Re: [PATCH v2] KEYS: asymmetric: Copy sig and digest in public_key_verify_signature()

From: Roberto Sassu
Date: Mon Dec 19 2022 - 03:51:13 EST

Next message: Yuan, Perry: "RE: [PATCH v7 03/13] cpufreq: intel_pstate: use common macro definition for Energy Preference Performance(EPP)"
Previous message: Thomas Richter: "[PATCH v3 2/2] perf/test: Fix test case 89 for x86"
Next in thread: Herbert Xu: "[PATCH] lib/mpi: Fix buffer overrun when SG is too long"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 2022-12-12 at 17:15 +0800, Herbert Xu wrote:
> On Mon, Dec 12, 2022 at 10:07:38AM +0100, Roberto Sassu wrote:
> > The problem is a misalignment between req->src_len (set to sig->s_size
> > by akcipher_request_set_crypt()) and the length of the scatterlist (if
> > we set the latter to sig->s_size + sig->digest_size).
> >
> > When rsa_enc() calls mpi_read_raw_from_sgl(), it passes req->src_len as
> > argument, and the latter allocates the MPI according to that. However,
> > it does parsing depending on the length of the scatterlist.
> >
> > If there are two scatterlists, it is not a problem, there is no
> > misalignment. mpi_read_raw_from_sgl() picks the first. If there is just
> > one, mpi_read_raw_from_sgl() parses all data there.
>
> Thanks for the explanation. That's definitely a bug which should
> be fixed either in the RSA code or in MPI.
>
> I'll look into it.

Hi Herbert

do you have any news on this bug?

Thanks

Roberto

Next message: Yuan, Perry: "RE: [PATCH v7 03/13] cpufreq: intel_pstate: use common macro definition for Energy Preference Performance(EPP)"
Previous message: Thomas Richter: "[PATCH v3 2/2] perf/test: Fix test case 89 for x86"
Next in thread: Herbert Xu: "[PATCH] lib/mpi: Fix buffer overrun when SG is too long"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]