[PATCH v6 01/18] crypto: xcbc: Remove VLA usage

[PATCH v6 00/18] crypto: Remove VLA usage · Kees Cook <hidden> · 2018-07-24
[PATCH v6 07/18] crypto: shash: Remove VLA usage in unaligned hashing · Kees Cook <hidden> · 2018-07-24
[PATCH v6 13/18] wireless/lib80211: Convert from ahash to shash · Kees Cook <hidden> · 2018-07-24
[PATCH v6 15/18] staging: rtl8192e: ieee80211: Convert from ahash to shash · Kees Cook <hidden> · 2018-07-24
[PATCH v6 12/18] drbd: Convert from ahash to shash · Kees Cook <hidden> · 2018-07-24
[PATCH v6 14/18] staging: rtl8192u: ieee80211: Convert from ahash to shash · Kees Cook <hidden> · 2018-07-24
[PATCH v6 11/18] dm crypt: Convert essiv from ahash to shash · Kees Cook <hidden> · 2018-07-24
[PATCH v6 10/18] x86/power/64: Remove VLA usage · Kees Cook <hidden> · 2018-07-24
Re: [PATCH v6 10/18] x86/power/64: Remove VLA usage · "Rafael J. Wysocki" <rafael@kernel.org> · 2018-07-25
Re: [PATCH v6 10/18] x86/power/64: Remove VLA usage · Kees Cook <hidden> · 2018-07-25
Re: [PATCH v6 10/18] x86/power/64: Remove VLA usage · Rafael J. Wysocki <hidden> · 2018-08-06
[PATCH v6 09/18] ppp: mppe: Remove VLA usage · Kees Cook <hidden> · 2018-07-24
[PATCH v6 08/18] crypto: skcipher: Remove VLA usage for SKCIPHER_REQUEST_ON_STACK · Kees Cook <hidden> · 2018-07-24
[PATCH v6 06/18] crypto: qat: Remove VLA usage · Kees Cook <hidden> · 2018-07-24
[PATCH v6 05/18] crypto alg: Introduce generic max blocksize and alignmask · Kees Cook <hidden> · 2018-07-24
[PATCH v6 04/18] dm: Remove VLA usage from hashes · Kees Cook <hidden> · 2018-07-24
[PATCH v6 03/18] crypto: hash: Remove VLA usage · Kees Cook <hidden> · 2018-07-24
[PATCH v6 01/18] crypto: xcbc: Remove VLA usage · Kees Cook <hidden> · 2018-07-24
[PATCH v6 02/18] crypto: cbc: Remove VLA usage · Kees Cook <hidden> · 2018-07-24
[PATCH v6 18/18] crypto: Remove AHASH_REQUEST_ON_STACK · Kees Cook <hidden> · 2018-07-24
Re: [PATCH v6 18/18] crypto: Remove AHASH_REQUEST_ON_STACK · Joe Perches <joe@perches.com> · 2018-07-24
Re: [PATCH v6 18/18] crypto: Remove AHASH_REQUEST_ON_STACK · Kees Cook <hidden> · 2018-07-24
[PATCH v6 17/18] crypto: ccm: Remove VLA usage · Kees Cook <hidden> · 2018-07-24
Re: [PATCH v6 17/18] crypto: ccm: Remove VLA usage · Ard Biesheuvel <hidden> · 2018-07-24
Re: [PATCH v6 17/18] crypto: ccm: Remove VLA usage · Kees Cook <hidden> · 2018-07-24
[PATCH v6 16/18] rxrpc: Reuse SKCIPHER_REQUEST_ON_STACK buffer · Kees Cook <hidden> · 2018-07-24
Re: [PATCH v6 16/18] rxrpc: Reuse SKCIPHER_REQUEST_ON_STACK buffer · Kees Cook <hidden> · 2018-08-02
Re: [PATCH v6 16/18] rxrpc: Reuse SKCIPHER_REQUEST_ON_STACK buffer · David Howells <dhowells@redhat.com> · 2018-08-03

STALE2879d

Revisions (7)

2018-06-20 v1 [diff vs current]
2018-06-25 v2 [diff vs current]
2018-07-11 v4 [diff vs current]
2018-07-17 v5 [diff vs current]
2018-07-24 v6 current
2018-08-02 v7 [diff vs current]
2018-08-07 v8 [diff vs current]

From: Kees Cook <hidden>
Date: 2018-07-24 16:53:08
Also in: dm-devel, linux-block, linux-crypto, linux-pm, linux-wireless, lkml
Subsystem: crypto api, the rest · Maintainers: Herbert Xu, "David S. Miller", Linus Torvalds

In the quest to remove all stack VLA usage from the kernel[1], this uses
the maximum blocksize and adds a sanity check. For xcbc, the blocksize
must always be 16, so use that, since it's already being enforced during
instantiation.

[1] https://lkml.kernel.org/r/CA+55aFzCG-zNmZwX4A2FQpadafLfEzK6CC=qPXydAacU1RqZWA-JsoAwUIsXosN+BqQ9rBEUg@public.gmane.org

Signed-off-by: Kees Cook <redacted>
---
 crypto/xcbc.c | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/crypto/xcbc.c b/crypto/xcbc.c
index 25c75af50d3f..c055f57fab11 100644
--- a/crypto/xcbc.c
+++ b/crypto/xcbc.c

@@ -57,15 +57,17 @@ struct xcbc_desc_ctx {
 	u8 ctx[];
 };
 
+#define XCBC_BLOCKSIZE	16
+
 static int crypto_xcbc_digest_setkey(struct crypto_shash *parent,
 				     const u8 *inkey, unsigned int keylen)
 {
 	unsigned long alignmask = crypto_shash_alignmask(parent);
 	struct xcbc_tfm_ctx *ctx = crypto_shash_ctx(parent);
-	int bs = crypto_shash_blocksize(parent);
 	u8 *consts = PTR_ALIGN(&ctx->ctx[0], alignmask + 1);
 	int err = 0;
-	u8 key1[bs];
+	u8 key1[XCBC_BLOCKSIZE];
+	int bs = sizeof(key1);
 
 	if ((err = crypto_cipher_setkey(ctx->child, inkey, keylen)))
 		return err;

@@ -212,7 +214,7 @@ static int xcbc_create(struct crypto_template *tmpl, struct rtattr **tb)
 		return PTR_ERR(alg);
 
 	switch(alg->cra_blocksize) {
-	case 16:
+	case XCBC_BLOCKSIZE:
 		break;
 	default:
 		goto out_put_alg;

-- 
2.17.1

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help