review.tizen.org Git - platform/kernel/linux-rpi.git/commit

author	Jason A. Donenfeld <Jason@zx2c4.com>
	Tue, 11 Jan 2022 13:37:41 +0000 (14:37 +0100)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Mon, 30 May 2022 07:28:59 +0000 (09:28 +0200)
commit	cba2195416d4c0719ba80fc2182ffa3cee71fb24
tree	1a53e65d50d8b61801f1137aa572fa78f82e73c7	tree \| snapshot
parent	caba66ec322e22a65c388ae81b23942c7f51f982	commit \| diff

lib/crypto: blake2s: move hmac construction into wireguard

commit d8d83d8ab0a453e17e68b3a3bed1f940c34b8646 upstream.

Basically nobody should use blake2s in an HMAC construction; it already
has a keyed variant. But unfortunately for historical reasons, Noise,
used by WireGuard, uses HKDF quite strictly, which means we have to use
this. Because this really shouldn't be used by others, this commit moves
it into wireguard's noise.c locally, so that kernels that aren't using
WireGuard don't get this superfluous code baked in. On m68k systems,
this shaves off ~314 bytes.

Cc: Herbert Xu <herbert@gondor.apana.org.au>
Tested-by: Geert Uytterhoeven <geert@linux-m68k.org>
Acked-by: Ard Biesheuvel <ardb@kernel.org>
Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

drivers/net/wireguard/noise.c		diff \| blob \| history
include/crypto/blake2s.h		diff \| blob \| history
lib/crypto/blake2s-selftest.c		diff \| blob \| history
lib/crypto/blake2s.c		diff \| blob \| history