crypto: ccp - Add a call to xts_check_key()

Vet the key using the available standard function Signed-off-by: N Gary R Hook <gary.hook@amd.com> Signed-off-by: N Herbert Xu <herbert@gondor.apana.org.au>

crypto: ccp - Add a call to xts_check_key()
Vet the key using the available standard function Signed-off-by: N Gary R Hook <gary.hook@amd.com> Signed-off-by: N Herbert Xu <herbert@gondor.apana.org.au>
47f27f16 · Gary R Hook · Herbert Xu · e652399e · 47f27f16
隐藏空白更改
内联并排

Showing with 8 addition and 1 deletion

drivers/crypto/ccp/ccp-crypto-aes-xts.c drivers/crypto/ccp/ccp-crypto-aes-xts.c +8 -1

未找到文件。
--- a/drivers/crypto/ccp/ccp-crypto-aes-xts.c
+++ b/drivers/crypto/ccp/ccp-crypto-aes-xts.c
@@ -16,6 +16,7 @@
 #include <linux/delay.h>
 #include <linux/scatterlist.h>
 #include <crypto/aes.h>
+#include <crypto/xts.h>
 #include <crypto/internal/skcipher.h>
 #include <crypto/scatterwalk.h>

@@ -97,7 +98,13 @@ static int ccp_aes_xts_complete(struct crypto_async_request *async_req, int ret)
 static int ccp_aes_xts_setkey(struct crypto_ablkcipher *tfm, const u8 *key,
 			      unsigned int key_len)
 {
-	struct ccp_ctx *ctx = crypto_tfm_ctx(crypto_ablkcipher_tfm(tfm));
+	struct crypto_tfm *xfm = crypto_ablkcipher_tfm(tfm);
+	struct ccp_ctx *ctx = crypto_tfm_ctx(xfm);
+	int ret;
+
+	ret = xts_check_key(xfm, key, key_len);
+	if (ret)
+		return ret;

 	/* Only support 128-bit AES key with a 128-bit Tweak key,
 	 * otherwise use the fallback