net: phy: mscc: fix macsec key length

The key length used to store the macsec key was set to MACSEC_KEYID_LEN (16), which is an issue as: - This was never meant to be the key length. - The key length can be > 16. Fix this by using MACSEC_MAX_KEY_LEN instead (the max length accepted in uAPI). Fixes: 28c5107a ("net: phy: mscc: macsec support") Reported-by: N Lior Nahmanson <liorna@nvidia.com> Signed-off-by: N Antoine Tenart <atenart@kernel.org> Signed-off-by: N David S. Miller <davem@davemloft.net>

net: phy: mscc: fix macsec key length
The key length used to store the macsec key was set to MACSEC_KEYID_LEN (16), which is an issue as: - This was never meant to be the key length. - The key length can be > 16. Fix this by using MACSEC_MAX_KEY_LEN instead (the max length accepted in uAPI). Fixes: 28c5107a ("net: phy: mscc: macsec support") Reported-by: N Lior Nahmanson <liorna@nvidia.com> Signed-off-by: N Antoine Tenart <atenart@kernel.org> Signed-off-by: N David S. Miller <davem@davemloft.net>
c309217f · Antoine Tenart · David S. Miller · 1f7fe512 · c309217f · c309217f
隐藏空白更改
内联并排

Showing with 2 addition and 2 deletion

drivers/net/phy/mscc/mscc_macsec.c drivers/net/phy/mscc/mscc_macsec.c +1 -1

drivers/net/phy/mscc/mscc_macsec.h drivers/net/phy/mscc/mscc_macsec.h +1 -1

未找到文件。
--- a/drivers/net/phy/mscc/mscc_macsec.c
+++ b/drivers/net/phy/mscc/mscc_macsec.c
@@ -501,7 +501,7 @@ static u32 vsc8584_macsec_flow_context_id(struct macsec_flow *flow)
 }

 /* Derive the AES key to get a key for the hash autentication */
-static int vsc8584_macsec_derive_key(const u8 key[MACSEC_KEYID_LEN],
+static int vsc8584_macsec_derive_key(const u8 key[MACSEC_MAX_KEY_LEN],
 				     u16 key_len, u8 hkey[16])
 {
 	const u8 input[AES_BLOCK_SIZE] = {0};

--- a/drivers/net/phy/mscc/mscc_macsec.h
+++ b/drivers/net/phy/mscc/mscc_macsec.h
@@ -81,7 +81,7 @@ struct macsec_flow {
 	/* Highest takes precedence [0..15] */
 	u8 priority;

-	u8 key[MACSEC_KEYID_LEN];
+	u8 key[MACSEC_MAX_KEY_LEN];

 	union {
 		struct macsec_rx_sa *rx_sa;