Re: [PATCH v3 1/7] crypto: handle zero sized AEAD inputs correctly

[PATCH v3 0/7] running kernel mode SIMD with softirqs disabled · Ard Biesheuvel <ardb@kernel.org> · 2021-05-12
[PATCH v3 1/7] crypto: handle zero sized AEAD inputs correctly · Ard Biesheuvel <ardb@kernel.org> · 2021-05-12
Re: [PATCH v3 1/7] crypto: handle zero sized AEAD inputs correctly · Eric Biggers <ebiggers@kernel.org> · 2021-05-12
Re: [PATCH v3 1/7] crypto: handle zero sized AEAD inputs correctly · Ard Biesheuvel <ardb@kernel.org> · 2021-05-12
Re: [PATCH v3 1/7] crypto: handle zero sized AEAD inputs correctly · Herbert Xu <herbert@gondor.apana.org.au> · 2021-05-21
Re: [PATCH v3 1/7] crypto: handle zero sized AEAD inputs correctly · Ard Biesheuvel <ardb@kernel.org> · 2021-05-21
[PATCH v3 2/7] crypto: aead - disallow en/decrypt for non-task or non-softirq context · Ard Biesheuvel <ardb@kernel.org> · 2021-05-12
Re: [PATCH v3 2/7] crypto: aead - disallow en/decrypt for non-task or non-softirq context · Eric Biggers <ebiggers@kernel.org> · 2021-05-12
Re: [PATCH v3 2/7] crypto: aead - disallow en/decrypt for non-task or non-softirq context · Ard Biesheuvel <ardb@kernel.org> · 2021-05-12
[PATCH v3 3/7] crypto: skcipher - disallow en/decrypt for non-task or non-softirq context · Ard Biesheuvel <ardb@kernel.org> · 2021-05-12
[PATCH v3 4/7] crypto: arm64/gcm-aes-ce - remove non-SIMD fallback path · Ard Biesheuvel <ardb@kernel.org> · 2021-05-12
[PATCH v3 6/7] crypto: arm64/aes-ce - stop using SIMD helper for skciphers · Ard Biesheuvel <ardb@kernel.org> · 2021-05-12
[PATCH v3 5/7] crypto: arm64/aes-neonbs - stop using SIMD helper for skciphers · Ard Biesheuvel <ardb@kernel.org> · 2021-05-12
Re: [PATCH v3 5/7] crypto: arm64/aes-neonbs - stop using SIMD helper for skciphers · Eric Biggers <ebiggers@kernel.org> · 2021-05-12
Re: [PATCH v3 5/7] crypto: arm64/aes-neonbs - stop using SIMD helper for skciphers · Ard Biesheuvel <ardb@kernel.org> · 2021-05-12
[PATCH v3 7/7] crypto: arm64/aes-ccm - remove non-SIMD fallback path · Ard Biesheuvel <ardb@kernel.org> · 2021-05-12
Re: [PATCH v3 0/7] running kernel mode SIMD with softirqs disabled · Eric Biggers <ebiggers@kernel.org> · 2021-05-12
Re: [PATCH v3 0/7] running kernel mode SIMD with softirqs disabled · Ard Biesheuvel <ardb@kernel.org> · 2021-05-12

From: Eric Biggers <ebiggers@kernel.org>
Date: 2021-05-12 21:08:11
Also in: linux-arm-kernel

On Wed, May 12, 2021 at 08:44:33PM +0200, Ard Biesheuvel wrote:

There are corner cases where skcipher_walk_aead_[en|de]crypt() may be
invoked with a zero sized input, which is not rejected by the walker
code, but results in the skcipher_walk structure to not be fully
initialized. This will leave stale values in its page and buffer
members, which will be subsequently passed to kfree() or free_page() by
skcipher_walk_done(), resulting in a crash if those routines fail to
identify them as in valid inputs.

Fix this by setting page and buffer to NULL even if the size of the
input is zero.

Signed-off-by: Ard Biesheuvel <ardb@kernel.org>

Is this fixing an existing bug, or only a bug that got exposed by this patchset?
It would be helpful to make that clear (and if it fixes an existing bug, include
a Fixes tag).

Also, skcipher_walk_virt() doesn't set page and buffer to NULL, as it is
currently expected that skcipher_walk_done() is only called when
walk.nbytes != 0.  Is something different for skcipher_walk_aead_[en|de]crypt()?

- Eric

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help