Re: General flags to turn things off (getrandom, pid lookup, etc)

2014-07-27 Thread Eric W. Biederman
Andy Lutomirski writes: > On Jul 27, 2014 5:06 PM, "Theodore Ts'o" wrote: >> >> On Fri, Jul 25, 2014 at 11:30:48AM -0700, Andy Lutomirski wrote: >> > >> > There is recent interest in having a way to turn generally-available >> > kernel features off. Maybe we should add a good one so we can stop

Re: General flags to turn things off (getrandom, pid lookup, etc)

2014-07-27 Thread Andy Lutomirski
On Jul 27, 2014 5:06 PM, "Theodore Ts'o" wrote: > > On Fri, Jul 25, 2014 at 11:30:48AM -0700, Andy Lutomirski wrote: > > > > There is recent interest in having a way to turn generally-available > > kernel features off. Maybe we should add a good one so we can stop > > bikeshedding and avoid proli

Re: General flags to turn things off (getrandom, pid lookup, etc)

2014-07-27 Thread Theodore Ts'o
On Fri, Jul 25, 2014 at 11:30:48AM -0700, Andy Lutomirski wrote: > > There is recent interest in having a way to turn generally-available > kernel features off. Maybe we should add a good one so we can stop > bikeshedding and avoid proliferating dumb interfaces. I believe the seccomp infrastruct

[PATCH] crypto: use chunks smaller than algo block size in chunk tests

2014-07-27 Thread Ard Biesheuvel
This patch updates many of the chunked tcrypt test cases so that not all of the chunks are an exact multiple of the block size. This should help uncover cases where the residue passed to blkcipher_walk_done() is incorrect. Signed-off-by: Ard Biesheuvel --- Herbert, After this change, the ARM an

Re: [PATCH v4 3/3] crypto: Add Allwinner Security System crypto accelerator

2014-07-27 Thread Herbert Xu
On Sat, Jul 26, 2014 at 04:01:26PM +0200, Corentin LABBE wrote: > > Even if it is undocumented, the hardware seems to support it. > Since crypto_ahash_ctx is for a tfm, does ahash_request_ctx is the good place > to store data ? > (after a call to crypto_ahash_set_reqsize in cra_init) Yes any hash

Re: General flags to turn things off (getrandom, pid lookup, etc)

2014-07-27 Thread David Drysdale
On Fri, Jul 25, 2014 at 7:30 PM, Andy Lutomirski wrote: > [new thread because this sort of combines two threads] > > There is recent interest in having a way to turn generally-available > kernel features off. Maybe we should add a good one so we can stop > bikeshedding and avoid proliferating dum

Re: [PATCH] crypto: rng.c: Cleaning up missing null-terminate in conjunction with strncpy

2014-07-27 Thread Rickard Strandqvist
2014-07-27 4:35 GMT+02:00 Mark D Rustad : > Rickard, > > On Jul 26, 2014, at 7:18 AM, Rickard Strandqvist > wrote: > >> Replacing strncpy with strlcpy to avoid strings that lacks null terminate. >> >> Signed-off-by: Rickard Strandqvist >> --- >> crypto/rng.c |2 +- >> 1 file changed, 1 insert