탐색 도움말
로그인
PUBLIC_REPOS
/
ti-processor-sdk-linux
2
0
포크 0
파일 이슈 0 풀 리퀘스트 0 위키
소스 검색

crypto: caam - fix rfc4106 encap shared descriptor

The encap shared descriptor was changed to use the new IV convention.
In the process some commands were shifted, making the output length
zero, caam effectively writing garbage in dst.

While here, update the decap descriptor to execute the "write" commands
before the "read"s (as it previously was).
This makes sure the input fifo is drained before becoming full.

Fixes: 46218750d523 ("crypto: caam - Use new IV convention")
Signed-off-by: Horia Geant? <horia.geanta@freescale.com>
Signed-off-by: Tudor Ambarus <tudor.ambarus@freescale.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Horia Geant? 10 년 전
부모
41656aa77f
커밋
4aad0cc5c3
1개의 변경된 파일15개의 추가작업 그리고 9개의 파일을 삭제
분할 보기 변경상태 보기
  1. 15 9
      drivers/crypto/caam/caamalg.c

+ 15 - 9
drivers/crypto/caam/caamalg.c
파일 보기 

@@ -87,8 +87,8 @@
 
 #define DESC_GCM_DEC_LEN		(DESC_GCM_BASE + 12 * CAAM_CMD_SZ)
 
 
 #define DESC_RFC4106_BASE		(3 * CAAM_CMD_SZ)
 
-#define DESC_RFC4106_ENC_LEN		(DESC_RFC4106_BASE + 12 * CAAM_CMD_SZ)
 
-#define DESC_RFC4106_DEC_LEN		(DESC_RFC4106_BASE + 12 * CAAM_CMD_SZ)
 
+#define DESC_RFC4106_ENC_LEN		(DESC_RFC4106_BASE + 13 * CAAM_CMD_SZ)
 
+#define DESC_RFC4106_DEC_LEN		(DESC_RFC4106_BASE + 13 * CAAM_CMD_SZ)
 
 
 #define DESC_RFC4543_BASE		(3 * CAAM_CMD_SZ)
 
 #define DESC_RFC4543_ENC_LEN		(DESC_RFC4543_BASE + 11 * CAAM_CMD_SZ)
 
@@ -989,19 +989,22 @@ static int rfc4106_set_sh_desc(struct crypto_aead *aead)
 
 	/* Will read cryptlen bytes */
 
 	append_math_sub(desc, VARSEQINLEN, SEQINLEN, REG0, CAAM_CMD_SZ);
 
 
-	/* Read payload data */
 
-	append_seq_fifo_load(desc, 0, FIFOLD_CLASS_CLASS1 | FIFOLDST_VLF |
 
-			     FIFOLD_TYPE_MSG | FIFOLD_TYPE_LAST1);
 
+	/* Workaround for erratum A-005473 (simultaneous SEQ FIFO skips) */
 
+	append_seq_fifo_load(desc, 0, FIFOLD_CLASS_CLASS1 | FIFOLD_TYPE_MSG);
 
 
 	/* Skip assoc data */
 
 	append_seq_fifo_store(desc, 0, FIFOST_TYPE_SKIP | FIFOLDST_VLF);
 
 
 	/* cryptlen = seqoutlen - assoclen */
 
-	append_math_sub(desc, VARSEQOUTLEN, SEQINLEN, REG0, CAAM_CMD_SZ);
 
+	append_math_sub(desc, VARSEQOUTLEN, VARSEQINLEN, REG0, CAAM_CMD_SZ);
 
 
 	/* Write encrypted data */
 
 	append_seq_fifo_store(desc, 0, FIFOST_TYPE_MESSAGE_DATA | FIFOLDST_VLF);
 
 
+	/* Read payload data */
 
+	append_seq_fifo_load(desc, 0, FIFOLD_CLASS_CLASS1 | FIFOLDST_VLF |
 
+			     FIFOLD_TYPE_MSG | FIFOLD_TYPE_LAST1);
 
+
 
 	/* Write ICV */
 
 	append_seq_store(desc, ctx->authsize, LDST_CLASS_1_CCB |
 
 			 LDST_SRCDST_BYTE_CONTEXT);
 
@@ -1060,9 +1063,8 @@ static int rfc4106_set_sh_desc(struct crypto_aead *aead)
 
 	/* Will read cryptlen bytes */
 
 	append_math_sub(desc, VARSEQINLEN, SEQOUTLEN, REG3, CAAM_CMD_SZ);
 
 
-	/* Read encrypted data */
 
-	append_seq_fifo_load(desc, 0, FIFOLD_CLASS_CLASS1 | FIFOLDST_VLF |
 
-			     FIFOLD_TYPE_MSG | FIFOLD_TYPE_FLUSH1);
 
+	/* Workaround for erratum A-005473 (simultaneous SEQ FIFO skips) */
 
+	append_seq_fifo_load(desc, 0, FIFOLD_CLASS_CLASS1 | FIFOLD_TYPE_MSG);
 
 
 	/* Skip assoc data */
 
 	append_seq_fifo_store(desc, 0, FIFOST_TYPE_SKIP | FIFOLDST_VLF);
 
@@ -1073,6 +1075,10 @@ static int rfc4106_set_sh_desc(struct crypto_aead *aead)
 
 	/* Store payload data */
 
 	append_seq_fifo_store(desc, 0, FIFOST_TYPE_MESSAGE_DATA | FIFOLDST_VLF);
 
 
+	/* Read encrypted data */
 
+	append_seq_fifo_load(desc, 0, FIFOLD_CLASS_CLASS1 | FIFOLDST_VLF |
 
+			     FIFOLD_TYPE_MSG | FIFOLD_TYPE_FLUSH1);
 
+
 
 	/* Read ICV */
 
 	append_seq_fifo_load(desc, ctx->authsize, FIFOLD_CLASS_CLASS1 |
 
 			     FIFOLD_TYPE_ICV | FIFOLD_TYPE_LAST1);