Add "xts(camellia)", "xts(serpent)", and "xts(twofish)" to the allowlist
for af_alg_restrict=1.  These niche AES alternatives have continued to
see rare but persistent use via cryptsetup, which has historically
relied on the AF_ALG support for these ciphers in XTS mode for
performing the keyslot encryption.  (cryptsetup v2.8.7 and later fall
back to a temporary dm-crypt mapping, but that requires root.)

Signed-off-by: Eric Biggers <[email protected]>
---
 crypto/algif_skcipher.c | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/crypto/algif_skcipher.c b/crypto/algif_skcipher.c
index 2b8069667974..49ae779b3b6b 100644
--- a/crypto/algif_skcipher.c
+++ b/crypto/algif_skcipher.c
@@ -45,6 +45,9 @@ static const struct af_alg_allowlist_entry 
skcipher_allowlist[] = {
        { "ecb(des)", true }, /* iwd */
        { "hctr2(aes)", false }, /* cryptsetup */
        { "xts(aes)", false }, /* cryptsetup benchmark */
+       { "xts(camellia)", false }, /* cryptsetup */
+       { "xts(serpent)", false }, /* cryptsetup */
+       { "xts(twofish)", false }, /* cryptsetup */
        {},
 };
 

base-commit: e264401ce4776a288524e5b87593d4d864147115
-- 
2.54.0


Reply via email to