On Mon, Aug 14, 2017 at 02:28:14PM +0100, Ard Biesheuvel wrote: > Commit 9ae433bc79f9 ("crypto: chacha20 - convert generic and x86 versions > to skcipher") ported the existing chacha20 code to use the new skcipher > API, and introduced a bug along the way. Unfortunately, the tcrypt tests > did not catch the error, and it was only found recently by Tobias. > > Stefan kindly diagnosed the error, and proposed a fix which is similar > to the one below, with the exception that 'walk.stride' is used rather > than the hardcoded block size. This does not actually matter in this > case, but it's a better example of how to use the skcipher walk API. > > Fixes: 9ae433bc79f9 ("crypto: chacha20 - convert generic and x86 ...") > Cc: <stable@xxxxxxxxxxxxxxx> # v4.11+ > Cc: Steffen Klassert <steffen.klassert@xxxxxxxxxxx> > Reported-by: Tobias Brunner <tobias@xxxxxxxxxxxxxx> > Signed-off-by: Ard Biesheuvel <ard.biesheuvel@xxxxxxxxxx> Patch applied. Thanks. -- Email: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt