Re: HIFN+IPsec crashes in current -git

2008-02-22 Thread Evgeniy Polyakov
Hi Patrick. On Thu, Feb 21, 2008 at 04:29:54PM +0100, Patrick McHardy ([EMAIL PROTECTED]) wrote: Unfortunately still no luck. I got an error from ablkcipher_add() because of this condition: ... - further down it uses dst-length in the last while-loop, which seems to need a similar

Re: HIFN+IPsec crashes in current -git

2008-02-22 Thread Patrick McHardy
Evgeniy Polyakov wrote: Does this patch (on top of unpatched tree) helps? I can not test it with real hardware, since I'm sicking at home with laptop only, but I already know how to make a test case for this problem without complex setup, so if it does not work, I will investigate it further as

Re: HIFN+IPsec crashes in current -git

2008-02-21 Thread Herbert Xu
On Thu, Feb 21, 2008 at 12:10:12PM +0300, Evgeniy Polyakov wrote: But req-nbytes should or should not correspond to number of bytes to be encrypted? HIFN driver assumes so, it can be changed to run through scatterlists (btw, how will it determine how many of them were provided?) and get full

Re: HIFN+IPsec crashes in current -git

2008-02-21 Thread Evgeniy Polyakov
On Thu, Feb 21, 2008 at 03:20:45PM +0100, Patrick McHardy ([EMAIL PROTECTED]) wrote: Almost I guess :) There are similar loops in hifn_setup_session(). Additionally we need to check that the return value of ablkcipher_walk() is not a negative errno code. Yep. Kind of this one: diff --git

Re: HIFN+IPsec crashes in current -git

2008-02-21 Thread Patrick McHardy
Patrick McHardy wrote: Evgeniy Polyakov wrote: On Thu, Feb 21, 2008 at 03:20:45PM +0100, Patrick McHardy ([EMAIL PROTECTED]) wrote: Almost I guess :) There are similar loops in hifn_setup_session(). Additionally we need to check that the return value of ablkcipher_walk() is not a negative

Re: HIFN+IPsec crashes in current -git

2008-02-21 Thread Patrick McHardy
Patrick McHardy wrote: It also looks like at least two more changes are needed: ... One more thing: I got lots of printk: 4 messages suppressed without any real messages. The reason is a printk_ratelimit() before a dprintk(). This probably wants either an #ifdef or a real printk. - To

Re: HIFN+IPsec crashes in current -git

2008-02-20 Thread Herbert Xu
On Wed, Feb 20, 2008 at 01:33:22PM +0100, Patrick McHardy wrote: I saw the discrepancy between the elen value used for aead_request_set_crypt() in esp_input() and the req-nbytes value seen in hifn_setup_session(). OK that is normal. esp_input is now using the AEAD interface so the size for

Re: HIFN+IPsec crashes in current -git

2008-02-20 Thread Herbert Xu
On Wed, Feb 20, 2008 at 04:19:03PM +0300, Evgeniy Polyakov wrote: What iv generation scheme do you use? It looks like only gcm and ccm add 16 bytes to cryptlen and set nbytes to them. Although they both install two scatterlists for crypto operation: one for data and one for above addition

Re: HIFN+IPsec crashes in current -git

2008-02-19 Thread Patrick McHardy
Patrick McHardy wrote: Evgeniy Polyakov wrote: Hi Patrick. On Wed, Feb 13, 2008 at 05:44:42PM +0300, Evgeniy Polyakov ([EMAIL PROTECTED]) wrote: Any chance you can apply following patch and check output for correct and broken cases (it will produce 2 or 3 debug strings for each crypto

Re: HIFN+IPsec crashes in current -git

2008-02-19 Thread Patrick McHardy
Evgeniy Polyakov wrote: Hi Patrick. On Wed, Feb 13, 2008 at 05:44:42PM +0300, Evgeniy Polyakov ([EMAIL PROTECTED]) wrote: Any chance you can apply following patch and check output for correct and broken cases (it will produce 2 or 3 debug strings for each crypto operation)? diff --git

Re: HIFN+IPsec crashes in current -git

2008-02-19 Thread Patrick McHardy
Herbert Xu wrote: Patrick McHardy [EMAIL PROTECTED] wrote: I couldn't figure out where in the crypto code the nbytes decrement by 12 bytes compared to the length seen when setting up the crypto operation happens or I might have tried to properly fix it myself. I'll happily test patches in case

Re: HIFN+IPsec crashes in current -git

2008-02-18 Thread Herbert Xu
Patrick McHardy [EMAIL PROTECTED] wrote: I couldn't figure out where in the crypto code the nbytes decrement by 12 bytes compared to the length seen when setting up the crypto operation happens or I might have tried to properly fix it myself. I'll happily test patches in case someone more

Re: HIFN+IPsec crashes in current -git

2008-02-14 Thread Evgeniy Polyakov
Hi Patrick. On Wed, Feb 13, 2008 at 05:44:42PM +0300, Evgeniy Polyakov ([EMAIL PROTECTED]) wrote: Any chance you can apply following patch and check output for correct and broken cases (it will produce 2 or 3 debug strings for each crypto operation)? diff --git a/drivers/crypto/hifn_795x.c

HIFN+IPsec crashes in current -git

2008-02-13 Thread Patrick McHardy
I'm getting crashes when using HIFN and IPsec (ESP with AES + MD5) in the current -git tree. I didn't capture the Oops, but there seem to be a number of problems: - hifn_setup_session walks over the scatterlist, subtracting the scatterlist element size from nbytes until nbytes reaches zero.

Re: HIFN+IPsec crashes in current -git

2008-02-13 Thread Evgeniy Polyakov
Hi Patric. On Wed, Feb 13, 2008 at 02:17:45PM +0100, Patrick McHardy ([EMAIL PROTECTED]) wrote: I'm getting crashes when using HIFN and IPsec (ESP with AES + MD5) in the current -git tree. I didn't capture the Oops, but there seem to be a number of problems: - hifn_setup_session walks over