[PATCH v2] crypto: AEAD: add check for presence of auth tag

From: Stephan Mueller
Date: Mon Jan 05 2015 - 06:21:58 EST

Next message: Dan Carpenter: "Re: [PATCH 1/8] fs/9p: Deletion of unnecessary checks before the function call "p9_client_clunk""
Previous message: Nicolas Ferre: "Re: [PATCH 1/4] ARM: at91: remove at91sam9263 legacy board support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The AEAD decryption operation requires the authentication tag to be
present as part of the cipher text buffer. The added check verifies that
the caller provides a cipher text with at least the authentication tag.

Signed-off-by: Stephan Mueller <smueller@xxxxxxxxxx>
---
include/linux/crypto.h | 3 +++
1 file changed, 3 insertions(+)

diff --git a/include/linux/crypto.h b/include/linux/crypto.h
index 9c8776d..9099834 100644
--- a/include/linux/crypto.h
+++ b/include/linux/crypto.h
@@ -1412,6 +1412,9 @@ static inline int crypto_aead_encrypt(struct aead_request *req)
*/
static inline int crypto_aead_decrypt(struct aead_request *req)
{
+ if (req->cryptlen < crypto_aead_authsize(crypto_aead_reqtfm(req)))
+ return -EINVAL;
+
return crypto_aead_crt(crypto_aead_reqtfm(req))->decrypt(req);
}

--
2.1.0

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Dan Carpenter: "Re: [PATCH 1/8] fs/9p: Deletion of unnecessary checks before the function call "p9_client_clunk""
Previous message: Nicolas Ferre: "Re: [PATCH 1/4] ARM: at91: remove at91sam9263 legacy board support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]