[PATCH 7/7] crypto: tegra: Set IV to NULL explicitly for AES ECB

From: Akhil R
Date: Tue Dec 17 2024 - 11:24:37 EST

Next message: Bart Van Assche: "Re: [PATCH v2] RDMA/srp: Fix error handling in srp_add_port"
Previous message: Alan Stern: "Re: [PATCH] usb: fix reference leak in usb_new_device()"
In reply to: Akhil R: "[PATCH 4/7] crypto: tegra: Transfer HASH init function to crypto engine"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

It may happen that the variable req->iv may have stale values or
zero sized buffer by default and may end up getting used during
encryption/decryption. This inturn may corrupt the results or break the
operation. Set the req->iv variable to NULL explicitly for algorithms
like AES-ECB where IV is not used.

Fixes: 0880bb3b00c8 ("crypto: tegra - Add Tegra Security Engine driver")
Signed-off-by: Akhil R <akhilrajeev@xxxxxxxxxx>
---
drivers/crypto/tegra/tegra-se-aes.c | 3 +++
1 file changed, 3 insertions(+)

diff --git a/drivers/crypto/tegra/tegra-se-aes.c b/drivers/crypto/tegra/tegra-se-aes.c
index cdcf05e235ca..be0a0b51f5a5 100644
--- a/drivers/crypto/tegra/tegra-se-aes.c
+++ b/drivers/crypto/tegra/tegra-se-aes.c
@@ -443,6 +443,9 @@ static int tegra_aes_crypt(struct skcipher_request *req, bool encrypt)
if (!req->cryptlen)
return 0;

+ if (ctx->alg == SE_ALG_ECB)
+ req->iv = NULL;
+
rctx->encrypt = encrypt;
rctx->config = tegra234_aes_cfg(ctx->alg, encrypt);
rctx->crypto_config = tegra234_aes_crypto_cfg(ctx->alg, encrypt);
--
2.43.2

Next message: Bart Van Assche: "Re: [PATCH v2] RDMA/srp: Fix error handling in srp_add_port"
Previous message: Alan Stern: "Re: [PATCH] usb: fix reference leak in usb_new_device()"
In reply to: Akhil R: "[PATCH 4/7] crypto: tegra: Transfer HASH init function to crypto engine"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]