[v2,0/3] crypto: shash - Enforce descsize limit in init_tfm

Message ID	20191208054229.h4smagmiuqhxxc6w@gondor.apana.org.au (mailing list archive)
Headers	show Return-Path: <SRS0=w3rH=Z6=vger.kernel.org=linux-crypto-owner@kernel.org> Date: Sun, 8 Dec 2019 13:42:29 +0800 From: Herbert Xu <herbert@gondor.apana.org.au> To: Linux Crypto Mailing List <linux-crypto@vger.kernel.org> Cc: Eric Biggers <ebiggers@kernel.org> Subject: [v2 PATCH 0/3] crypto: shash - Enforce descsize limit in init_tfm Message-ID: <20191208054229.h4smagmiuqhxxc6w@gondor.apana.org.au> References: <20191206023527.k4kxngcsb7rpq2rz@gondor.apana.org.au> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20191206023527.k4kxngcsb7rpq2rz@gondor.apana.org.au> User-Agent: NeoMutt/20170113 (1.7.2) Sender: linux-crypto-owner@vger.kernel.org Precedence: bulk
Series	crypto: shash - Enforce descsize limit in init_tfm \| expand [v2,0/3] crypto: shash - Enforce descsize limit in init_tfm [v2,1/3] crypto: shash - Add init_tfm/exit_tfm and verify descsize [v2,2/3] crypto: padlock-sha - Use init_tfm/exit_tfm interface [v2,3/3] crypto: hmac - Use init_tfm/exit_tfm interface

Message ID

20191208054229.h4smagmiuqhxxc6w@gondor.apana.org.au (mailing list archive)

Headers

Date: Sun, 8 Dec 2019 13:42:29 +0800
From: Herbert Xu <herbert@gondor.apana.org.au>
To: Linux Crypto Mailing List <linux-crypto@vger.kernel.org>
Cc: Eric Biggers <ebiggers@kernel.org>
Subject: [v2 PATCH 0/3] crypto: shash - Enforce descsize limit in init_tfm
Message-ID: <20191208054229.h4smagmiuqhxxc6w@gondor.apana.org.au>
References: <20191206023527.k4kxngcsb7rpq2rz@gondor.apana.org.au>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20191206023527.k4kxngcsb7rpq2rz@gondor.apana.org.au>
User-Agent: NeoMutt/20170113 (1.7.2)
Sender: linux-crypto-owner@vger.kernel.org
Precedence: bulk

Series

crypto: shash - Enforce descsize limit in init_tfm | expand

Message

Herbert Xu Dec. 8, 2019, 5:42 a.m. UTC

As it stands we only enforce descsize limits when an algorithm is
registered.  However, as descsize is dynamic and may be set at
init_tfm time this is not enough.  This is why hmac has its own
descsize check.

This series adds descsize limit enforcement at init_tfm time so
that the API takes over the responsibility of checking descsize
after the algorithm's init_tfm has completed.

v2 addresses the issues raised during review, including adding
a WARN_ON_ONCE to crypto_shash_init_tfm.

Thanks,

Comments

Eric Biggers Dec. 11, 2019, 3:32 a.m. UTC | #1

On Sun, Dec 08, 2019 at 01:42:29PM +0800, Herbert Xu wrote:
> As it stands we only enforce descsize limits when an algorithm is
> registered.  However, as descsize is dynamic and may be set at
> init_tfm time this is not enough.  This is why hmac has its own
> descsize check.
> 
> This series adds descsize limit enforcement at init_tfm time so
> that the API takes over the responsibility of checking descsize
> after the algorithm's init_tfm has completed.
> 
> v2 addresses the issues raised during review, including adding
> a WARN_ON_ONCE to crypto_shash_init_tfm.
> 
> Thanks,

I left some nits on patches 1 and 2, but not too important.  Feel free to add:

Reviewed-by: Eric Biggers <ebiggers@google.com>

Herbert Xu Dec. 11, 2019, 8:30 a.m. UTC | #2

On Tue, Dec 10, 2019 at 07:32:11PM -0800, Eric Biggers wrote:
>
> I left some nits on patches 1 and 2, but not too important.  Feel free to add:
> 
> Reviewed-by: Eric Biggers <ebiggers@google.com>

Thanks.  I've added your suggestions as well as your review tag.