Re: [PATCH net v2] net/tls: fix slab-out-of-bounds bug in decrypt_internal

From: patchwork-bot+netdevbpf
Date: Fri Apr 01 2022 - 07:00:17 EST

Next message: Horatiu Vultur: "[PATCH net v2 0/3] net: phy: micrel: Remove latencies support lan8814"
Previous message: Sebastian Andrzej Siewior: "[ANNOUNCE] v5.17.1-rt17"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello:

This patch was applied to netdev/net.git (master)
by David S. Miller <davem@xxxxxxxxxxxxx>:

On Thu, 31 Mar 2022 15:04:28 +0800 you wrote:
> The memory size of tls_ctx->rx.iv for AES128-CCM is 12 setting in
> tls_set_sw_offload(). The return value of crypto_aead_ivsize()
> for "ccm(aes)" is 16. So memcpy() require 16 bytes from 12 bytes
> memory space will trigger slab-out-of-bounds bug as following:
>
> ==================================================================
> BUG: KASAN: slab-out-of-bounds in decrypt_internal+0x385/0xc40 [tls]
> Read of size 16 at addr ffff888114e84e60 by task tls/10911
>
> [...]

Here is the summary with links:
- [net,v2] net/tls: fix slab-out-of-bounds bug in decrypt_internal
https://git.kernel.org/netdev/net/c/9381fe8c849c

You are awesome, thank you!
--
Deet-doot-dot, I am a bot.
https://korg.docs.kernel.org/patchwork/pwbot.html

Next message: Horatiu Vultur: "[PATCH net v2 0/3] net: phy: micrel: Remove latencies support lan8814"
Previous message: Sebastian Andrzej Siewior: "[ANNOUNCE] v5.17.1-rt17"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]