git.ipfire.org Git - thirdparty/kernel/linux.git/commit

author	Eric Biggers <ebiggers@kernel.org>
	Sun, 12 Oct 2025 01:57:33 +0000 (18:57 -0700)
committer	Steve French <stfrench@microsoft.com>
	Thu, 16 Oct 2025 03:10:28 +0000 (22:10 -0500)
commit	e05b3115e75381369be84abe5d46565ce0fcedc8
tree	ec3b37dd9f07206c60e21f6bea29ce69c62d1894	tree \| snapshot
parent	4b4c6fdb25de4edc0a34b1b93cccb439e00e1f35	commit \| diff

smb: client: Use HMAC-SHA256 library for SMB2 signature calculation

Convert smb2_calc_signature() to use the HMAC-SHA256 library instead of
a "hmac(sha256)" crypto_shash.  This is simpler and faster.  With the
library there's no need to allocate memory, no need to handle errors,
and the HMAC-SHA256 code is accessed directly without inefficient
indirect calls and other unnecessary API overhead.

To make this possible, make __cifs_calc_signature() support both the
HMAC-SHA256 library and crypto_shash.  (crypto_shash is still needed for
HMAC-MD5 and AES-CMAC.  A later commit will switch HMAC-MD5 from shash
to the library.  I'd like to eventually do the same for AES-CMAC, but it
doesn't have a library API yet.  So for now, shash is still needed.)

Also remove the unnecessary 'sigptr' variable.

For now smb3_crypto_shash_allocate() still allocates a "hmac(sha256)"
crypto_shash.  It will be removed in a later commit.

Reviewed-by: Stefan Metzmacher <metze@samba.org>
Acked-by: Ard Biesheuvel <ardb@kernel.org>
Signed-off-by: Eric Biggers <ebiggers@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>

fs/smb/client/cifsencrypt.c		diff \| blob \| blame \| history
fs/smb/client/cifsproto.h		diff \| blob \| blame \| history
fs/smb/client/smb2transport.c		diff \| blob \| blame \| history