[15/18] crypto: dh - store group id in dh-generic's dh_ctx

Message ID	20211201004858.19831-16-nstange@suse.de
State	Superseded
Headers	show Return-Path: <linux-crypto-owner@kernel.org> From: Nicolai Stange <nstange@suse.de> To: Herbert Xu <herbert@gondor.apana.org.au>, "David S. Miller" <davem@davemloft.net> Cc: =?utf-8?q?Stephan_M=C3=BCller?= <smueller@chronox.de>, Hannes Reinecke <hare@suse.de>, Torsten Duwe <duwe@suse.de>, Zaibo Xu <xuzaibo@huawei.com>, Giovanni Cabiddu <giovanni.cabiddu@intel.com>, David Howells <dhowells@redhat.com>, Jarkko Sakkinen <jarkko@kernel.org>, linux-crypto@vger.kernel.org, linux-kernel@vger.kernel.org, qat-linux@intel.com, keyrings@vger.kernel.org, Nicolai Stange <nstange@suse.de> Subject: [PATCH 15/18] crypto: dh - store group id in dh-generic's dh_ctx Date: Wed, 1 Dec 2021 01:48:55 +0100 Message-Id: <20211201004858.19831-16-nstange@suse.de> In-Reply-To: <20211201004858.19831-1-nstange@suse.de> References: <20211201004858.19831-1-nstange@suse.de> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Precedence: bulk
Series	crypto: dh - infrastructure for NVM in-band auth and FIPS conformance \| expand [00/18] crypto: dh - infrastructure for NVM in-band auth and FIPS conformance [01/18] crypto: dh - remove struct dh's ->q member [02/18] crypto: dh - constify struct dh's pointer members [03/18] crypto: dh - optimize domain parameter serialization for well-known groups [04/18] crypto: dh - introduce RFC 7919 safe-prime groups [05/18] crypto: testmgr - add DH RFC 7919 ffdhe2048 test vector [06/18] crypto: dh - introduce RFC 3526 safe-prime groups [07/18] crypto: testmgr - add DH RFC 3526 modp2048 test vector [08/18] crypto: testmgr - run only subset of DH vectors based on config [09/18] crypto: dh - implement private key generation primitive [10/18] crypto: dh - introduce support for ephemeral key generation to dh-generic [11/18] crypto: dh - introduce support for ephemeral key generation to hpre driver [12/18] crypto: dh - introduce support for ephemeral key generation to qat driver [13/18] crypto: testmgr - add DH test vectors for key generation [14/18] lib/mpi: export mpi_rshift [15/18] crypto: dh - store group id in dh-generic's dh_ctx [16/18] crypto: dh - calculate Q from P for the full public key verification [17/18] crypto: dh - try to match domain parameters to a known safe-prime group [18/18] crypto: dh - accept only approved safe-prime groups in FIPS mode

Message ID

20211201004858.19831-16-nstange@suse.de

State

Superseded

Headers

From: Nicolai Stange <nstange@suse.de>
To: Herbert Xu <herbert@gondor.apana.org.au>,
        "David S. Miller" <davem@davemloft.net>
Cc: =?utf-8?q?Stephan_M=C3=BCller?= <smueller@chronox.de>,
 Hannes Reinecke <hare@suse.de>, Torsten Duwe <duwe@suse.de>,
 Zaibo Xu <xuzaibo@huawei.com>, Giovanni Cabiddu <giovanni.cabiddu@intel.com>,
 David Howells <dhowells@redhat.com>, Jarkko Sakkinen <jarkko@kernel.org>,
 linux-crypto@vger.kernel.org, linux-kernel@vger.kernel.org,
 qat-linux@intel.com, keyrings@vger.kernel.org,
 Nicolai Stange <nstange@suse.de>
Subject: [PATCH 15/18] crypto: dh - store group id in dh-generic's dh_ctx
Date: Wed,  1 Dec 2021 01:48:55 +0100
Message-Id: <20211201004858.19831-16-nstange@suse.de>
In-Reply-To: <20211201004858.19831-1-nstange@suse.de>
References: <20211201004858.19831-1-nstange@suse.de>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Precedence: bulk

Series

crypto: dh - infrastructure for NVM in-band auth and FIPS conformance | expand

Commit Message

Nicolai Stange Dec. 1, 2021, 12:48 a.m. UTC

A subsequent patch will make the crypto/dh's dh_is_pubkey_valid() to
calculate the Q value from the P domain parameter for safe-prime groups,
for which by definition Q = (P - 1)/2. However, dh_is_pubkey_valid() will
need to check first whether the group in question is actually a safe-prime
group. In order to make this information available, introduce a new
->group_id member to struct dh_ctx and let dh_set_params() set it to the
value found in the struct dh as deserialized via crypto_dh_decode_key().

Signed-off-by: Nicolai Stange <nstange@suse.de>
---
 crypto/dh.c | 3 +++
 1 file changed, 3 insertions(+)

Comments

Hannes Reinecke Dec. 1, 2021, 7:32 a.m. UTC | #1

On 12/1/21 1:48 AM, Nicolai Stange wrote:
> A subsequent patch will make the crypto/dh's dh_is_pubkey_valid() to
> calculate the Q value from the P domain parameter for safe-prime groups,
> for which by definition Q = (P - 1)/2. However, dh_is_pubkey_valid() will
> need to check first whether the group in question is actually a safe-prime
> group. In order to make this information available, introduce a new
> ->group_id member to struct dh_ctx and let dh_set_params() set it to the
> value found in the struct dh as deserialized via crypto_dh_decode_key().
> 
> Signed-off-by: Nicolai Stange <nstange@suse.de>
> ---
>   crypto/dh.c | 3 +++
>   1 file changed, 3 insertions(+)
> 
Reviewed-by: Hannes Reinecke <hare@suse.de>

Cheers,

Hannes

diff --git a/crypto/dh.c b/crypto/dh.c
index 2e49b114e038..38547c5301da 100644
--- a/crypto/dh.c
+++ b/crypto/dh.c
@@ -13,6 +13,7 @@ 
 #include <linux/mpi.h>
 
 struct dh_ctx {
+	enum dh_group_id group_id;
 	MPI p;	/* Value is guaranteed to be set. */
 	MPI q;	/* Value is optional. */
 	MPI g;	/* Value is guaranteed to be set. */
@@ -55,6 +56,8 @@  static int dh_set_params(struct dh_ctx *ctx, struct dh *params)
 	if (dh_check_params_length(params->p_size << 3))
 		return -EINVAL;
 
+	ctx->group_id = params->group_id;
+
 	ctx->p = mpi_read_raw_data(params->p, params->p_size);
 	if (!ctx->p)
 		return -EINVAL;

[15/18] crypto: dh - store group id in dh-generic's dh_ctx

Commit Message

Comments

Patch