| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 3 Nov 2018 14:55:59 -0700
From: Eric Biggers <ebiggers@...nel.org>
To: linux-crypto@...r.kernel.org,
Herbert Xu <herbert@...dor.apana.org.au>
Cc: Corentin Labbe <clabbe@...libre.com>,
Stafford Horne <shorne@...il.com>, linux-kernel@...r.kernel.org
Subject: [PATCH 0/4] crypto: crypto_user reporting fixes and cleanups
This series fixes all the information leaks in crypto_user reporting,
removes some redundant reporting functions, and makes some changes to
reduce the chance of similar information leaks in the future. Patch 2
is based on a patch already sent by Corentin Labbe, but it was
incomplete so I fixed it.
Corentin Labbe (1):
crypto: crypto_user_stat - Zeroize whole structure given to user space
Eric Biggers (3):
crypto: crypto_user - fix leaking uninitialized memory to userspace
crypto: crypto_user - remove redundant reporting functions
crypto: crypto_user - clean up report structure copying
crypto/ablkcipher.c | 32 ++++------
crypto/acompress.c | 10 +---
crypto/aead.c | 14 ++---
crypto/ahash.c | 12 ++--
crypto/akcipher.c | 11 ++--
crypto/blkcipher.c | 16 ++---
crypto/crypto_user_base.c | 95 +++++------------------------
crypto/crypto_user_stat.c | 123 ++++++++++++++------------------------
crypto/kpp.c | 10 +---
crypto/rng.c | 12 ++--
crypto/scompress.c | 11 ++--
crypto/shash.c | 12 ++--
crypto/skcipher.c | 15 ++---
13 files changed, 116 insertions(+), 257 deletions(-)
--
2.19.1
Powered by blists - more mailing lists