Merge tag 'v6.8-p5' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6

Pull crypto fixes from Herbert Xu: "This fixes a regression in lskcipher and an out-of-bound access in arm64/neonbs" * tag 'v6.8-p5' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6: crypto: arm64/neonbs - fix out-of-bounds access on short input crypto: lskcipher - Copy IV in lskcipher glue code always
author: Linus Torvalds <torvalds@linux-foundation.org> 2024-02-28 09:30:26 -0800
committer: Linus Torvalds <torvalds@linux-foundation.org> 2024-02-28 09:30:26 -0800
commit: e326df53af0021f48a481ce9d489efda636c2dc6 (patch)
tree: b122cf1b17cd3e34a4c777eec1b45ead763d80b5 /arch
parent: cf1182944c7cc9f1c21a8a44e0d29abe12527412 (diff)
parent: 1c0cf6d19690141002889d72622b90fc01562ce4 (diff)
1 files changed, 11 insertions, 0 deletions
diff --git a/arch/arm64/crypto/aes-neonbs-glue.c b/arch/arm64/crypto/aes-neonbs-glue.c
index bac4cabef607..467ac2f768ac 100644
--- a/arch/arm64/crypto/aes-neonbs-glue.c
+++ b/arch/arm64/crypto/aes-neonbs-glue.c
@@ -227,8 +227,19 @@ static int ctr_encrypt(struct skcipher_request *req)
 			src += blocks * AES_BLOCK_SIZE;
 		}
 		if (nbytes && walk.nbytes == walk.total) {
+			u8 buf[AES_BLOCK_SIZE];
+			u8 *d = dst;
+
+			if (unlikely(nbytes < AES_BLOCK_SIZE))
+				src = dst = memcpy(buf + sizeof(buf) - nbytes,
+						   src, nbytes);
+
 			neon_aes_ctr_encrypt(dst, src, ctx->enc, ctx->key.rounds,
 					     nbytes, walk.iv);
+
+			if (unlikely(nbytes < AES_BLOCK_SIZE))
+				memcpy(d, dst, nbytes);
+
 			nbytes = 0;
 		}
 		kernel_neon_end();
author	Linus Torvalds <torvalds@linux-foundation.org>	2024-02-28 09:30:26 -0800
committer	Linus Torvalds <torvalds@linux-foundation.org>	2024-02-28 09:30:26 -0800
commit	e326df53af0021f48a481ce9d489efda636c2dc6 (patch)
tree	b122cf1b17cd3e34a4c777eec1b45ead763d80b5 /arch
parent	cf1182944c7cc9f1c21a8a44e0d29abe12527412 (diff)
parent	1c0cf6d19690141002889d72622b90fc01562ce4 (diff)