git.baikalelectronics.ru Git - kernel.git/commit

author	Russell King <rmk+kernel@arm.linux.org.uk>
	Mon, 8 Aug 2016 17:04:31 +0000 (18:04 +0100)
committer	Herbert Xu <herbert@gondor.apana.org.au>
	Tue, 9 Aug 2016 10:47:23 +0000 (18:47 +0800)
commit	2ac9aa3415fd4c0f60ec1051e836da2078344c93
tree	e64ad9efcc1f47261815a5a55cf9c44e81d7289f	tree \| snapshot
parent	22811e9901a4c94d4b6b1ca142d25cfbc6dcd39b	commit \| diff

crypto: caam - fix DMA API mapping leak

caamhash contains this weird code:

src_nents = sg_count(req->src, req->nbytes);
dma_map_sg(jrdev, req->src, src_nents ? : 1, DMA_TO_DEVICE);
...
edesc->src_nents = src_nents;

sg_count() returns zero when sg_nents_for_len() returns zero or one.
This means we don't need to use a hardware scatterlist.  However,
setting src_nents to zero causes problems when we unmap:

if (edesc->src_nents)
dma_unmap_sg_chained(dev, req->src, edesc->src_nents,
     DMA_TO_DEVICE, edesc->chained);

as zero here means that we have no entries to unmap.  This causes us
to leak DMA mappings, where we map one scatterlist entry and then
fail to unmap it.

This can be fixed in two ways: either by writing the number of entries
that were requested of dma_map_sg(), or by reworking the "no SG
required" case.

We adopt the re-work solution here - we replace sg_count() with
sg_nents_for_len(), so src_nents now contains the real number of
scatterlist entries, and we then change the test for using the
hardware scatterlist to src_nents > 1 rather than just non-zero.

This change passes my sshd, openssl tests hashing /bin and tcrypt
tests.

Signed-off-by: Russell King <rmk+kernel@arm.linux.org.uk>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>