From patchwork Sat Mar 28 16:20:11 2015
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Sasha Levin <sasha.levin@oracle.com>
X-Patchwork-Id: 46453
Return-Path: <patchwork-forward+bncBDPILVOKSELBBGNO3OUAKGQEWGR4BBY@linaro.org>
X-Original-To: linaro@patches.linaro.org
Delivered-To: linaro@patches.linaro.org
Received: from mail-lb0-f199.google.com (mail-lb0-f199.google.com
 [209.85.217.199])
 by ip-10-151-82-157.ec2.internal (Postfix) with ESMTPS id A5CA021585
 for <linaro@patches.linaro.org>; Sat, 28 Mar 2015 16:30:18 +0000 (UTC)
Received: by lbfb1 with SMTP id b1sf2020622lbf.2
 for <linaro@patches.linaro.org>; Sat, 28 Mar 2015 09:30:17 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20130820;
 h=x-gm-message-state:mime-version:delivered-to:from:to:cc:subject
 :date:message-id:in-reply-to:references:sender:precedence:list-id
 :x-original-sender:x-original-authentication-results:mailing-list
 :list-post:list-help:list-archive:list-unsubscribe;
 bh=jfB+ntb1t/PBINQhN8jEDTss6jsWZCwIEfT8eWyKkrs=;
 b=DwMa5/llIfSHSSb9Av1WFSkL/tRluY3qmWoWs9eB26VnT9F6Z/WAYSZDVrJ9y11CTK
 rgz9e4BmWt74XwZHrWHWUiuDP2xLxO9g75s1dsVPo17/R/cnZbNEKhoRw5Ql0hAn3Ga6
 n+5rS8++4xIUj709JKhaUlhIRhSKehhkk4En22ICeXB0zNvuQBjBIZbzaG1y2Wkni7Cg
 dE1VBFZyTEQ8R/ZHulkODy71kHGkJ9b2BIWTTglxEnBrUeViXJNiVeKaqVI2/MoOj4Ai
 TnPUm6Z4SDyIoPVDmel+IEt3+ZA9AmoZlifkyxEMpHyz4YGU9N4f/UYAMM3FmaVyqOtg
 eM+g==
X-Gm-Message-State: ALoCoQkoejajew3zUDoF/ws4iCTiBNoEflVWtKutNmfyDD7JFwBJJbN/jaWfRd5MJxJVJt+d5rUd
X-Received: by 10.180.80.132 with SMTP id r4mr1032781wix.4.1427560217750;
 Sat, 28 Mar 2015 09:30:17 -0700 (PDT)
MIME-Version: 1.0
X-BeenThere: patchwork-forward@linaro.org
Received: by 10.152.20.201 with SMTP id p9ls303061lae.4.gmail; Sat, 28 Mar
 2015 09:30:17 -0700 (PDT)
X-Received: by 10.152.42.141 with SMTP id o13mr15206228lal.79.1427560217619; 
 Sat, 28 Mar 2015 09:30:17 -0700 (PDT)
Received: from mail-lb0-f181.google.com (mail-lb0-f181.google.com.
 [209.85.217.181]) by mx.google.com with ESMTPS id
 yg3si3629398lbb.150.2015.03.28.09.30.17
 for <patchwork-forward@linaro.org>
 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
 Sat, 28 Mar 2015 09:30:17 -0700 (PDT)
Received-SPF: pass (google.com: domain of
 patch+caf_=patchwork-forward=linaro.org@linaro.org designates
 209.85.217.181 as permitted sender) client-ip=209.85.217.181; 
Received: by lboc7 with SMTP id c7so25423843lbo.1
 for <patchwork-forward@linaro.org>;
 Sat, 28 Mar 2015 09:30:17 -0700 (PDT)
X-Received: by 10.152.116.11 with SMTP id js11mr22141497lab.106.1427560217410; 
 Sat, 28 Mar 2015 09:30:17 -0700 (PDT)
X-Forwarded-To: patchwork-forward@linaro.org
X-Forwarded-For: patch@linaro.org patchwork-forward@linaro.org
Delivered-To: patch@linaro.org
Received: by 10.112.57.201 with SMTP id k9csp519186lbq;
 Sat, 28 Mar 2015 09:30:16 -0700 (PDT)
X-Received: by 10.68.69.77 with SMTP id c13mr45404512pbu.38.1427560210087;
 Sat, 28 Mar 2015 09:30:10 -0700 (PDT)
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
 by mx.google.com with ESMTP id
 bu12si7519227pdb.92.2015.03.28.09.30.09; 
 Sat, 28 Mar 2015 09:30:10 -0700 (PDT)
Received-SPF: none (google.com: stable-owner@vger.kernel.org does not
 designate permitted sender hosts) client-ip=209.132.180.67; 
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
 id S1752024AbbC1QaI (ORCPT <rfc822;patch@linaro.org> + 1 other);
 Sat, 28 Mar 2015 12:30:08 -0400
Received: from userp1040.oracle.com ([156.151.31.81]:40182 "EHLO
 userp1040.oracle.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
 with ESMTP id S1752195AbbC1QaG (ORCPT
 <rfc822;stable@vger.kernel.org>); Sat, 28 Mar 2015 12:30:06 -0400
Received: from userv0021.oracle.com (userv0021.oracle.com [156.151.31.71])
 by userp1040.oracle.com (Sentrion-MTA-4.3.2/Sentrion-MTA-4.3.2) with
 ESMTP id t2SGTtlN001106
 (version=TLSv1 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK);
 Sat, 28 Mar 2015 16:29:55 GMT
Received: from aserv0122.oracle.com (aserv0122.oracle.com [141.146.126.236])
 by userv0021.oracle.com (8.13.8/8.13.8) with ESMTP id t2SGTtxn014879
 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL); 
 Sat, 28 Mar 2015 16:29:55 GMT
Received: from abhmp0012.oracle.com (abhmp0012.oracle.com [141.146.116.18])
 by aserv0122.oracle.com (8.13.8/8.13.8) with ESMTP id
 t2SGTt2j016595; Sat, 28 Mar 2015 16:29:55 GMT
Received: from lappy.hsd1.nh.comcast.net (/10.154.96.30)
 by default (Oracle Beehive Gateway v4.0)
 with ESMTP ; Sat, 28 Mar 2015 09:29:54 -0700
From: Sasha Levin <sasha.levin@oracle.com>
To: stable@vger.kernel.org, stable-commits@vger.kernel.org
Cc: Ard Biesheuvel <ard.biesheuvel@linaro.org>,
 Herbert Xu <herbert@gondor.apana.org.au>,
 Sasha Levin <sasha.levin@oracle.com>
Subject: [added to the 3.18 stable tree] crypto: arm/aes update NEON AES
 module to latest OpenSSL version
Date: Sat, 28 Mar 2015 12:20:11 -0400
Message-Id: <1427559626-7123-63-git-send-email-sasha.levin@oracle.com>
X-Mailer: git-send-email 2.1.0
In-Reply-To: <1427559626-7123-1-git-send-email-sasha.levin@oracle.com>
References: <1427559626-7123-1-git-send-email-sasha.levin@oracle.com>
X-Source-IP: userv0021.oracle.com [156.151.31.71]
Sender: stable-owner@vger.kernel.org
Precedence: list
List-ID: <patchwork-forward.linaro.org>
X-Mailing-List: stable@vger.kernel.org
X-Removed-Original-Auth: Dkim didn't pass.
X-Original-Sender: patch@linaro.org
X-Original-Authentication-Results: mx.google.com; spf=pass (google.com:
 domain of
 patch+caf_=patchwork-forward=linaro.org@linaro.org designates
 209.85.217.181 as permitted sender)
 smtp.mail=patch+caf_=patchwork-forward=linaro.org@linaro.org
Mailing-list: list patchwork-forward@linaro.org;
 contact patchwork-forward+owners@linaro.org
X-Google-Group-Id: 836684582541
List-Post: <http://groups.google.com/a/linaro.org/group/patchwork-forward/post>, 
 <mailto:patchwork-forward@linaro.org>
List-Help: <http://support.google.com/a/linaro.org/bin/topic.py?topic=25838>, 
 <mailto:patchwork-forward+help@linaro.org>
List-Archive: <http://groups.google.com/a/linaro.org/group/patchwork-forward/>
List-Unsubscribe: <mailto:googlegroups-manage+836684582541+unsubscribe@googlegroups.com>, 
 <http://groups.google.com/a/linaro.org/group/patchwork-forward/subscribe>

From: Ard Biesheuvel <ard.biesheuvel@linaro.org>

This patch has been added to the 3.18 stable tree. If you have any
objections, please let us know.

===============

[ Upstream commit 001eabfd54c0cbf9d7d16264ddc8cc0bee67e3ed ]

This updates the bit sliced AES module to the latest version in the
upstream OpenSSL repository (e620e5ae37bc). This is needed to fix a
bug in the XTS decryption path, where data chunked in a certain way
could trigger the ciphertext stealing code, which is not supposed to
be active in the kernel build (The kernel implementation of XTS only
supports round multiples of the AES block size of 16 bytes, whereas
the conformant OpenSSL implementation of XTS supports inputs of
arbitrary size by applying ciphertext stealing). This is fixed in
the upstream version by adding the missing #ifndef XTS_CHAIN_TWEAK
around the offending instructions.

The upstream code also contains the change applied by Russell to
build the code unconditionally, i.e., even if __LINUX_ARM_ARCH__ < 7,
but implemented slightly differently.

Cc: stable@vger.kernel.org
Fixes: e4e7f10bfc40 ("ARM: add support for bit sliced AES using NEON instructions")
Reported-by: Adrian Kotelba <adrian.kotelba@gmail.com>
Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Tested-by: Milan Broz <gmazyland@gmail.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Sasha Levin <sasha.levin@oracle.com>
---
 arch/arm/crypto/aesbs-core.S_shipped | 12 ++++++++----
 arch/arm/crypto/bsaes-armv7.pl       | 12 ++++++++----
 2 files changed, 16 insertions(+), 8 deletions(-)

diff --git a/arch/arm/crypto/aesbs-core.S_shipped b/arch/arm/crypto/aesbs-core.S_shipped
index 71e5fc7..1d1800f 100644
--- a/arch/arm/crypto/aesbs-core.S_shipped
+++ b/arch/arm/crypto/aesbs-core.S_shipped
@@ -58,14 +58,18 @@
 # define VFP_ABI_FRAME	0
 # define BSAES_ASM_EXTENDED_KEY
 # define XTS_CHAIN_TWEAK
-# define __ARM_ARCH__	7
+# define __ARM_ARCH__ __LINUX_ARM_ARCH__
+# define __ARM_MAX_ARCH__ 7
 #endif
 
 #ifdef __thumb__
 # define adrl adr
 #endif
 
-#if __ARM_ARCH__>=7
+#if __ARM_MAX_ARCH__>=7
+.arch	armv7-a
+.fpu	neon
+
 .text
 .syntax	unified 	@ ARMv7-capable assembler is expected to handle this
 #ifdef __thumb2__
@@ -74,8 +78,6 @@
 .code   32
 #endif
 
-.fpu	neon
-
 .type	_bsaes_decrypt8,%function
 .align	4
 _bsaes_decrypt8:
@@ -2095,9 +2097,11 @@ bsaes_xts_decrypt:
 	vld1.8	{q8}, [r0]			@ initial tweak
 	adr	r2, .Lxts_magic
 
+#ifndef	XTS_CHAIN_TWEAK
 	tst	r9, #0xf			@ if not multiple of 16
 	it	ne				@ Thumb2 thing, sanity check in ARM
 	subne	r9, #0x10			@ subtract another 16 bytes
+#endif
 	subs	r9, #0x80
 
 	blo	.Lxts_dec_short
diff --git a/arch/arm/crypto/bsaes-armv7.pl b/arch/arm/crypto/bsaes-armv7.pl
index be068db..a4d3856 100644
--- a/arch/arm/crypto/bsaes-armv7.pl
+++ b/arch/arm/crypto/bsaes-armv7.pl
@@ -701,14 +701,18 @@ $code.=<<___;
 # define VFP_ABI_FRAME	0
 # define BSAES_ASM_EXTENDED_KEY
 # define XTS_CHAIN_TWEAK
-# define __ARM_ARCH__	7
+# define __ARM_ARCH__ __LINUX_ARM_ARCH__
+# define __ARM_MAX_ARCH__ 7
 #endif
 
 #ifdef __thumb__
 # define adrl adr
 #endif
 
-#if __ARM_ARCH__>=7
+#if __ARM_MAX_ARCH__>=7
+.arch	armv7-a
+.fpu	neon
+
 .text
 .syntax	unified 	@ ARMv7-capable assembler is expected to handle this
 #ifdef __thumb2__
@@ -717,8 +721,6 @@ $code.=<<___;
 .code   32
 #endif
 
-.fpu	neon
-
 .type	_bsaes_decrypt8,%function
 .align	4
 _bsaes_decrypt8:
@@ -2076,9 +2078,11 @@ bsaes_xts_decrypt:
 	vld1.8	{@XMM[8]}, [r0]			@ initial tweak
 	adr	$magic, .Lxts_magic
 
+#ifndef	XTS_CHAIN_TWEAK
 	tst	$len, #0xf			@ if not multiple of 16
 	it	ne				@ Thumb2 thing, sanity check in ARM
 	subne	$len, #0x10			@ subtract another 16 bytes
+#endif
 	subs	$len, #0x80
 
 	blo	.Lxts_dec_short