[PATCH v2] KEYS: Convert KEYCTL_DH_COMPUTE to use the crypto KPP API
David Howells
dhowells at redhat.com
Fri Jun 2 15:58:22 UTC 2017
Mat Martineau <mathew.j.martineau at linux.intel.com> wrote:
> The initial Diffie-Hellman computation made direct use of the MPI
> library because the crypto module did not support DH at the time. Now
> that KPP is implemented, KEYCTL_DH_COMPUTE should use it to get rid of
> duplicate code and leverage possible hardware acceleration.
This doesn't apply to linus/master. I've pushed the keyrings fix patches I
have, including a bunch from Eric Biggers that fix DH stuff, to:
https://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs.git
branch:
keys-fixes
though I think there may be a couple of bugs in on of Eric's patches where
he's assumed that he can do:
memzero_explicit(NULL, 0);
I'm not sure whether it's permissible to assume that memset(NULL, 0, 0) is
guaranteed to work correctly.
Note that I haven't included Eric's DH patch that was obsoleted by Stephan's
patch that was obsoleted by this one.
David
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
More information about the Linux-security-module-archive
mailing list