diff options
| author |   Mat Martineau <mathew.j.martineau@linux.intel.com> | 2017-06-08 14:50:11 +0100 |
|---|---|---|
| committer |   James Morris <james.l.morris@oracle.com> | 2017-06-09 13:29:50 +1000 |
| commit | 7cbe0932c2f2014d6e24e716e79ea3910b468950 (patch) | |
| tree | 437ceb7be54a31c89b5bebf24b2dcda09210c2a0 /security/keys/Kconfig | |
| parent | crypto : asymmetric_keys : verify_pefile:zero memory content before freeing (diff) | |
| download | linux-dev-7cbe0932c2f2014d6e24e716e79ea3910b468950.tar.xz linux-dev-7cbe0932c2f2014d6e24e716e79ea3910b468950.zip | |
KEYS: Convert KEYCTL_DH_COMPUTE to use the crypto KPP API
The initial Diffie-Hellman computation made direct use of the MPI
library because the crypto module did not support DH at the time. Now
that KPP is implemented, KEYCTL_DH_COMPUTE should use it to get rid of
duplicate code and leverage possible hardware acceleration.
This fixes an issue whereby the input to the KDF computation would
include additional uninitialized memory when the result of the
Diffie-Hellman computation was shorter than the input prime number.
Signed-off-by: Mat Martineau <mathew.j.martineau@linux.intel.com>
Signed-off-by: David Howells <dhowells@redhat.com>
Signed-off-by: James Morris <james.l.morris@oracle.com>
Diffstat (limited to 'security/keys/Kconfig')
| -rw-r--r-- | security/keys/Kconfig | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/security/keys/Kconfig b/security/keys/Kconfig index 00b7431a8aeb..a7a23b5541f8 100644 --- a/security/keys/Kconfig +++ b/security/keys/Kconfig @@ -93,9 +93,9 @@ config ENCRYPTED_KEYS config KEY_DH_OPERATIONS bool "Diffie-Hellman operations on retained keys" depends on KEYS - select MPILIB select CRYPTO select CRYPTO_HASH + select CRYPTO_DH help This option provides support for calculating Diffie-Hellman public keys and shared secrets using values stored as keys |