linux

mirror of https://github.com/torvalds/linux.git synced 2026-05-12 16:18:45 +02:00

History

Linus Torvalds 370c388319 Crypto library updates for 7.1 - Migrate more hash algorithms from the traditional crypto subsystem to lib/crypto/. Like the algorithms migrated earlier (e.g. SHA-), this simplifies the implementations, improves performance, enables further simplifications in calling code, and solves various other issues: - AES CBC-based MACs (AES-CMAC, AES-XCBC-MAC, and AES-CBC-MAC) - Support these algorithms in lib/crypto/ using the AES library and the existing arm64 assembly code - Reimplement the traditional crypto API's "cmac(aes)", "xcbc(aes)", and "cbcmac(aes)" on top of the library - Convert mac80211 to use the AES-CMAC library. Note: several other subsystems can use it too and will be converted later - Drop the broken, nonstandard, and likely unused support for "xcbc(aes)" with key lengths other than 128 bits - Enable optimizations by default - GHASH - Migrate the standalone GHASH code into lib/crypto/ - Integrate the GHASH code more closely with the very similar POLYVAL code, and improve the generic GHASH implementation to resist cache-timing attacks and use much less memory - Reimplement the AES-GCM library and the "gcm" crypto_aead template on top of the GHASH library. Remove "ghash" from the crypto_shash API, as it's no longer needed - Enable optimizations by default - SM3 - Migrate the kernel's existing SM3 code into lib/crypto/, and reimplement the traditional crypto API's "sm3" on top of it - I don't recommend using SM3, but this cleanup is worthwhile to organize the code the same way as other algorithms - Testing improvements - Add a KUnit test suite for each of the new library APIs - Migrate the existing ChaCha20Poly1305 test to KUnit - Make the KUnit all_tests.config enable all crypto library tests - Move the test kconfig options to the Runtime Testing menu - Other updates to arch-optimized crypto code - Optimize SHA-256 for Zhaoxin CPUs using the Padlock Hash Engine - Remove some MD5 implementations that are no longer worth keeping - Drop big endian and voluntary preemption support from the arm64 code, as those configurations are no longer supported on arm64 - Make jitterentropy and samples/tsm-mr use the crypto library APIs Note: the overall diffstat is neutral, but when the test code is excluded it is significantly negative: Tests: 13 files changed, 1982 insertions(+), 888 deletions(-) Non-test: 141 files changed, 2897 insertions(+), 3987 deletions(-) All: 154 files changed, 4879 insertions(+), 4875 deletions(-) -----BEGIN PGP SIGNATURE----- iIoEABYIADIWIQSacvsUNc7UX4ntmEPzXCl4vpKOKwUCadWPyxQcZWJpZ2dlcnNA a2VybmVsLm9yZwAKCRDzXCl4vpKOK8QCAQD0i98miI1mu01RKuEwrBzmn7L/2sUH ReYV/dFDtnN0GwD+KMCiNAM2XTVLRKq5t3OxPHpKZ4y+gZwRowAJeFA02Q8= =5rip -----END PGP SIGNATURE----- Merge tag 'libcrypto-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiggers/linux Pull crypto library updates from Eric Biggers: - Migrate more hash algorithms from the traditional crypto subsystem to lib/crypto/ Like the algorithms migrated earlier (e.g. SHA-), this simplifies the implementations, improves performance, enables further simplifications in calling code, and solves various other issues: - AES CBC-based MACs (AES-CMAC, AES-XCBC-MAC, and AES-CBC-MAC) - Support these algorithms in lib/crypto/ using the AES library and the existing arm64 assembly code - Reimplement the traditional crypto API's "cmac(aes)", "xcbc(aes)", and "cbcmac(aes)" on top of the library - Convert mac80211 to use the AES-CMAC library. Note: several other subsystems can use it too and will be converted later - Drop the broken, nonstandard, and likely unused support for "xcbc(aes)" with key lengths other than 128 bits - Enable optimizations by default - GHASH - Migrate the standalone GHASH code into lib/crypto/ - Integrate the GHASH code more closely with the very similar POLYVAL code, and improve the generic GHASH implementation to resist cache-timing attacks and use much less memory - Reimplement the AES-GCM library and the "gcm" crypto_aead template on top of the GHASH library. Remove "ghash" from the crypto_shash API, as it's no longer needed - Enable optimizations by default - SM3 - Migrate the kernel's existing SM3 code into lib/crypto/, and reimplement the traditional crypto API's "sm3" on top of it - I don't recommend using SM3, but this cleanup is worthwhile to organize the code the same way as other algorithms - Testing improvements: - Add a KUnit test suite for each of the new library APIs - Migrate the existing ChaCha20Poly1305 test to KUnit - Make the KUnit all_tests.config enable all crypto library tests - Move the test kconfig options to the Runtime Testing menu - Other updates to arch-optimized crypto code: - Optimize SHA-256 for Zhaoxin CPUs using the Padlock Hash Engine - Remove some MD5 implementations that are no longer worth keeping - Drop big endian and voluntary preemption support from the arm64 code, as those configurations are no longer supported on arm64 - Make jitterentropy and samples/tsm-mr use the crypto library APIs * tag 'libcrypto-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiggers/linux: (66 commits) lib/crypto: arm64: Assume a little-endian kernel arm64: fpsimd: Remove obsolete cond_yield macro lib/crypto: arm64/sha3: Remove obsolete chunking logic lib/crypto: arm64/sha512: Remove obsolete chunking logic lib/crypto: arm64/sha256: Remove obsolete chunking logic lib/crypto: arm64/sha1: Remove obsolete chunking logic lib/crypto: arm64/poly1305: Remove obsolete chunking logic lib/crypto: arm64/gf128hash: Remove obsolete chunking logic lib/crypto: arm64/chacha: Remove obsolete chunking logic lib/crypto: arm64/aes: Remove obsolete chunking logic lib/crypto: Include <crypto/utils.h> instead of <crypto/algapi.h> lib/crypto: aesgcm: Don't disable IRQs during AES block encryption lib/crypto: aescfb: Don't disable IRQs during AES block encryption lib/crypto: tests: Migrate ChaCha20Poly1305 self-test to KUnit lib/crypto: sparc: Drop optimized MD5 code lib/crypto: mips: Drop optimized MD5 code lib: Move crypto library tests to Runtime Testing menu crypto: sm3 - Remove 'struct sm3_state' crypto: sm3 - Remove the original "sm3_block_generic()" crypto: sm3 - Remove sm3_base.h ...		2026-04-13 17:31:39 -07:00
..
atomic	rust: helpers: Move #define __rust_helper out of atomic.c	2026-01-09 19:01:42 +08:00
bash-completion	kbuild: add Kbuild bash completion	2025-03-15 21:22:52 +09:00
basic	integer-wrap: Force full rebuild when .scl file changes	2025-05-08 09:42:06 -07:00
clang-tools	Revert "scripts/clang-tools: Handle included .c files in gen_compile_commands"	2025-12-27 20:48:01 +01:00
coccinelle	coccinelle: kmalloc_obj: Remove default GFP_KERNEL arg	2026-03-20 10:52:52 -07:00
crypto	lib/crypto: tests: Add KUnit tests for SM3	2026-03-23 17:50:59 -07:00
dtc	of: Add for_each_compatible_node_scoped() helper	2026-02-03 20:58:12 -06:00
dummy-tools	kbuild: dummy-tools: Add python3	2026-01-29 17:12:13 -07:00
gcc-plugins	gcc-plugins: Remove TODO_verify_il for GCC >= 16	2025-09-23 13:59:39 -07:00
gdb	scripts/gdb: implement x86_page_ops in mm.py	2026-02-12 15:45:57 -08:00
gendwarfksyms	gendwarfksyms: Fix build on 32-bit hosts	2025-12-22 16:35:54 +00:00
genksyms	genksyms: Fix parsing a declarator with a preceding attribute	2026-02-26 11:53:05 -07:00
include	scripts: import more list macros	2024-10-07 02:12:27 +09:00
ipe	scripts: ipe: polgen: remove redundant close and error exit path	2024-11-19 13:57:03 -08:00
kconfig	scripts: kconfig: merge_config.sh: fix indentation	2026-03-11 00:38:06 -07:00
ksymoops
livepatch	livepatch/klp-build: Fix inconsistent kernel version	2026-03-16 12:50:17 -07:00
mod	modpost: Declare extra_warn with unused attribute	2026-03-30 07:45:34 +02:00
package	kbuild: install-extmod-build: Package resolve_btfids if necessary	2026-02-26 14:49:34 -07:00
selinux	docs: Remove remainders of reiserfs	2025-08-18 10:45:43 -06:00
tracing	scripts/tracing: Remove scripts/tracing/draw_functrace.py	2025-03-20 07:02:21 -04:00
.gitignore	scripts: add tracepoint-update to the list of ignores files	2025-10-29 08:46:05 -04:00
as-version.sh
asn1_compiler.c
bloat-o-meter	scripts/bloat-o-meter: ignore __noinstr_text_start	2026-01-31 16:16:06 -08:00
bootgraph.pl
bpf_doc.py	bpf: Finish constification of 1st parameter of bpf_d_path()	2025-10-04 09:05:23 -07:00
build-version	kbuild: move init/build-version to scripts/	2024-07-16 01:08:37 +09:00
cc-can-link.sh	kbuild: Fix CC_CAN_LINK detection	2026-02-13 14:23:06 -05:00
cc-version.sh
check_extable.sh
check-function-names.sh	kbuild: prefer ${NM} in check-function-names.sh	2026-01-14 14:13:41 +01:00
check-git
check-sysctl-docs	docs: Replace spaces with tabs in check-sysctl-docs	2025-07-23 11:57:05 +02:00
check-uapi.sh
checkdeclares.pl
checker-valid.sh	compiler: Use __typeof_unqual__() for __unqual_scalar_typeof()	2026-01-18 10:32:03 +01:00
checkincludes.pl
checkkconfigsymbols.py
checkpatch.pl	virtio,vhost,vdpa: features, fixes	2026-02-13 12:02:18 -08:00
checkstack.pl
checksyscalls.sh
checkversion.pl
cleanfile
cleanpatch
coccicheck	scripts: coccicheck: warn on unset debug file	2026-02-21 17:22:30 +01:00
config	kbuild: fix argument parsing in scripts/config	2025-03-15 21:22:42 +09:00
const_structs.checkpatch	const_structs.checkpatch: add bin_attribute	2025-06-17 10:44:07 +02:00
container	scripts: add tool to run containerized builds	2026-01-22 15:30:48 -07:00
context-analysis-suppression.txt	sched: Enable context analysis for core.c and fair.c	2026-01-05 16:43:36 +01:00
decode_stacktrace.sh	scripts/decode_stacktrace.sh: fix build ID and PC source parsing	2025-11-09 21:19:45 -08:00
decodecode
depmod.sh	kbuild: add $(objtree)/ prefix to some in-kernel build artifacts	2024-11-27 09:38:27 +09:00
dev-needs.sh
diffconfig
elf-parse.c	sorttable: Move ELF parsing into scripts/elf-parse.[ch]	2025-10-24 16:43:14 -04:00
elf-parse.h	sorttable: Move ELF parsing into scripts/elf-parse.[ch]	2025-10-24 16:43:14 -04:00
extract_xc3028.pl
extract-fwblobs	scripts: add script to extract built-in firmware blobs	2025-03-16 22:30:46 -07:00
extract-ikconfig
extract-module-sig.pl
extract-sys-certs.pl
extract-vmlinux	extract-vmlinux: Output used decompression method	2025-08-28 15:25:48 -07:00
faddr2line	scripts/faddr2line: Fix "Argument list too long" error	2025-10-14 14:45:20 -07:00
file-size.sh
gen_packed_field_checks.c	lib: packing: add pack_fields() and unpack_fields()	2024-12-11 20:13:00 -08:00
gen-btf.sh	scripts/gen-btf.sh: Use CONFIG_SHELL for execution	2026-01-21 12:36:32 -08:00
gen-crc-consts.py	riscv/crc: add "template" for Zbc optimized CRC functions	2025-03-10 09:29:08 -07:00
gen-randstruct-seed.sh
generate_builtin_ranges.awk	kbuild: exclude .rodata.(cst\|str)* when building ranges	2025-03-15 21:22:52 +09:00
generate_initcall_order.pl
generate_rust_analyzer.py	rust: support overriding crate_name	2026-04-03 11:57:35 +02:00
generate_rust_target.rs	rust: support Rust >= 1.91.0 target spec	2025-08-31 23:34:34 +02:00
get_dvb_firmware
get_maintainer.pl	get_maintainer: stop reporting subsystem status as maintainer role	2025-03-16 22:30:49 -07:00
gfp-translate	scripts: fix gfp-translate after ___GFP_*_BITS conversion to an enum	2024-09-01 17:59:01 -07:00
git-resolve.sh	git-resolve: add SPDX and copyright line	2025-04-25 15:54:24 +02:00
git.orderFile
head-object-list.txt	openrisc: place exception table at the head of vmlinux	2024-12-10 12:04:19 +00:00
headerdep.pl
headers_install.sh	scripts: headers_install.sh: Remove config leak ignore machinery	2026-01-30 16:46:17 +01:00
insert-sys-cert.c
install.sh	kbuild: Create INSTALL_PATH directory if it does not exist	2024-07-20 13:34:54 +09:00
integer-wrap-ignore.scl	ubsan/overflow: Enable ignorelist parsing and add type filter	2025-03-07 19:58:05 -08:00
jobserver-exec	docs: Move the python libraries to tools/lib/python	2025-11-18 09:22:40 -07:00
kallsyms.c	kallsyms: Get rid of kallsyms relative base	2026-01-22 15:58:22 -07:00
Kbuild.include	kbuild: add $(objtree)/ prefix to some in-kernel build artifacts	2024-11-27 09:38:27 +09:00
Kconfig.include	rust: kconfig: Don't require RUST_IS_AVAILABLE for rustc-option	2026-02-03 15:29:17 -07:00
kernel-doc	docs: add a scripts/kernel-doc symbolic link	2026-01-20 15:57:06 -07:00
ld-version.sh
leaking_addresses.pl
Lindent
link-vmlinux.sh	Kbuild/Kconfig updates for 7.0	2026-02-11 13:40:35 -08:00
macro_checker.py	scripts: add macro_checker script to check unused parameters in macros	2024-09-01 20:43:28 -07:00
make_fit.py	scripts/make_fit.py: Drop explicit LZMA parallel compression	2026-02-13 14:24:01 -05:00
Makefile	tracing: Add a tracepoint verification check at build time	2025-10-24 16:43:14 -04:00
Makefile.asm-headers	kbuild: fix rebuild of generic syscall headers	2024-07-18 10:01:55 -07:00
Makefile.autofdo	AutoFDO: Enable machine function split optimization for AutoFDO	2024-11-27 09:38:27 +09:00
Makefile.btf	resolve_btfids: Change in-place update with raw binary output	2025-12-19 10:55:40 -08:00
Makefile.build	rust: kbuild: remove `feature(...)`s that are now stable	2026-04-07 10:00:24 +02:00
Makefile.clang	kbuild: clang: Support building UM with SUBARCH=i386	2025-03-04 09:40:13 -08:00
Makefile.clean	kbuild: change working directory to external module directory with M=	2024-11-28 08:10:23 +09:00
Makefile.compiler	require gcc-8 and binutils-2.30	2025-05-31 08:16:52 -07:00
Makefile.context-analysis	compiler-context-analysis: Introduce header suppressions	2026-01-05 16:43:33 +01:00
Makefile.debug
Makefile.defconf	kbuild: suppress stdout from merge_config for silent builds	2025-01-10 23:01:21 +09:00
Makefile.dtbinst
Makefile.dtbs	scripts/dtc: Update to upstream version v1.7.2-62-ga26ef6400bd8	2026-02-03 20:58:12 -06:00
Makefile.gcc-plugins	stackleak: Split KSTACK_ERASE_CFLAGS from GCC_PLUGINS_CFLAGS	2025-07-21 21:40:57 -07:00
Makefile.headersinst
Makefile.host	kbuild: support building external modules in a separate build directory	2024-11-28 08:11:55 +09:00
Makefile.kasan	kasan: fix GCC mem-intrinsic prefix with sw tags	2025-08-27 22:45:43 -07:00
Makefile.kcov	- The 2 patch series "zram: support algorithm-specific parameters" from	2025-06-02 16:00:26 -07:00
Makefile.kcsan
Makefile.kmsan
Makefile.kstack_erase	kstack_erase: Fix missed export of renamed KSTACK_ERASE_CFLAGS	2025-07-29 17:17:46 -07:00
Makefile.lib	Kbuild/Kconfig updates for 7.0	2026-02-11 13:40:35 -08:00
Makefile.modfinal	scripts/gen-btf.sh: Use CONFIG_SHELL for execution	2026-01-21 12:36:32 -08:00
Makefile.modinst	kbuild: Use objtree for module signing key path	2025-11-08 12:17:58 +01:00
Makefile.modpost	modpost: Allow extended modversions without basic MODVERSIONS	2025-01-11 02:36:32 +09:00
Makefile.package	kbuild: modules-cpio-pkg: Respect INSTALL_MOD_PATH	2026-03-30 07:38:26 +02:00
Makefile.propeller	kbuild: Fix Propeller build option	2024-11-27 09:38:27 +09:00
Makefile.randstruct
Makefile.ubsan	ARM:	2025-05-29 08:10:01 -07:00
Makefile.userprogs
Makefile.vdsoinst
Makefile.vmlinux	bpf-next-7.0	2026-02-10 11:26:21 -08:00
Makefile.vmlinux_o	kbuild: Check for functions with ambiguous -ffunction-sections section names	2025-11-21 10:04:10 +01:00
Makefile.warn	kbuild: Drop superfluous compiler option checks	2026-01-14 14:22:33 -07:00
makelst
markup_oops.pl
min-tool-version.sh	rust: bump `bindgen` minimum supported version to 0.71.1 (Debian Trixie)	2026-04-07 10:00:24 +02:00
misc-check	scripts/misc-check: update export checks for EXPORT_SYMBOL_FOR_MODULES()	2025-08-26 12:00:17 -07:00
mkcompile_h
mksysmap	modpost: Create modalias for builtin modules	2025-09-24 09:10:45 -07:00
mkuboot.sh
module-common.c	kbuild: compile constant module information only once	2024-09-07 17:24:08 +09:00
module.lds.S	livepatch: Free klp_{object,func}_ext data after initialization	2026-02-05 08:00:45 -08:00
modules-check.sh
nsdeps	scripts/nsdeps: get 'make nsdeps' working again	2024-12-03 08:22:25 -08:00
objdiff
objdump-func
orc_hash.sh
pahole-version.sh
parse-maintainers.pl
patch-kernel
profile2linkerlist.pl
prune-kernel
recordmcount.c
recordmcount.h
recordmcount.pl	tracing: Remove redundant config HAVE_FTRACE_MCOUNT_RECORD	2025-07-22 20:15:56 -04:00
relocs_check.sh
remove-stale-files	selinux: move genheaders to security/selinux/	2024-10-03 16:07:51 -04:00
rust_is_available_bindgen_libclang.h
rust_is_available_test.py	rust: rust_is_available: remove warning for `bindgen` < 0.69.5 && libclang >= 19.1	2026-04-07 10:00:24 +02:00
rust_is_available.sh	rust: kbuild: remove "dummy parameter" workaround for `bindgen` < 0.71.1	2026-04-07 10:00:24 +02:00
rustc-llvm-version.sh	kbuild: rust: avoid errors with old `rustc`s without LLVM patch version	2024-10-28 00:27:16 +01:00
rustc-version.sh	kbuild: rust: add `CONFIG_RUSTC_VERSION`	2024-09-05 22:44:18 +02:00
rustdoc_test_builder.rs	rust: use absolute paths in macros referencing core and kernel	2025-05-23 00:12:14 +02:00
rustdoc_test_gen.rs	Rust changes for v6.20 / v7.0	2026-02-10 11:53:01 -08:00
setlocalversion	setlocalversion: add -e option	2024-11-28 08:11:56 +09:00
show_delta	scripts: make python shebangs specific about desired version	2025-03-15 21:19:44 +09:00
sign-file.c	Modules changes for v7.0-rc1	2026-02-10 09:49:18 -08:00
sorttable.c	sorttable: Move ELF parsing into scripts/elf-parse.[ch]	2025-10-24 16:43:14 -04:00
spdxcheck-test.sh
spdxcheck.py	treewide: Update email address	2026-01-11 06:09:11 -10:00
spdxexclude
spelling.txt	scripts/spelling.txt: add notifer\|\|notifier to spelling.txt	2025-08-02 12:01:40 -07:00
ssl-common.h	sign-file,extract-cert: avoid using deprecated ERR_get_error_line()	2024-09-20 19:49:52 +03:00
stackdelta
stackusage
subarch.include	scripts: subarch.include: fix SUBARCH on macOS hosts	2024-09-10 13:56:37 +09:00
syscall.tbl	rseq: Implement sys_rseq_slice_yield()	2026-01-22 11:11:17 +01:00
syscallhdr.sh
syscallnr.sh
syscalltbl.sh
tags.sh	tags: Add regex for context_lock_struct	2026-01-05 16:43:37 +01:00
tools-support-relr.sh
tracepoint-update.c	scripts/tracepoint-update: Fix memory leak in add_string() on failure	2026-01-23 13:34:45 -05:00
unifdef.c
ver_linux	ver_linux: Remove checks for reiserfsprogs.	2025-06-09 14:53:16 -06:00
verify_builtin_ranges.awk	scripts: add verifier script for builtin module range data	2024-09-20 09:21:52 +09:00
xen-hypercalls.sh
xz_wrap.sh	xz: adjust arch-specific options for better kernel compression	2024-09-01 20:43:27 -07:00