn_795x - Use request_complete helpers
crypto: hisilicon - Use request_complete helpers
crypto: img-hash - Use request_complete helpers
crypto: safexcel - Use request_complete helpers
crypto: ixp4xx - Use request_complete helpers
crypto: marvell/cesa - Use request_complete helpers
crypto: octeontx - Use request_complete helpers
crypto: octeontx2 - Use request_complete helpers
crypto: mxs-dcp - Use request_complete helpers
crypto: qat - Use request_complete helpers
crypto: qce - Use request_complete helpers
crypto: s5p-sss - Use request_complete helpers
crypto: sahara - Use request_complete helpers
crypto: talitos - Use request_complete helpers
crypto: api - Use data directly in completion function
dm: Remove completion function scaffolding
net: macsec: Remove completion function scaffolding
net: ipv4: Remove completion function scaffolding
net: ipv6: Remove completion function scaffolding
tipc: Remove completion function scaffolding
tls: Remove completion function scaffolding
crypto: api - Remove completion function scaffolding
tls: Pass rec instead of aead_req into tls_encrypt_done
crypto: ecc - Silence sparse warning
crypto: nx - Fix sparse warnings
crypto: crypto4xx - Call dma_unmap_page when done
crypto: proc - Print fips status
crypto: aspeed - Fix modular aspeed-acry
Jia Jie Ho (2):
dt-bindings: rng: Add StarFive TRNG module
hwrng: starfive - Add TRNG driver for StarFive SoC
Koba Ko (1):
crypto: ccp - Failure on re-initialization due to duplicate sysfs filename
Linus Walleij (7):
crypto: stm32 - Use accelerated readsl/writesl
dt-bindings: crypto: Let STM32 define Ux500 HASH
crypto: stm32/hash - Simplify code
crypto: stm32/hash - Use existing busy poll function
crypto: stm32/hash - Wait for idle before final CPU xmit
crypto: stm32/hash - Support Ux500 hash
crypto: ux500/hash - delete driver
Lucas Segarra Fernandez (2):
crypto: qat - extend buffer list logic interface
crypto: qat - add qat_zlib_deflate
Lukas Bulwahn (4):
crypto: ux500 - update debug config after ux500 cryp driver removal
crypto: hisilicon - remove redundant config PCI dependency for some CRYPTO_DEV_HISI configs
crypto: atmel-i2c - avoid defines prefixed with CONFIG
MAINTAINERS: repair file entry for STARFIVE TRNG DRIVER
Meadhbh (1):
Documentation: qat: change kernel version
Meadhbh Fitzpatrick (1):
crypto: qat - fix spelling mistakes from 'bufer' to 'buffer'
Neal Liu (5):
crypto: aspeed - Add ACRY RSA driver
ARM: dts: aspeed: Add ACRY/AHBC device controller node
dt-bindings: crypto: add documentation for Aspeed ACRY
dt-bindings: bus: add documentation for Aspeed AHBC
crypto: aspeed - fix type warnings
Nicolai Stange (4):
crypto: xts - restrict key lengths to approved values in FIPS mode
crypto: testmgr - disallow plain cbcmac(aes) in FIPS mode
crypto: testmgr - disallow plain ghash in FIPS mode
crypto: testmgr - allow ecdsa-nist-p256 and -p384 in FIPS mode
Peter Lafreniere (4):
crypto: x86 - exit fpu context earlier in ECB/CBC macros
crypto: x86/blowfish - Remove unused encode parameter
crypto: x86/blowfish - Convert to use ECB/CBC helpers
crypto: x86/blowfish - Eliminate use of SYM_TYPED_FUNC_START in asm
Samuel Holland (2):
dt-bindings: crypto: sun8i-ce: Add compatible for D1
crypto: sun8i-ce - Add TRNG clock to the D1 variant
Sergiu Moga (1):
crypto: atmel - Add capability case for the 0x600 SHA and AES IP versions
Taehee Yoo (8):
crypto: x86/aria - add keystream array into request ctx
crypto: x86/aria - do not use magic number offsets of aria_ctx
crypto: x86/aria - implement aria-avx2
crypto: x86/aria - implement aria-avx512
crypto: x86/aria-avx - fix build failure with old binutils
crypto: x86/aria-avx2 - fix build failure with old binutils
crypto: x86/aria-avx512 - fix build failure with old binutils
crypto: x86/aria-avx - Do not use avx2 instructions
Tianjia Zhang (1):
crypto: arm64/sm4-ccm - Rewrite skcipher walker loop
Tom Lendacky (3):
crypto: ccp - Provide MMIO register naming for documenation
crypto: ccp - Add a firmware definition for EPYC gen 4 processors
crypto: ccp - Flush the SEV-ES TMR memory before giving it to firmware
Uwe Kleine-König (1):
crypto: atmel - Drop unused id parameter from atmel_i2c_probe()
Vladis Dronov (3):
crypto: xts - drop xts_check_key()
crypto: s390/aes - drop redundant xts key check
crypto: testmgr - disallow certain DRBG hash functions in FIPS mode
Weili Qian (5):
crypto: hisilicon/qm - remove some unused defines
crypto: hisilicon/qm - use min() instead of min_t()
crypto: hisilicon/qm - change function names
crypto: hisilicon/qm - update comments to match function
crypto: hisilicon/qm - fix coding style issues
Yang Yingliang (1):
crypto: aspeed - change aspeed_acry_akcipher_algs to static
Zhang Yiqun (1):
crypto: testmgr - add diff-splits of src/dst into default cipher config
ye xingchen (1):
crypto: aspeed - Use devm_platform_get_and_ioremap_resource()
Documentation/ABI/testing/sysfs-driver-qat | 4 +-
.../bindings/bus/aspeed,ast2600-ahbc.yaml | 37 +
.../bindings/crypto/allwinner,sun8i-ce.yaml | 33 +-
.../bindings/crypto/aspeed,ast2600-acry.yaml | 49 +
.../devicetree/bindings/crypto/st,stm32-hash.yaml | 23 +-
.../bindings/rng/starfive,jh7110-trng.yaml | 55 +
MAINTAINERS | 8 +-
arch/arm/boot/dts/aspeed-g6.dtsi | 13 +
arch/arm/crypto/sha1_glue.c | 14 +-
arch/arm64/crypto/aes-ce-ccm-glue.c | 57 +-
arch/arm64/crypto/ghash-ce-glue.c | 145 +-
arch/arm64/crypto/sm4-ce-ccm-glue.c | 44 +-
arch/arm64/crypto/sm4-ce-gcm-glue.c | 51 +-
arch/s390/crypto/aes_s390.c | 4 -
arch/s390/crypto/paes_s390.c | 2 +-
arch/x86/Kconfig.assembler | 5 +
arch/x86/crypto/Kconfig | 38 +
arch/x86/crypto/Makefile | 6 +
arch/x86/crypto/aria-aesni-avx-asm_64.S | 172 +-
arch/x86/crypto/aria-aesni-avx2-asm_64.S | 1441 ++++++++++++++
arch/x86/crypto/aria-avx.h | 48 +-
arch/x86/crypto/aria-gfni-avx512-asm_64.S | 971 ++++++++++
arch/x86/crypto/aria_aesni_avx2_glue.c | 254 +++
arch/x86/crypto/aria_aesni_avx_glue.c | 49 +-
arch/x86/crypto/aria_gfni_avx512_glue.c | 250 +++
arch/x86/crypto/blowfish-x86_64-asm_64.S | 71 +-
arch/x86/crypto/blowfish_glue.c | 200 +-
arch/x86/crypto/ecb_cbc_helpers.h | 19 +-
arch/x86/crypto/ghash-clmulni-intel_asm.S | 6 +-
arch/x86/crypto/ghash-clmulni-intel_glue.c | 45 +-
arch/x86/kernel/asm-offsets.c | 8 +
crypto/adiantum.c | 5 +-
crypto/af_alg.c | 6 +-
crypto/ahash.c | 195 +-
crypto/api.c | 4 +-
crypto/aria_generic.c | 4 +
crypto/authenc.c | 14 +-
crypto/authencesn.c | 15 +-
crypto/ccm.c | 9 +-
crypto/chacha20poly1305.c | 40 +-
crypto/cryptd.c | 290 +--
crypto/crypto_engine.c | 8 +-
crypto/cts.c | 12 +-
crypto/dh.c | 5 +-
crypto/ecc.c | 6 +-
crypto/essiv.c | 15 +-
crypto/gcm.c | 36 +-
crypto/hctr2.c | 5 +-
crypto/lrw.c | 4 +-
crypto/pcrypt.c | 4 +-
crypto/proc.c | 6 +
crypto/rsa-pkcs1pad.c | 51 +-
crypto/seqiv.c | 7 +-
crypto/shash.c | 4 +-
crypto/skcipher.c | 22 +-
crypto/tcrypt.c | 8 +-
crypto/tcrypt.h | 2 +-
crypto/testmgr.c | 16 +-
crypto/wp512.c | 2 +-
crypto/xts.c | 20 +-
drivers/char/hw_random/Kconfig | 10 +
drivers/char/hw_random/Makefile | 1 +
drivers/char/hw_random/jh7110-trng.c | 393 ++++
drivers/crypto/Kconfig | 10 -
drivers/crypto/Makefile | 1 -
drivers/crypto/allwinner/sun8i-ce/sun8i-ce-core.c | 1 +
drivers/crypto/allwinner/sun8i-ce/sun8i-ce.h | 2 +-
.../crypto/allwinner/sun8i-ss/sun8i-ss-cipher.c | 4 +-
drivers/crypto/allwinner/sun8i-ss/sun8i-ss-core.c | 13 +-
drivers/crypto/allwinner/sun8i-ss/sun8i-ss-hash.c | 4 +-
drivers/crypto/allwinner/sun8i-ss/sun8i-ss-prng.c | 11 +-
drivers/crypto/amcc/crypto4xx_core.c | 10 +-
drivers/crypto/aspeed/Kconfig | 11 +
drivers/crypto/aspeed/Makefile | 4 +
drivers/crypto/aspeed/aspeed-acry.c | 828 +++++++++
drivers/crypto/aspeed/aspeed-hace.c | 5 +-
drivers/crypto/aspeed/aspeed-hace.h | 2 +-
drivers/crypto/atmel-aes.c | 7 +-
drivers/crypto/atmel-ecc.c | 3 +-
drivers/crypto/atmel-i2c.c | 4 +-
drivers/crypto/atmel-i2c.h | 4 +-
drivers/crypto/atmel-sha.c | 10 +-
drivers/crypto/atmel-sha204a.c | 3 +-
drivers/crypto/atmel-tdes.c | 4 +-
drivers/crypto/axis/artpec6_crypto.c | 14 +-
drivers/crypto/bcm/cipher.c | 102 +-
drivers/crypto/bcm/cipher.h | 7 +-
drivers/crypto/caam/blob_gen.c | 2 +-
drivers/crypto/caam/caamalg.c | 16 +-
drivers/crypto/caam/caamalg_qi.c | 16 +-
drivers/crypto/caam/caamalg_qi2.c | 56 +-
drivers/crypto/caam/caamalg_qi2.h | 10 +-
drivers/crypto/caam/caamhash.c | 18 +-
drivers/crypto/caam/caampkc.c | 31 +-
drivers/crypto/caam/caamprng.c | 12 +-
drivers/crypto/caam/caamrng.c | 11 +-
drivers/crypto/caam/ctrl.c | 4 +-
drivers/crypto/caam/desc_constr.h | 3 +-
drivers/crypto/caam/key_gen.c | 2 +-
drivers/crypto/caam/qi.c | 4 +-
drivers/crypto/caam/qi.h | 12 +-
drivers/crypto/cavium/cpt/cptvf_algs.c | 10 +-
drivers/crypto/cavium/nitrox/nitrox_aead.c | 4 +-
drivers/crypto/cavium/nitrox/nitrox_skcipher.c | 8 +-
drivers/crypto/ccp/ccp-crypto-main.c | 12 +-
drivers/crypto/ccp/ccp-dmaengine.c | 21 +-
drivers/crypto/ccp/sev-dev.c | 16 +-
drivers/crypto/ccp/sp-pci.c | 46 +-
drivers/crypto/ccree/cc_cipher.c | 2 +-
drivers/crypto/chelsio/chcr_algo.c | 6 +-
drivers/crypto/hifn_795x.c | 4 +-
drivers/crypto/hisilicon/Kconfig | 8 +-
drivers/crypto/hisilicon/qm.c | 54 +-
drivers/crypto/hisilicon/sec/sec_algs.c | 6 +-
drivers/crypto/hisilicon/sec2/sec_crypto.c | 10 +-
drivers/crypto/hisilicon/sgl.c | 1 -
drivers/crypto/img-hash.c | 12 +-
drivers/crypto/inside-secure/safexcel.c | 15 +-
drivers/crypto/inside-secure/safexcel.h | 6 -
drivers/crypto/inside-secure/safexcel_cipher.c | 21 +-
drivers/crypto/inside-secure/safexcel_hash.c | 54 +-
drivers/crypto/ixp4xx_crypto.c | 4 +-
drivers/crypto/marvell/cesa/cesa.c | 4 +-
drivers/crypto/marvell/cesa/hash.c | 41 +-
drivers/crypto/marvell/cesa/tdma.c | 2 +-
drivers/crypto/marvell/octeontx/otx_cptvf_algs.c | 6 +-
drivers/crypto/marvell/octeontx2/Makefile | 11 +-
drivers/crypto/marvell/octeontx2/cn10k_cpt.c | 9 +-
drivers/crypto/marvell/octeontx2/cn10k_cpt.h | 2 -
drivers/crypto/marvell/octeontx2/otx2_cpt_common.h | 2 -
.../marvell/octeontx2/otx2_cpt_mbox_common.c | 14 +-
drivers/crypto/marvell/octeontx2/otx2_cptlf.c | 11 +
drivers/crypto/marvell/octeontx2/otx2_cptpf_main.c | 2 +
drivers/crypto/marvell/octeontx2/otx2_cptvf_algs.c | 6 +-
drivers/crypto/marvell/octeontx2/otx2_cptvf_main.c | 2 +
drivers/crypto/mxs-dcp.c | 8 +-
drivers/crypto/nx/nx-common-powernv.c | 13 +-
drivers/crypto/nx/nx-common-pseries.c | 6 +-
.../qat/qat_common/adf_transport_access_macros.h | 2 +-
drivers/crypto/qat/qat_common/qat_algs.c | 6 +-
drivers/crypto/qat/qat_common/qat_algs_send.c | 3 +-
drivers/crypto/qat/qat_common/qat_bl.c | 115 +-
drivers/crypto/qat/qat_common/qat_bl.h | 4 +-
drivers/crypto/qat/qat_common/qat_comp_algs.c | 169 +-
drivers/crypto/qat/qat_common/qat_compression.c | 2 +-
drivers/crypto/qat/qat_common/qat_crypto.c | 2 +-
drivers/crypto/qce/core.c | 4 +-
drivers/crypto/s5p-sss.c | 8 +-
drivers/crypto/sahara.c | 4 +-
drivers/crypto/stm32/stm32-cryp.c | 37 +-
drivers/crypto/stm32/stm32-hash.c | 266 ++-
drivers/crypto/talitos.c | 6 +-
drivers/crypto/ux500/Kconfig | 22 -
drivers/crypto/ux500/Makefile | 7 -
drivers/crypto/ux500/hash/Makefile | 11 -
drivers/crypto/ux500/hash/hash_alg.h | 398 ----
drivers/crypto/ux500/hash/hash_core.c | 1966 --------------------
.../crypto/virtio/virtio_crypto_akcipher_algs.c | 2 +-
drivers/md/dm-crypt.c | 8 +-
drivers/md/dm-integrity.c | 4 +-
drivers/net/macsec.c | 8 +-
fs/ecryptfs/crypto.c | 30 +-
include/crypto/aead.h | 20 +-
include/crypto/algapi.h | 6 +
include/crypto/if_alg.h | 4 +-
include/crypto/internal/acompress.h | 2 +-
include/crypto/internal/aead.h | 2 +-
include/crypto/internal/akcipher.h | 2 +-
include/crypto/internal/hash.h | 2 +-
include/crypto/internal/kpp.h | 2 +-
include/crypto/internal/skcipher.h | 2 +-
include/crypto/scatterwalk.h | 4 +-
include/crypto/xts.h | 25 +-
include/linux/crypto.h | 4 +-
include/linux/hisi_acc_qm.h | 5 +-
lib/crypto/blake2s-selftest.c | 25 +-
lib/mpi/mpicoder.c | 3 +-
net/bluetooth/ecdh_helper.c | 37 +-
net/ipv4/ah4.c | 8 +-
net/ipv4/esp4.c | 20 +-
net/ipv6/ah6.c | 8 +-
net/ipv6/esp6.c | 20 +-
net/tipc/crypto.c | 12 +-
net/tls/tls.h | 2 +
net/tls/tls_sw.c | 42 +-
security/keys/dh.c | 30 +-
186 files changed, 6379 insertions(+), 4053 deletions(-)
create mode 100644 Documentation/devicetree/bindings/bus/aspeed,ast2600-ahbc.yaml
create mode 100644 Documentation/devicetree/bindings/crypto/aspeed,ast2600-acry.yaml
create mode 100644 Documentation/devicetree/bindings/rng/starfive,jh7110-trng.yaml
create mode 100644 arch/x86/crypto/aria-aesni-avx2-asm_64.S
create mode 100644 arch/x86/crypto/aria-gfni-avx512-asm_64.S
create mode 100644 arch/x86/crypto/aria_aesni_avx2_glue.c
create mode 100644 arch/x86/crypto/aria_gfni_avx512_glue.c
create mode 100644 drivers/char/hw_random/jh7110-trng.c
create mode 100644 drivers/crypto/aspeed/aspeed-acry.c
delete mode 100644 drivers/crypto/ux500/Kconfig
delete mode 100644 drivers/crypto/ux500/Makefile
delete mode 100644 drivers/crypto/ux500/hash/Makefile
delete mode 100644 drivers/crypto/ux500/hash/hash_alg.h
delete mode 100644 drivers/crypto/ux500/hash/hash_core.c
Thanks,
--
Email: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt