Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface

[PATCH RESEND v5 0/6] crypto: algif - add akcipher · Tadeusz Struk <hidden> · 2016-05-05
[PATCH RESEND v5 1/6] crypto: AF_ALG -- add sign/verify API · Tadeusz Struk <hidden> · 2016-05-05
Re: [PATCH RESEND v5 1/6] crypto: AF_ALG -- add sign/verify API · Stephan Mueller <hidden> · 2016-05-06
[PATCH RESEND v5 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Tadeusz Struk <hidden> · 2016-05-05
[PATCH RESEND v5 2/6] crypto: AF_ALG -- add setpubkey setsockopt call · Tadeusz Struk <hidden> · 2016-05-05
[PATCH RESEND v5 5/6] crypto: algif_akcipher - add ops_nokey · Tadeusz Struk <hidden> · 2016-05-05
[PATCH RESEND v5 4/6] crypto: algif_akcipher - enable compilation · Tadeusz Struk <hidden> · 2016-05-05
[PATCH RESEND v5 6/6] crypto: AF_ALG - add support for key_id · Tadeusz Struk <hidden> · 2016-05-05
Re: [PATCH RESEND v5 6/6] crypto: AF_ALG - add support for key_id · Stephan Mueller <hidden> · 2016-05-06
Re: [PATCH RESEND v5 6/6] crypto: AF_ALG - add support for key_id · Mat Martineau <hidden> · 2016-05-13
Re: [PATCH RESEND v5 6/6] crypto: AF_ALG - add support for key_id · Tadeusz Struk <hidden> · 2016-05-16
Re: [PATCH RESEND v5 0/6] crypto: algif - add akcipher · David Howells <dhowells@redhat.com> · 2016-05-11
[PATCH v6 0/6] crypto: algif - add akcipher · Tadeusz Struk <hidden> · 2016-05-15
[PATCH v6 1/6] crypto: AF_ALG -- add sign/verify API · Tadeusz Struk <hidden> · 2016-05-15
[PATCH v6 4/6] crypto: algif_akcipher - enable compilation · Tadeusz Struk <hidden> · 2016-05-15
[PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Tadeusz Struk <hidden> · 2016-05-15
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Mat Martineau <hidden> · 2016-06-08
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Stephan Mueller <hidden> · 2016-06-08
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Mat Martineau <hidden> · 2016-06-08
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Stephan Mueller <hidden> · 2016-06-09
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Mat Martineau <hidden> · 2016-06-09
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Stephan Mueller <hidden> · 2016-06-09
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Mat Martineau <hidden> · 2016-06-09
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Stephan Mueller <hidden> · 2016-06-09
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Tadeusz Struk <hidden> · 2016-06-10
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Mat Martineau <hidden> · 2016-06-22
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Stephan Mueller <hidden> · 2016-06-23
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Denis Kenzior <hidden> · 2016-06-23
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Andrew Zaborowski <hidden> · 2016-06-13
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Stephan Mueller <hidden> · 2016-06-14
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Andrew Zaborowski <hidden> · 2016-06-14
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Stephan Mueller <hidden> · 2016-06-16
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Andrew Zaborowski <hidden> · 2016-06-16
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Stephan Mueller <hidden> · 2016-06-16
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Andrew Zaborowski <hidden> · 2016-06-17
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Mat Martineau <hidden> · 2016-06-14
Re: [PATCH v6 3/6] crypto: AF_ALG -- add asymmetric cipher interface · Stephan Mueller <hidden> · 2016-06-15
[PATCH v6 5/6] crypto: algif_akcipher - add ops_nokey · Tadeusz Struk <hidden> · 2016-05-15
[PATCH v6 6/6] crypto: AF_ALG - add support for key_id · Tadeusz Struk <hidden> · 2016-05-15
Re: [PATCH v6 6/6] crypto: AF_ALG - add support for key_id · Mat Martineau <hidden> · 2016-05-26
Re: [PATCH v6 6/6] crypto: AF_ALG - add support for key_id · Tadeusz Struk <hidden> · 2016-05-31
[PATCH v6 2/6] crypto: AF_ALG -- add setpubkey setsockopt call · Tadeusz Struk <hidden> · 2016-05-15
Re: [PATCH v6 0/6] crypto: algif - add akcipher · Stephan Mueller <hidden> · 2016-05-15
Re: [PATCH v6 0/6] crypto: algif - add akcipher · Tadeusz Struk <hidden> · 2016-05-16

From: Stephan Mueller <hidden>
Date: 2016-06-16 15:38:22
Also in: linux-api, lkml

Am Donnerstag, 16. Juni 2016, 16:59:01 schrieb Andrew Zaborowski:

Hi Andrew,

Hi Stephan,

On 16 June 2016 at 10:05, Stephan Mueller [off-list ref] wrote:

quoted

Am Dienstag, 14. Juni 2016, 09:42:34 schrieb Andrew Zaborowski:

Hi Andrew,

quoted

I think we have agreed on dropping the length enforcement at the
interface
level.

Separately from this there's a problem with the user being unable to
know if the algorithm is going to fail because of destination buffer
size != key size (including kernel users).  For RSA, the qat
implementation will fail while the software implementation won't.  For
pkcs1pad(...) there's currently just one implementation but the user
can't assume that.

If I understand your issue correctly, my initial code requiring the caller
to provide sufficient memory would have covered the issue, right?

This isn't an issue with AF_ALG, I should have changed the subject
line perhaps.  In this case it's an inconsistency between some
implementations and the documentation (header comment).  It affects
users accessing the cipher through AF_ALG but also directly.

As I want to send a new version of the algif_akcipher shortly now (hoping for 
an inclusion into 4.8), is there anything you see that I should prepare for 
regarding this issue? I.e. do you forsee a potential fix that would change the 
API or ABI of algif_akcipher?

quoted

If so, we seem
to have implementations which can handle shorter buffer sizes and some
which do not. Should a caller really try to figure the right buffer size
out? Why not requiring a mandatory buffer size and be done with it? I.e.
what is the gain to allow shorter buffer sizes (as pointed out by Mat)?

It's that client code doesn't need an intermediate layer with an
additional buffer and a memcpy to provide a sensible API.  If the code
wants to decrypt a 32-byte Digest Info structure with a given key or a
reference to a key it makes no sense, logically or in terms of
performance, for it to provide a key-sized buffer.

In the case of the userspace interface I think it's also rare for a
recv() or read() on Linux to require a buffer larger than it's going
to use, correct me if i'm wrong.  (I.e. fail if given a 32-byte
buffer, return 32 bytes of data anyway)  Turning your questino around
is there a gain from requiring larger buffers?

That is a good one :-)

I have that check removed.

Ciao
Stephan

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help