[PATCH 5.10 278/390] crypto: inside-secure - Change swab to swab32

From: Greg Kroah-Hartman
Date: Mon Oct 24 2022 - 09:23:42 EST

Next message: Greg Kroah-Hartman: "[PATCH 5.10 237/390] serial: 8250: Toggle IER bits on only after irq has been set up"
Previous message: Greg Kroah-Hartman: "[PATCH 5.10 246/390] fsi: core: Check error number after calling ida_simple_get"
In reply to: Greg Kroah-Hartman: "[PATCH 5.10 246/390] fsi: core: Check error number after calling ida_simple_get"
Next in thread: Greg Kroah-Hartman: "[PATCH 5.10 237/390] serial: 8250: Toggle IER bits on only after irq has been set up"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Peter Harliman Liem <pliem@xxxxxxxxxxxxx>

[ Upstream commit 664593407e936b6438fbfaaf98876910fd31cf9a ]

The use of swab() is causing failures in 64-bit arch, as it
translates to __swab64() instead of the intended __swab32().
It eventually causes wrong results in xcbcmac & cmac algo.

Fixes: 78cf1c8bfcb8 ("crypto: inside-secure - Move ipad/opad into safexcel_context")
Signed-off-by: Peter Harliman Liem <pliem@xxxxxxxxxxxxx>
Acked-by: Antoine Tenart <atenart@xxxxxxxxxx>
Signed-off-by: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx>
Signed-off-by: Sasha Levin <sashal@xxxxxxxxxx>
---
drivers/crypto/inside-secure/safexcel_hash.c | 8 ++++----
1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/drivers/crypto/inside-secure/safexcel_hash.c b/drivers/crypto/inside-secure/safexcel_hash.c
index 56d5ccb5cc00..1c9af02eb63b 100644
--- a/drivers/crypto/inside-secure/safexcel_hash.c
+++ b/drivers/crypto/inside-secure/safexcel_hash.c
@@ -381,7 +381,7 @@ static int safexcel_ahash_send_req(struct crypto_async_request *async, int ring,
u32 x;

x = ipad[i] ^ ipad[i + 4];
- cache[i] ^= swab(x);
+ cache[i] ^= swab32(x);
}
}
cache_len = AES_BLOCK_SIZE;
@@ -819,7 +819,7 @@ static int safexcel_ahash_final(struct ahash_request *areq)
u32 *result = (void *)areq->result;

/* K3 */
- result[i] = swab(ctx->base.ipad.word[i + 4]);
+ result[i] = swab32(ctx->base.ipad.word[i + 4]);
}
areq->result[0] ^= 0x80; // 10- padding
crypto_cipher_encrypt_one(ctx->kaes, areq->result, areq->result);
@@ -2104,7 +2104,7 @@ static int safexcel_xcbcmac_setkey(struct crypto_ahash *tfm, const u8 *key,
crypto_cipher_encrypt_one(ctx->kaes, (u8 *)key_tmp + AES_BLOCK_SIZE,
"\x3\x3\x3\x3\x3\x3\x3\x3\x3\x3\x3\x3\x3\x3\x3\x3");
for (i = 0; i < 3 * AES_BLOCK_SIZE / sizeof(u32); i++)
- ctx->base.ipad.word[i] = swab(key_tmp[i]);
+ ctx->base.ipad.word[i] = swab32(key_tmp[i]);

crypto_cipher_clear_flags(ctx->kaes, CRYPTO_TFM_REQ_MASK);
crypto_cipher_set_flags(ctx->kaes, crypto_ahash_get_flags(tfm) &
@@ -2187,7 +2187,7 @@ static int safexcel_cmac_setkey(struct crypto_ahash *tfm, const u8 *key,
return ret;

for (i = 0; i < len / sizeof(u32); i++)
- ctx->base.ipad.word[i + 8] = swab(aes.key_enc[i]);
+ ctx->base.ipad.word[i + 8] = swab32(aes.key_enc[i]);

/* precompute the CMAC key material */
crypto_cipher_clear_flags(ctx->kaes, CRYPTO_TFM_REQ_MASK);
--
2.35.1

Next message: Greg Kroah-Hartman: "[PATCH 5.10 237/390] serial: 8250: Toggle IER bits on only after irq has been set up"
Previous message: Greg Kroah-Hartman: "[PATCH 5.10 246/390] fsi: core: Check error number after calling ida_simple_get"
In reply to: Greg Kroah-Hartman: "[PATCH 5.10 246/390] fsi: core: Check error number after calling ida_simple_get"
Next in thread: Greg Kroah-Hartman: "[PATCH 5.10 237/390] serial: 8250: Toggle IER bits on only after irq has been set up"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]