Linux Kernel https://git.stealer.net/cgit.cgi/user/sven/linux.git/atom?h=v4.9.243 2020-02-14T21:31:02Z 2020-02-14T21:31:02Z Herbert Xu herbert@gondor.apana.org.au 2019-12-07T14:15:15Z urn:sha1:96ad8d508fcbe54ed2d559f03d1adaddf19b96e7 commit 73669cc556462f4e50376538d77ee312142e8a8a upstream. The function crypto_spawn_alg is racy because it drops the lock before shooting the dying algorithm. The algorithm could disappear altogether before we shoot it. This patch fixes it by moving the shooting into the locked section. Fixes: 6bfd48096ff8 ("[CRYPTO] api: Added spawns") Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2020-02-14T21:31:00Z Herbert Xu herbert@gondor.apana.org.au 2019-12-06T05:55:17Z urn:sha1:1d6bd3f50ebb1898972180649ee2845d606f87f2 commit 7db3b61b6bba4310f454588c2ca6faf2958ad79f upstream. We need to check whether spawn->alg is NULL under lock as otherwise the algorithm could be removed from under us after we have checked it and found it to be non-NULL. This could cause us to remove the spawn from a non-existent list. Fixes: 7ede5a5ba55a ("crypto: api - Fix crypto_drop_spawn crash...") Cc: <stable@vger.kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2018-01-17T08:38:54Z Eric Biggers ebiggers@google.com 2017-12-29T20:30:19Z urn:sha1:3752d2fb9a6d3356ce2386e94a69ff40296272ce commit 9a00674213a3f00394f4e3221b88f2d21fc05789 upstream. syzkaller triggered a NULL pointer dereference in crypto_remove_spawns() via a program that repeatedly and concurrently requests AEADs "authenc(cmac(des3_ede-asm),pcbc-aes-aesni)" and hashes "cmac(des3_ede)" through AF_ALG, where the hashes are requested as "untested" (CRYPTO_ALG_TESTED is set in ->salg_mask but clear in ->salg_feat; this causes the template to be instantiated for every request). Although AF_ALG users really shouldn't be able to request an "untested" algorithm, the NULL pointer dereference is actually caused by a longstanding race condition where crypto_remove_spawns() can encounter an instance which has had spawn(s) "grabbed" but hasn't yet been registered, resulting in ->cra_users still being NULL. We probably should properly initialize ->cra_users earlier, but that would require updating many templates individually. For now just fix the bug in a simple way that can easily be backported: make crypto_remove_spawns() treat a NULL ->cra_users list as empty. Reported-by: syzbot <syzkaller@googlegroups.com> Signed-off-by: Eric Biggers <ebiggers@google.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2017-02-09T07:08:26Z Salvatore Benedetto salvatore.benedetto@intel.com 2017-01-13T11:54:08Z urn:sha1:b04a39f88cedc1bce345b458e8a9309ce8a2d1ba commit d6040764adcb5cb6de1489422411d701c158bb69 upstream. Make sure CRYPTO_ALG_DEAD bit is cleared before proceeding with the algorithm registration. This fixes qat-dh registration when driver is restarted Signed-off-by: Salvatore Benedetto <salvatore.benedetto@intel.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2016-07-01T15:45:11Z Herbert Xu herbert@gondor.apana.org.au 2016-06-29T10:04:13Z urn:sha1:32f27c745c26ff4b6351bce265cba049a2c74de5 This patch adds the helper crypto_inst_setname because the current helper crypto_alloc_instance2 is no longer useful given that we now look up the algorithm after we allocate the instance object. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2016-01-25T14:42:12Z Herbert Xu herbert@gondor.apana.org.au 2016-01-23T05:51:01Z urn:sha1:f2aefdab5dff83d3c801449051be1ba72c7e933a This patch adds the helper crypto_type_has_alg which is meant to replace crypto_has_alg for new-style crypto types. Rather than hard-coding type/mask information they're now retrieved from the crypto_type object. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2015-11-23T12:55:50Z Geliang Tang geliangtang@163.com 2015-11-16T14:37:14Z urn:sha1:304e4818d4a45e83019ea30e4cfcb3ac2a8ce09a Simplify crypto_more_spawns() with list_first_entry_or_null() and list_next_entry(). Signed-off-by: Geliang Tang <geliangtang@163.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2015-10-20T13:59:25Z Herbert Xu herbert@gondor.apana.org.au 2015-10-19T10:23:57Z urn:sha1:3fc89adb9fa4beff31374a4bf50b3d099d88ae83 Currently a number of Crypto API operations may fail when a signal occurs. This causes nasty problems as the caller of those operations are often not in a good position to restart the operation. In fact there is currently no need for those operations to be interrupted by user signals at all. All we need is for them to be killable. This patch replaces the relevant calls of signal_pending with fatal_signal_pending, and wait_for_completion_interruptible with wait_for_completion_killable, respectively. Cc: stable@vger.kernel.org Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2015-07-14T06:56:45Z Herbert Xu herbert@gondor.apana.org.au 2015-07-08T23:17:15Z urn:sha1:319382a6970899f02f18da4b0083a6e55942456d Currently the task of freeing an instance is given to the crypto template. However, it has no type information on the instance so we have to resort to checking type information at runtime. This patch introduces a free function to crypto_type that will be used to free an instance. This can then be used to free an instance in a type-safe manner. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2015-07-14T06:56:44Z Herbert Xu herbert@gondor.apana.org.au 2015-07-08T03:55:30Z urn:sha1:31d228cc644034da97394bbadb2dc55ad9bcddb9 The function __crypto_dequeue_request is completely unused. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>