[PATCH v2 1/5] MPI: fix off by one in mpi_read_raw_from_sgl

From: Stephan Mueller
Date: Sun Oct 18 2015 - 18:05:49 EST

Next message: Stephan Mueller: "[PATCH v2 0/5] crypto: add algif_akcipher user space API"
Previous message: Stephan Mueller: "[PATCH v2 2/5] crypto: AF_ALG -- add sign/verify API"
In reply to: Stephan Mueller: "[PATCH v2 2/5] crypto: AF_ALG -- add sign/verify API"
Next in thread: Tadeusz Struk: "Re: [PATCH v2 1/5] MPI: fix off by one in mpi_read_raw_from_sgl"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The patch fixes the analysis of the input data which contains an off
by one.

The issue is visible when the SGL contains one byte per SG entry.
The code for checking for zero bytes does not operate on the data byte.

Signed-off-by: Stephan Mueller <smueller@xxxxxxxxxx>
---
lib/mpi/mpicoder.c | 5 ++++-
1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/lib/mpi/mpicoder.c b/lib/mpi/mpicoder.c
index c20ef27..c7e0a70 100644
--- a/lib/mpi/mpicoder.c
+++ b/lib/mpi/mpicoder.c
@@ -446,8 +446,11 @@ MPI mpi_read_raw_from_sgl(struct scatterlist *sgl, unsigned int len)
const u8 *buff = sg_virt(sg);
int len = sg->length;

- while (len-- && !*buff++)
+ while (len && !*buff) {
lzeros++;
+ len--;
+ buff++;
+ }

if (len && *buff)
break;
--
2.5.0

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Stephan Mueller: "[PATCH v2 0/5] crypto: add algif_akcipher user space API"
Previous message: Stephan Mueller: "[PATCH v2 2/5] crypto: AF_ALG -- add sign/verify API"
In reply to: Stephan Mueller: "[PATCH v2 2/5] crypto: AF_ALG -- add sign/verify API"
Next in thread: Tadeusz Struk: "Re: [PATCH v2 1/5] MPI: fix off by one in mpi_read_raw_from_sgl"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]