Commit 7a4be6c1 authored by Gilad Ben-Yossef's avatar Gilad Ben-Yossef Committed by Herbert Xu
Browse files

crypto: ccree - use the full crypt length value 



In case of AEAD decryption verifcation error we were using the
wrong value to zero out the plaintext buffer leaving the end of
the buffer with the false plaintext.

Signed-off-by: default avatarGilad Ben-Yossef <gilad@benyossef.com>
Fixes: ff27e85a ("crypto: ccree - add AEAD support")
CC: stable@vger.kernel.org # v4.17+
Signed-off-by: default avatarHerbert Xu <herbert@gondor.apana.org.au>
parent b7a2758f

drivers/crypto/ccree/cc_aead.c

+1 −1
Original line number Diff line number Diff line
@@ -236,7 +236,7 @@ static void cc_aead_complete(struct device *dev, void *cc_req, int err) 
			/* In case of payload authentication failure, MUST NOT

			 * revealed the decrypted message --> zero its memory.

			 */

			cc_zero_sgl(areq->dst, areq_ctx->cryptlen);

			cc_zero_sgl(areq->dst, areq->cryptlen);

			err = -EBADMSG;

		}

	/*ENCRYPT*/

CRA Git | Maintained and supported by SUSTech CRA and CCSE