crypto: ccree - use the full crypt length value

commit 7a4be6c113c1f721818d1e3722a9015fe393295c upstream. In case of AEAD decryption verifcation error we were using the wrong value to zero out the plaintext buffer leaving the end of the buffer with the false plaintext. Signed-off-by: N Gilad Ben-Yossef <gilad@benyossef.com> Fixes: ff27e85a ("crypto: ccree - add AEAD support") CC: stable@vger.kernel.org # v4.17+ Signed-off-by: N Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: N Greg Kroah-Hartman <gregkh@linuxfoundation.org>

crypto: ccree - use the full crypt length value
commit 7a4be6c113c1f721818d1e3722a9015fe393295c upstream. In case of AEAD decryption verifcation error we were using the wrong value to zero out the plaintext buffer leaving the end of the buffer with the false plaintext. Signed-off-by: N Gilad Ben-Yossef <gilad@benyossef.com> Fixes: ff27e85a ("crypto: ccree - add AEAD support") CC: stable@vger.kernel.org # v4.17+ Signed-off-by: N Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: N Greg Kroah-Hartman <gregkh@linuxfoundation.org>
a0dc60ac · Gilad Ben-Yossef · Greg Kroah-Hartman · f5c087a0 · a0dc60ac
隐藏空白更改
内联并排

Showing with 1 addition and 1 deletion

drivers/crypto/ccree/cc_aead.c drivers/crypto/ccree/cc_aead.c +1 -1

未找到文件。
--- a/drivers/crypto/ccree/cc_aead.c
+++ b/drivers/crypto/ccree/cc_aead.c
@@ -227,7 +227,7 @@ static void cc_aead_complete(struct device *dev, void *cc_req, int err)
 			/* In case of payload authentication failure, MUST NOT
 			 * revealed the decrypted message --> zero its memory.
 			 */
-			cc_zero_sgl(areq->dst, areq_ctx->cryptlen);
+			cc_zero_sgl(areq->dst, areq->cryptlen);
 			err = -EBADMSG;
 		}
 	} else { /*ENCRYPT*/