Re: [PATCH v2 1/3] evm: check hash algorithm passed to init_desc()

[PATCH v2 0/3] ima/evm fixes for v5.2 · Roberto Sassu <roberto.sassu@huawei.com> · 2019-05-29
[PATCH v2 1/3] evm: check hash algorithm passed to init_desc() · Roberto Sassu <roberto.sassu@huawei.com> · 2019-05-29
Re: [PATCH v2 1/3] evm: check hash algorithm passed to init_desc() · Mimi Zohar <zohar@linux.ibm.com> · 2019-05-30
[PATCH v2 2/3] ima: don't ignore INTEGRITY_UNKNOWN EVM status · Roberto Sassu <roberto.sassu@huawei.com> · 2019-05-29
Re: [PATCH v2 2/3] ima: don't ignore INTEGRITY_UNKNOWN EVM status · Mimi Zohar <zohar@linux.ibm.com> · 2019-05-30
Re: [PATCH v2 2/3] ima: don't ignore INTEGRITY_UNKNOWN EVM status · Roberto Sassu <roberto.sassu@huawei.com> · 2019-06-03
Re: [PATCH v2 2/3] ima: don't ignore INTEGRITY_UNKNOWN EVM status · Mimi Zohar <zohar@linux.ibm.com> · 2019-06-03
Re: [PATCH v2 2/3] ima: don't ignore INTEGRITY_UNKNOWN EVM status · James Bottomley <James.Bottomley@HansenPartnership.com> · 2019-06-03
Re: [PATCH v2 2/3] ima: don't ignore INTEGRITY_UNKNOWN EVM status · Chuck Lever <chuck.lever@oracle.com> · 2019-06-03
Re: [PATCH v2 2/3] ima: don't ignore INTEGRITY_UNKNOWN EVM status · Roberto Sassu <roberto.sassu@huawei.com> · 2019-06-03
Re: [PATCH v2 2/3] ima: don't ignore INTEGRITY_UNKNOWN EVM status · James Bottomley <James.Bottomley@HansenPartnership.com> · 2019-06-03
Re: [PATCH v2 2/3] ima: don't ignore INTEGRITY_UNKNOWN EVM status · Roberto Sassu <roberto.sassu@huawei.com> · 2019-06-03
Re: [PATCH v2 2/3] ima: don't ignore INTEGRITY_UNKNOWN EVM status · James Bottomley <James.Bottomley@HansenPartnership.com> · 2019-06-04
[PATCH v2 3/3] ima: show rules with IMA_INMASK correctly · Roberto Sassu <roberto.sassu@huawei.com> · 2019-05-29
Re: [PATCH v2 3/3] ima: show rules with IMA_INMASK correctly · Mimi Zohar <zohar@linux.ibm.com> · 2019-05-30

From: Mimi Zohar <zohar@linux.ibm.com>
Date: 2019-05-30 11:54:04
Also in: linux-doc, linux-integrity, lkml, stable

On Wed, 2019-05-29 at 15:30 +0200, Roberto Sassu wrote:

This patch prevents memory access beyond the evm_tfm array by checking the
validity of the index (hash algorithm) passed to init_desc(). The hash
algorithm can be arbitrarily set if the security.ima xattr type is not
EVM_XATTR_HMAC.

Fixes: 5feeb61183dde ("evm: Allow non-SHA1 digital signatures")
Signed-off-by: Roberto Sassu <roberto.sassu@huawei.com>
Cc: stable@vger.kernel.org

Thanks, queued.

quoted hunk ↗ jump to hunk

---
 security/integrity/evm/evm_crypto.c | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/security/integrity/evm/evm_crypto.c b/security/integrity/evm/evm_crypto.c
index e11564eb645b..82a38e801ee4 100644
--- a/security/integrity/evm/evm_crypto.c
+++ b/security/integrity/evm/evm_crypto.c

@@ -89,6 +89,9 @@ static struct shash_desc *init_desc(char type, uint8_t hash_algo)
 		tfm = &hmac_tfm;
 		algo = evm_hmac;
 	} else {
+		if (hash_algo >= HASH_ALGO__LAST)
+			return ERR_PTR(-EINVAL);
+
 		tfm = &evm_tfm[hash_algo];
 		algo = hash_algo_name[hash_algo];
 	}

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help