lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Message-ID: <20250822142215.2475014-1-dhowells@redhat.com>
Date: Fri, 22 Aug 2025 15:22:07 +0100
From: David Howells <dhowells@...hat.com>
To: Jarkko Sakkinen <jarkko@...nel.org>
Cc: David Howells <dhowells@...hat.com>,
	keyrings@...r.kernel.org,
	linux-kernel@...r.kernel.org
Subject: [PATCH 0/7] keyutils: Add some fixes and updates

Hi Jarkko,

Here are some patches that I'm proposing to add to keyutils:

 (1) Fix a couple of potential signed overflows in the library.

 (2) In request-key, fix the mishandling of the last line of the
     request-key.conf file if it doesn't have a newline at the end.

 (3) In the tests, hide the endianness of raw binary content (such as
     keyring content) by using od to byteswap it appropriately rather than
     trying to do this manually.

 (4) In the tests, add skips for unsupported features.

 (5) In request-key, add help text if "--help" is given or no parameters
     are given.

 (6) Add a simpler way to do configuration testing:

	request-key --check [-lnv] type desc [info] [op]

 (7) Add support for multiwildcard matching in request-key.conf.  This can
     be tested with:

	request-key --match [-v] pattern datum [datum...]

Apologies, some of these should have been committed a while ago.

David

David Howells (7):
  lib: Fix a couple of potential signed oveflows
  request-key: Fix mishandling of last line of config file
  test: Hide endianness
  tests: Add skips for testing of unsupported features
  request-key: Add help text
  request-key: Add a simpler debug test
  request-key: Support the promised multiwildcard matching

 keyutils.c                                |   5 +
 man/request-key.8                         |  85 +++-
 request-key.c                             | 504 ++++++++++++++++------
 tests/features/limits/runtest.sh          |   6 +
 tests/hex2bin.pl                          |  21 +
 tests/keyctl/id/bad-args/runtest.sh       |   6 +
 tests/keyctl/id/noargs/runtest.sh         |   6 +
 tests/keyctl/id/valid/runtest.sh          |   6 +
 tests/keyctl/move/bad-args/runtest.sh     |   6 +
 tests/keyctl/move/noargs/runtest.sh       |   6 +
 tests/keyctl/move/recursion/runtest.sh    |   6 +
 tests/keyctl/move/valid/runtest.sh        |   6 +
 tests/keyctl/reading/valid/runtest.sh     |   9 +-
 tests/keyctl/session/valid2/runtest.sh    |   6 +
 tests/keyctl/supports/bad-args/runtest.sh |   6 +
 tests/keyctl/supports/valid/runtest.sh    |   6 +
 tests/prepare.inc.sh                      |  23 +-
 tests/toolbox.inc.sh                      |  69 ++-
 18 files changed, 619 insertions(+), 163 deletions(-)
 create mode 100644 tests/hex2bin.pl

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ