Received: by 2002:a05:6602:18e:0:0:0:0 with SMTP id m14csp1766571ioo; Mon, 23 May 2022 02:49:44 -0700 (PDT) X-Google-Smtp-Source: ABdhPJxuJyYsjnmw0HSuTMj3Tn6sQgG0pcI7jtqkWpyGz87B6Nb6tbzXsaX9seWUCB7+tzpJkqRS X-Received: by 2002:a63:4d3:0:b0:3f5:f19a:a492 with SMTP id 202-20020a6304d3000000b003f5f19aa492mr19219795pge.353.1653299383943; Mon, 23 May 2022 02:49:43 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1653299383; cv=none; d=google.com; s=arc-20160816; b=0gaXgJ5Gg0pnwhIKOvXtGvDoC7h+uAFo8u+Rcjz4XnHuWLaq7OKlUFQg/WNV967urQ NWZ+1i/TLiURqtPlm0BUj6HB4madK7vEcEJ8Aj1ak2qOinJMkWukeBvRz0XjewTjAKH5 7jqhzFC+qRSCm180onF/ikpdzRQ/6dXc634CwLUEHxljnASjncbdmhw3+VO2BGtsdMqA 8HS09+3o96jinoXb1cWulTV6FQVJJue6MQ9zrGtYU3yVkTCZr0YrIjuWNjn7t7NQVvNw 3JvoyVcYNGdgiGZaZeQpnbmAelsrDTOMri2TerWNMhcpZKc1NHBaBFosQhFKMgKFslVO 5WVA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:user-agent:in-reply-to:content-disposition :mime-version:references:reply-to:message-id:subject:cc:to:from:date :dkim-signature; bh=IhiwstYkYYpaHuAFd5FkcFzkEqA7mNU5eF+1/Zp3w0k=; b=eSJJuaEVl4+ZhFhIlGV3d7E4iayVRApL/0FJeTV3DL6NzT3CZPwcvpxEsg4rUYGO2H fRbPZnhwBjYDkCLEF4DjXgRyr0ifHU0ZmTc7OmqCL1iOlVl8R7IbIFiMDZ6tZIk7pZ6g eGU+Qp6mijoyttxAE0gT/52WpSvsMcCN+uOt+ZUPsUIjp4ZycfOmEgJAJfDdW8rfbjr9 WteUKKbPubcH+VkE5TcvzuPi/yFeXvqA1Yzvk6JEOvKd9xU941xpUtY2wcXD5PAKSYcc S71+9synrN8rO32GP1DtPT4oeUJBH0Qgkc1Wl23hQ+9k0MEkNfNC4MSNpmeEBJ1BSikh +i5g== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=W0PKB7Q+; spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:18 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com Return-Path: Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net. [2620:137:e000::1:18]) by mx.google.com with ESMTPS id p2-20020a634f42000000b00383f92e1f96si10480218pgl.79.2022.05.23.02.49.41 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Mon, 23 May 2022 02:49:43 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:18 as permitted sender) client-ip=2620:137:e000::1:18; Authentication-Results: mx.google.com; dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=W0PKB7Q+; spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:18 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com Received: from vger.kernel.org (vger.kernel.org [23.128.96.18]) by lindbergh.monkeyblade.net (Postfix) with ESMTP id 981BF1929B; Mon, 23 May 2022 02:42:36 -0700 (PDT) Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S233516AbiEWJma (ORCPT + 99 others); Mon, 23 May 2022 05:42:30 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:45938 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S234188AbiEWJmD (ORCPT ); Mon, 23 May 2022 05:42:03 -0400 Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124]) by lindbergh.monkeyblade.net (Postfix) with ESMTP id 08A2A17065 for ; Mon, 23 May 2022 02:42:00 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1653298920; h=from:from:reply-to:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type:in-reply-to:in-reply-to: references:references; bh=IhiwstYkYYpaHuAFd5FkcFzkEqA7mNU5eF+1/Zp3w0k=; b=W0PKB7Q+Tsm3OKaErXRljvIrPHj67Okz614qJQProZllY4Vnw99MMOQ6fSrqeKg1/XU5/F aup7qZVznDhjkFE7RQTw/3bwSwJc0fahKxls8JS5+0bt0lkx7wu9t4Omq0E/IalRHuLsWL Jnxo7rqKhek8/3VM3Z678NRogIFCDw4= Received: from mimecast-mx02.redhat.com (mimecast-mx02.redhat.com [66.187.233.88]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id us-mta-388-qjyrpEHGMsuhgHCdhThIvA-1; Mon, 23 May 2022 05:41:54 -0400 X-MC-Unique: qjyrpEHGMsuhgHCdhThIvA-1 Received: from smtp.corp.redhat.com (int-mx07.intmail.prod.int.rdu2.redhat.com [10.11.54.7]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mimecast-mx02.redhat.com (Postfix) with ESMTPS id 4202A101A52C; Mon, 23 May 2022 09:41:54 +0000 (UTC) Received: from redhat.com (unknown [10.33.36.162]) by smtp.corp.redhat.com (Postfix) with ESMTPS id DAD5E1410DD5; Mon, 23 May 2022 09:41:52 +0000 (UTC) Date: Mon, 23 May 2022 10:41:50 +0100 From: Daniel =?utf-8?B?UC4gQmVycmFuZ8Op?= To: zhenwei pi Cc: mst@redhat.com, arei.gonglei@huawei.com, qemu-devel@nongnu.org, virtualization@lists.linux-foundation.org, linux-crypto@vger.kernel.org, helei.sig11@bytedance.com, jasowang@redhat.com, cohuck@redhat.com Subject: Re: [PATCH v6 5/9] crypto: Implement RSA algorithm by hogweed Message-ID: Reply-To: Daniel =?utf-8?B?UC4gQmVycmFuZ8Op?= References: <20220514005504.1042884-1-pizhenwei@bytedance.com> <20220514005504.1042884-6-pizhenwei@bytedance.com> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: <20220514005504.1042884-6-pizhenwei@bytedance.com> User-Agent: Mutt/2.2.1 (2022-02-19) X-Scanned-By: MIMEDefang 2.85 on 10.11.54.7 X-Spam-Status: No, score=-2.6 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS, MAILING_LIST_MULTI,RDNS_NONE,SPF_HELO_NONE,T_SCC_BODY_TEXT_LINE autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-crypto@vger.kernel.org On Sat, May 14, 2022 at 08:55:00AM +0800, zhenwei pi wrote: > From: Lei He > > Implement RSA algorithm by hogweed from nettle. Thus QEMU supports > a 'real' RSA backend to handle request from guest side. It's > important to test RSA offload case without OS & hardware requirement. > > Signed-off-by: lei he > Signed-off-by: zhenwei pi > --- > crypto/akcipher-nettle.c.inc | 451 +++++++++++++++++++++++++++++++++++ > crypto/akcipher.c | 4 + > crypto/meson.build | 4 + > crypto/rsakey-builtin.c.inc | 200 ++++++++++++++++ > crypto/rsakey-nettle.c.inc | 158 ++++++++++++ > crypto/rsakey.c | 44 ++++ > crypto/rsakey.h | 94 ++++++++ > meson.build | 11 + > 8 files changed, 966 insertions(+) > create mode 100644 crypto/akcipher-nettle.c.inc > create mode 100644 crypto/rsakey-builtin.c.inc > create mode 100644 crypto/rsakey-nettle.c.inc > create mode 100644 crypto/rsakey.c > create mode 100644 crypto/rsakey.h > > diff --git a/crypto/akcipher-nettle.c.inc b/crypto/akcipher-nettle.c.inc > new file mode 100644 > index 0000000000..0796bddcaa > --- /dev/null > +++ b/crypto/akcipher-nettle.c.inc > +static int qcrypto_nettle_rsa_encrypt(QCryptoAkCipher *akcipher, > + const void *data, size_t data_len, > + void *enc, size_t enc_len, > + Error **errp) > +{ > + > + QCryptoNettleRSA *rsa = (QCryptoNettleRSA *)akcipher; > + mpz_t c; > + int ret = -1; > + > + if (data_len > rsa->pub.size) { > + error_setg(errp, "Plaintext length should be less than key size: %lu", > + rsa->pub.size); > + return ret; > + } This needs to include both the good & bad values. I'm going to make the following changes to error messages: ie + error_setg(errp, "Plaintext length %zu is greater than key size: %lu" + data_len, rsa->pub.size); return ret; } But also the '%lu' needs to change to '%zu' because the rsa->pub.size parameter is 'size_t'. %lu doesn't match size_t on 32-bit hosts. The same issues appear in several other error messages through this file With regards, Daniel -- |: https://berrange.com -o- https://www.flickr.com/photos/dberrange :| |: https://libvirt.org -o- https://fstop138.berrange.com :| |: https://entangle-photo.org -o- https://www.instagram.com/dberrange :|