git.proxmox.com Git - mirror_ubuntu-hirsute-kernel.git/commit

author	Pascal van Leeuwen <pascalvanl@gmail.com>
	Fri, 13 Sep 2019 18:44:50 +0000 (20:44 +0200)
committer	Herbert Xu <herbert@gondor.apana.org.au>
	Fri, 4 Oct 2019 15:06:06 +0000 (01:06 +1000)
commit	1769f704e55b11e97ff4e52226e6fbddaa1e654e
tree	ce05076754246fe321c3f63cd1fd7281778fd1b6	tree
parent	2eb2d198bd6cd0083a5363ce66272fb34a19928f	commit \| diff

crypto: inside-secure - Add SM4 based authenc AEAD ciphersuites

This patch adds support for the authenc(hmac(sha1),cbc(sm4)),
authenc(hmac(sm3),cbc(sm4)), authenc(hmac(sha1),rfc3686(ctr(sm4))),
and authenc(hmac(sm3),rfc3686(ctr(sm4))) aead ciphersuites.
These are necessary to support IPsec according to the Chinese standard
GM/T 022-1014 - IPsec VPN specification.

Note that there are no testvectors present in testmgr for these
ciphersuites. However, considering all building blocks have already been
verified elsewhere, it is fair to assume the generic implementation to be
correct-by-construction.
The hardware implementation has been fuzzed against this generic
implementation by means of a locally modified testmgr. The intention is
to upstream these testmgr changes but this is pending other testmgr changes
being made by Eric Biggers.

The patch has been tested with the eip197c_iewxkbc configuration on the
Xilinx VCU118 development board, using the abovementioned modified testmgr

This patch applies on top of "Add support for SM4 ciphers" and needs to
be applied before "Add (HMAC) SHA3 support".

Signed-off-by: Pascal van Leeuwen <pvanleeuwen@verimatrix.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>

drivers/crypto/inside-secure/safexcel.c		diff \| blob \| blame \| history
drivers/crypto/inside-secure/safexcel.h		diff \| blob \| blame \| history
drivers/crypto/inside-secure/safexcel_cipher.c		diff \| blob \| blame \| history