kernel_optimize_test

History

zhenwei pi 5df14bba00 crypto: public_key: fix overflow during implicit conversion commit f985911b7bc75d5c98ed24d8aaa8b94c590f7c6a upstream. Hit kernel warning like this, it can be reproduced by verifying 256 bytes datafile by keyctl command, run script: RAWDATA=rawdata SIGDATA=sigdata modprobe pkcs8_key_parser rm -rf .der .pem *.pfx rm -rf $RAWDATA dd if=/dev/random of=$RAWDATA bs=256 count=1 openssl req -nodes -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem \ -subj "/C=CN/ST=GD/L=SZ/O=vihoo/OU=dev/CN=xx.com/emailAddress=yy@xx.com" KEY_ID=`openssl pkcs8 -in key.pem -topk8 -nocrypt -outform DER \| keyctl \ padd asymmetric 123 @s` keyctl pkey_sign $KEY_ID 0 $RAWDATA enc=pkcs1 hash=sha1 > $SIGDATA keyctl pkey_verify $KEY_ID 0 $RAWDATA $SIGDATA enc=pkcs1 hash=sha1 Then the kernel reports: WARNING: CPU: 5 PID: 344556 at crypto/rsa-pkcs1pad.c:540 pkcs1pad_verify+0x160/0x190 ... Call Trace: public_key_verify_signature+0x282/0x380 ? software_key_query+0x12d/0x180 ? keyctl_pkey_params_get+0xd6/0x130 asymmetric_key_verify_signature+0x66/0x80 keyctl_pkey_verify+0xa5/0x100 do_syscall_64+0x35/0xb0 entry_SYSCALL_64_after_hwframe+0x44/0xae The reason of this issue, in function 'asymmetric_key_verify_signature': '.digest_size(u8) = params->in_len(u32)' leads overflow of an u8 value, so use u32 instead of u8 for digest_size field. And reorder struct public_key_signature, it saves 8 bytes on a 64-bit machine. Cc: stable@vger.kernel.org Signed-off-by: zhenwei pi <pizhenwei@bytedance.com> Reviewed-by: Jarkko Sakkinen <jarkko@kernel.org> Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>		2021-09-18 13:40:08 +02:00
..
acpi	ACPI: fix NULL pointer dereference	2021-08-08 09:05:23 +02:00
asm-generic	vmlinux.lds.h: Handle clang's module.{c,d}tor sections	2021-08-18 08:59:18 +02:00
clocksource	clocksource/drivers/timer-ti-dm: Save and restore timer TIOCP_CFG	2021-07-14 16:56:12 +02:00
crypto	crypto: public_key: fix overflow during implicit conversion	2021-09-18 13:40:08 +02:00
drm	drm: Return -ENOTTY for non-drm ioctls	2021-07-28 14:35:47 +02:00
dt-bindings	clk: imx8mq: remove SYS PLL 1/2 clock gates	2021-07-14 16:56:20 +02:00
keys	certs: Add EFI_CERT_X509_GUID support for dbx entries	2021-06-30 08:47:30 -04:00
kunit
kvm
linux	Revert "time: Handle negative seconds correctly in timespec64_to_ns()"	2021-09-16 12:51:23 +02:00
math-emu
media	media: subdev: disallow ioctl for saa6588/davinci	2021-07-19 09:45:02 +02:00
memory
misc
net	Revert "flow_offload: action should not be NULL when it is referenced"	2021-08-26 08:35:52 -04:00
pcmcia
ras
rdma
scsi	scsi: iscsi: Fix conn use after free during resets	2021-07-20 16:05:41 +02:00
soc	firmware: raspberrypi: Keep count of all consumers	2021-09-15 09:50:41 +02:00
sound
target
trace	afs: Fix tracepoint string placement with built-in AFS	2021-07-28 14:35:41 +02:00
uapi	bpf: Fix a typo of reuseport map in bpf.h.	2021-09-15 09:50:31 +02:00
vdso
video
xen