torvalds/linux
torvalds/linux
2
0
Fork 0
mirror of git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git synced 2025-09-04 20:19:47 +08:00
Code
8b7ab8eb52
linux/arch/arm64/lib/crypto
History
Eric Biggers 9d4204a810 lib/crypto/poly1305: Fix arm64's poly1305_blocks_arch() 
For some reason arm64's Poly1305 code got changed to ignore the padbit
argument.  As a result, the output is incorrect when the message length
is not a multiple of 16 (which is not reached with the standard
ChaCha20Poly1305, but bcachefs could reach this).  Fix this.

Fixes: a59e5468a9 ("crypto: arm64/poly1305 - Add block-only interface")
Reported-by: Kent Overstreet <kent.overstreet@linux.dev>
Tested-by: Kent Overstreet <kent.overstreet@linux.dev>
Link: https://lore.kernel.org/r/20250616010654.367302-1-ebiggers@kernel.org
Signed-off-by: Eric Biggers <ebiggers@google.com>
2025-06-16 12:51:34 -07:00
..
.gitignore crypto: arm64/sha256 - implement library instead of shash 2025-05-05 18:20:43 +08:00
chacha-neon-core.S
chacha-neon-glue.c crypto: lib/chacha - add array bounds to function prototypes 2025-05-12 13:32:53 +08:00
Kconfig crypto: arm64/sha256 - Add simd block function 2025-05-05 18:20:45 +08:00
Makefile crypto: arm64/sha256 - implement library instead of shash 2025-05-05 18:20:43 +08:00
poly1305-armv8.pl
poly1305-glue.c lib/crypto/poly1305: Fix arm64's poly1305_blocks_arch() 2025-06-16 12:51:34 -07:00
sha2-armv8.pl crypto: arm64/sha256 - Add simd block function 2025-05-05 18:20:45 +08:00
sha256-ce.S crypto: arm64/sha256 - fix build when CONFIG_PREEMPT_VOLUNTARY=y 2025-05-08 09:36:45 +08:00
sha256.c crypto: arm64/sha256 - Add simd block function 2025-05-05 18:20:45 +08:00