linux/crypto, branch v2.6.16

[PATCH] remove bogus asm/bug.h includes.

2006-02-08T01:56:35Z

A bunch of asm/bug.h includes are both not needed (since it will get pulled anyway) and bogus (since they are done too early). Removed. Signed-off-by: Al Viro

[CRYPTO] cipher: Set alignmask for multi-byte loads

2006-01-09T22:16:00Z

Many cipher implementations use 4-byte/8-byte loads/stores which require alignment on some architectures. This patch explicitly sets the alignment requirements for them. Signed-off-by: Herbert Xu

[CRYPTO] api: Require block size to be less than PAGE_SIZE/8

2006-01-09T22:15:58Z

The cipher code path may allocate up to two blocks of data on the stack. Therefore we need to place limits on the maximum block size. Signed-off-by: Herbert Xu

[CRYPTO] sha1: Fixed off-by-64 bug in sha1_update

2006-01-09T22:15:56Z

After a partial update, the done pointer is off to the right by 64 bytes. Signed-off-by: Herbert Xu

[CRYPTO] cipher: Align temporary buffer in cbc_process_decrypt

2006-01-09T22:15:49Z

Since the temporary buffer is used as an argument to cia_decrypt, it must be aligned by cra_alignmask. This bug was found by linux@horizon.com. Signed-off-by: Herbert Xu

[CRYPTO] sha1: Avoid shifting count left and right

2006-01-09T22:15:46Z

This patch avoids shifting the count left and right needlessly for each call to sha1_update(). It instead can be done only once at the end in sha1_final(). Keeping the previous test example (sha1_update() successively called with len=64), a 1.3% performance increase can be observed on i386, or 0.2% on ARM. The generated code is also smaller on ARM. Signed-off-by: Nicolas Pitre Signed-off-by: Herbert Xu

[CRYPTO] sha1: Rename i/j to done/partial

2006-01-09T22:15:44Z

This patch gives more descriptive names to the variables i and j. Signed-off-by: Nicolas Pitre Signed-off-by: Herbert Xu

[CRYPTO] sha1: Avoid useless memcpy()

2006-01-09T22:15:41Z

The current code unconditionally copy the first block for every call to sha1_update(). This can be avoided if there is no pending partial block. This is always the case on the first call to sha1_update() (if the length is >= 64 of course. Furthermore, temp does need to be called if sha_transform is never invoked. Also consolidate the sha_transform calls into one to reduce code size. Signed-off-by: Nicolas Pitre Signed-off-by: Herbert Xu

[CRYPTO] Allow AES C/ASM implementations to coexist

2006-01-09T22:15:39Z

As the Crypto API now allows multiple implementations to be registered for the same algorithm, we no longer have to play tricks with Kconfig to select the right AES implementation. This patch sets the driver name and priority for all the AES implementations and removes the Kconfig conditions on the C implementation for AES. Signed-off-by: Herbert Xu

[CRYPTO] Allow multiple implementations of the same algorithm

2006-01-09T22:15:37Z

This is the first step on the road towards asynchronous support in the Crypto API. It adds support for having multiple crypto_alg objects for the same algorithm registered in the system. For example, each device driver would register a crypto_alg object for each algorithm that it supports. While at the same time the user may load software implementations of those same algorithms. Users of the Crypto API may then select a specific implementation by name, or choose any implementation for a given algorithm with the highest priority. The priority field is a 32-bit signed integer. In future it will be possible to modify it from user-space. This also provides a solution to the problem of selecting amongst various AES implementations, that is, aes vs. aes-i586 vs. aes-padlock. Signed-off-by: Herbert Xu