diff options
| author | Linus Torvalds <torvalds@linux-foundation.org> | 2024-02-28 09:30:26 -0800 |
|---|---|---|
| committer | Linus Torvalds <torvalds@linux-foundation.org> | 2024-02-28 09:30:26 -0800 |
| commit | e326df53af0021f48a481ce9d489efda636c2dc6 (patch) | |
| tree | b122cf1b17cd3e34a4c777eec1b45ead763d80b5 /arch | |
| parent | cf1182944c7cc9f1c21a8a44e0d29abe12527412 (diff) | |
| parent | 1c0cf6d19690141002889d72622b90fc01562ce4 (diff) | |
| download | lwn-e326df53af0021f48a481ce9d489efda636c2dc6.tar.gz lwn-e326df53af0021f48a481ce9d489efda636c2dc6.zip | |
Merge tag 'v6.8-p5' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
Pull crypto fixes from Herbert Xu:
"This fixes a regression in lskcipher and an out-of-bound access
in arm64/neonbs"
* tag 'v6.8-p5' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6:
crypto: arm64/neonbs - fix out-of-bounds access on short input
crypto: lskcipher - Copy IV in lskcipher glue code always
Diffstat (limited to 'arch')
| -rw-r--r-- | arch/arm64/crypto/aes-neonbs-glue.c | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/arch/arm64/crypto/aes-neonbs-glue.c b/arch/arm64/crypto/aes-neonbs-glue.c index bac4cabef607..467ac2f768ac 100644 --- a/arch/arm64/crypto/aes-neonbs-glue.c +++ b/arch/arm64/crypto/aes-neonbs-glue.c @@ -227,8 +227,19 @@ static int ctr_encrypt(struct skcipher_request *req) src += blocks * AES_BLOCK_SIZE; } if (nbytes && walk.nbytes == walk.total) { + u8 buf[AES_BLOCK_SIZE]; + u8 *d = dst; + + if (unlikely(nbytes < AES_BLOCK_SIZE)) + src = dst = memcpy(buf + sizeof(buf) - nbytes, + src, nbytes); + neon_aes_ctr_encrypt(dst, src, ctx->enc, ctx->key.rounds, nbytes, walk.iv); + + if (unlikely(nbytes < AES_BLOCK_SIZE)) + memcpy(d, dst, nbytes); + nbytes = 0; } kernel_neon_end(); |