git.baikalelectronics.ru Git - kernel.git/commit

author	Jarod Wilson <jarod@redhat.com>
	Wed, 17 Dec 2008 05:51:13 +0000 (16:51 +1100)
committer	Herbert Xu <herbert@gondor.apana.org.au>
	Thu, 25 Dec 2008 00:02:28 +0000 (11:02 +1100)
commit	8f820d70c572fed1178538feb367d6ac1b1d28af
tree	21bb847be8e5250de2d0976dc6b3185023b10f4d	tree \| snapshot
parent	7466e30067a8888088a27a8fc8d5d524ffbb8aed	commit \| diff

crypto: des3_ede - permit weak keys unless REQ_WEAK_KEY set

While its a slightly insane to bypass the key1 == key2 ||
key2 == key3 check in triple-des, since it reduces it to the
same strength as des, some folks do need to do this from time
to time for backwards compatibility with des.

My own case is FIPS CAVS test vectors. Many triple-des test
vectors use a single key, replicated 3x. In order to get the
expected results, des3_ede_setkey() needs to only reject weak
keys if the CRYPTO_TFM_REQ_WEAK_KEY flag is set.

Also sets a more appropriate RES flag when a weak key is found.

Signed-off-by: Jarod Wilson <jarod@redhat.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>