Eric Lee / smarc-fsl-linux-kernel

Download as
Browse Code ยป

Commit bc97e57eb21f8db55bf0e1f182d384e75b2e3c99

Authored by Herbert Xu
1 parent 0f6bb83cb1
Exists in master and in 39 other branches 8mp-imx_5.4.70_2.3.0, 8qm-imx_5.4.70_2.3.0, emb_imx_lf-5.15.y, emb_lf-6.1.y, imx_3.0.35_4.1.0, imx_3.10.17_1.0.1_ga, imx_3.10.53_1.1.0_ga, imx_3.14.28_1.0.0_ga, imx_4.1.15_1.0.0_ga, pitx_8mp_lf-5.10.y, rt-smarc-imx_4.1.15_1.0.0_ga, rt_linux_5.15.71, smarc-8m-android-11.0.0_2.0.0, smarc-imx6_4.14.98_2.0.0_ga, smarc-imx6_4.9.88_2.0.0_ga, smarc-imx7_4.14.98_2.0.0_ga, smarc-imx7_4.9.11_1.0.0_ga, smarc-imx7_4.9.88_2.0.0_ga, smarc-imx_3.10.53_1.1.0_ga, smarc-imx_3.14.28_1.0.0_ga, smarc-imx_4.1.15_1.0.0_ga, smarc-imx_4.9.11_1.0.0_ga, smarc-imx_4.9.51_imx8m_ga, smarc-imx_4.9.88_2.0.0_ga, smarc-m6.0.1_2.1.0-ga, smarc-n7.1.2_2.0.0-ga, smarc-rel_imx_4.1.15_1.2.0_ga, smarc_8m_00d0_imx_4.14.98_2.0.0_ga, smarc_8m_imx_4.14.78_1.0.0_ga, smarc_8m_imx_4.14.98_2.0.0_ga, smarc_8m_imx_4.19.35_1.1.0, smarc_8mm_imx_4.14.78_1.0.0_ga, smarc_8mm_imx_4.14.98_2.0.0_ga, smarc_8mm_imx_4.19.35_1.1.0, smarc_8mm_imx_5.4.24_2.1.0, smarc_8mp_lf-5.10.y, smarc_8mq_imx_5.4.24_2.1.0, smarc_8mq_lf-5.10.y, smarc_imx_lf-5.15.y

crypto: algif_skcipher - Handle unaligned receive buffer 

As it is if user-space passes through a receive buffer that's not
aligned to to the cipher block size, we'll end up encrypting or
decrypting a partial block which causes a spurious EINVAL to be
returned.

This patch fixes this by moving the partial block test after the
af_alg_make_sg call.

Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>

Showing 1 changed file with 7 additions and 6 deletions Side-by-side Diff

crypto/algif_skcipher.c
Diff comments   View file @ bc97e57
... ... @@ -454,18 +454,18 @@
454 454  
455 455 used = min_t(unsigned long, used, seglen);
456 456  
  457 + used = af_alg_make_sg(&ctx->rsgl, from, used, 1);
  458 + err = used;
  459 + if (err < 0)
  460 + goto unlock;
  461 +
457 462 if (ctx->more || used < ctx->used)
458 463 used -= used % bs;
459 464  
460 465 err = -EINVAL;
461 466 if (!used)
462   - goto unlock;
  467 + goto free;
463 468  
464   - used = af_alg_make_sg(&ctx->rsgl, from, used, 1);
465   - err = used;
466   - if (err < 0)
467   - goto unlock;
468   -
469 469 ablkcipher_request_set_crypt(&ctx->req, sg,
470 470 ctx->rsgl.sg, used,
471 471 ctx->iv);
... ... @@ -476,6 +476,7 @@
476 476 crypto_ablkcipher_decrypt(&ctx->req),
477 477 &ctx->completion);
478 478  
  479 +free:
479 480 af_alg_free_sg(&ctx->rsgl);
480 481  
481 482 if (err)