diff options
| author | Gilad Ben-Yossef <[email protected]> | 2019-07-29 13:40:18 +0300 |
|---|---|---|
| committer | Herbert Xu <[email protected]> | 2019-08-09 15:05:30 +1000 |
| commit | 7a4be6c113c1f721818d1e3722a9015fe393295c (patch) | |
| tree | 1a742dc7999e7832446bccc0c9cb05171565bc6b | |
| parent | b7a2758f20251e1d7f884d96e46ea165810431c3 (diff) | |
crypto: ccree - use the full crypt length value
In case of AEAD decryption verifcation error we were using the
wrong value to zero out the plaintext buffer leaving the end of
the buffer with the false plaintext.
Signed-off-by: Gilad Ben-Yossef <[email protected]>
Fixes: ff27e85a85bb ("crypto: ccree - add AEAD support")
CC: [email protected] # v4.17+
Signed-off-by: Herbert Xu <[email protected]>
| -rw-r--r-- | drivers/crypto/ccree/cc_aead.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/drivers/crypto/ccree/cc_aead.c b/drivers/crypto/ccree/cc_aead.c index ce302adc76c7..339fabfe3de6 100644 --- a/drivers/crypto/ccree/cc_aead.c +++ b/drivers/crypto/ccree/cc_aead.c @@ -236,7 +236,7 @@ static void cc_aead_complete(struct device *dev, void *cc_req, int err) /* In case of payload authentication failure, MUST NOT * revealed the decrypted message --> zero its memory. */ - cc_zero_sgl(areq->dst, areq_ctx->cryptlen); + cc_zero_sgl(areq->dst, areq->cryptlen); err = -EBADMSG; } /*ENCRYPT*/ |