[RFC PATCH 14/30] crypto: ixp4xx/des - switch to new verification routines

Fri, 21 Jun 2019 17:32:29 -0700 

Signed-off-by: Ard Biesheuvel <ard.biesheu...@linaro.org>
---
 drivers/crypto/ixp4xx_crypto.c | 22 +++++++-------------
 1 file changed, 7 insertions(+), 15 deletions(-)

diff --git a/drivers/crypto/ixp4xx_crypto.c b/drivers/crypto/ixp4xx_crypto.c
index 3f40be34ac95..e3bc61eb873d 100644
--- a/drivers/crypto/ixp4xx_crypto.c
+++ b/drivers/crypto/ixp4xx_crypto.c
@@ -21,7 +21,7 @@
 #include <linux/module.h>
 
 #include <crypto/ctr.h>
-#include <crypto/des.h>
+#include <crypto/internal/des.h>
 #include <crypto/aes.h>
 #include <crypto/hmac.h>
 #include <crypto/sha.h>
@@ -760,10 +760,7 @@ static int setup_cipher(struct crypto_tfm *tfm, int 
encrypt,
                }
                cipher_cfg |= keylen_cfg;
        } else {
-               u32 tmp[DES_EXPKEY_WORDS];
-               if (des_ekey(tmp, key) == 0) {
-                       *flags |= CRYPTO_TFM_RES_WEAK_KEY;
-               }
+               des_verify_key(tfm, key, key_len);
        }
        /* write cfg word to cryptinfo */
        *(u32*)cinfo = cpu_to_be32(cipher_cfg);
@@ -855,12 +852,12 @@ static int ablk_setkey(struct crypto_ablkcipher *tfm, 
const u8 *key,
 static int ablk_des3_setkey(struct crypto_ablkcipher *tfm, const u8 *key,
                            unsigned int key_len)
 {
-       u32 flags = crypto_ablkcipher_get_flags(tfm);
        int err;
 
-       err = __des3_verify_key(&flags, key);
+       err = crypto_des3_ede_verify_key(crypto_ablkcipher_tfm(tfm), key,
+                                        keylen);
        if (unlikely(err))
-               crypto_ablkcipher_set_flags(tfm, flags);
+               return err;
 
        return ablk_setkey(tfm, key, key_len);
 }
@@ -1185,7 +1182,6 @@ static int des3_aead_setkey(struct crypto_aead *tfm, 
const u8 *key,
                            unsigned int keylen)
 {
        struct ixp_ctx *ctx = crypto_aead_ctx(tfm);
-       u32 flags = CRYPTO_TFM_RES_BAD_KEY_LEN;
        struct crypto_authenc_keys keys;
        int err;
 
@@ -1197,11 +1193,8 @@ static int des3_aead_setkey(struct crypto_aead *tfm, 
const u8 *key,
        if (keys.authkeylen > sizeof(ctx->authkey))
                goto badkey;
 
-       if (keys.enckeylen != DES3_EDE_KEY_SIZE)
-               goto badkey;
-
-       flags = crypto_aead_get_flags(tfm);
-       err = __des3_verify_key(&flags, keys.enckey);
+       err = crypto_des3_ede_verify_key(crypto_aead_tfm(tfm), keys.enckey,
+                                        keys.enckeylen);
        if (unlikely(err))
                goto badkey;
 
@@ -1213,7 +1206,6 @@ static int des3_aead_setkey(struct crypto_aead *tfm, 
const u8 *key,
        memzero_explicit(&keys, sizeof(keys));
        return aead_setup(tfm, crypto_aead_authsize(tfm));
 badkey:
-       crypto_aead_set_flags(tfm, flags);
        memzero_explicit(&keys, sizeof(keys));
        return err;
 }
-- 
2.20.1

Reply via email to