KEYS: asymmetric: Copy sig and digest in public_key_verify_signature()

author Roberto Sassu <roberto.sassu@huawei.com>

Thu, 8 Dec 2022 09:56:46 +0000 (10:56 +0100)

committer Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Fri, 9 Jun 2023 08:34:28 +0000 (10:34 +0200)
author Roberto Sassu <roberto.sassu@huawei.com>
Thu, 8 Dec 2022 09:56:46 +0000 (10:56 +0100)
committer Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Fri, 9 Jun 2023 08:34:28 +0000 (10:34 +0200)
diff --git a/crypto/asymmetric_keys/public_key.c b/crypto/asymmetric_keys/public_key.c

index eca5671..50c933f 100644 (file)
--- a/crypto/asymmetric_keys/public_key.c
+++ b/crypto/asymmetric_keys/public_key.c
@@ -380,9 +380,10 @@ int public_key_verify_signature(const struct public_key *pkey,
         struct crypto_wait cwait;
         struct crypto_akcipher *tfm;
         struct akcipher_request *req;
-       struct scatterlist src_sg[2];
+       struct scatterlist src_sg;
         char alg_name[CRYPTO_MAX_ALG_NAME];
-       char *key, *ptr;
+       char *buf, *ptr;
+       size_t buf_len;
         int ret;
  
         pr_devel("==>%s()\n", __func__);
@@ -420,34 +421,37 @@ int public_key_verify_signature(const struct public_key *pkey,
         if (!req)
                 goto error_free_tfm;
  
-       key = kmalloc(pkey->keylen + sizeof(u32) * 2 + pkey->paramlen,
-                     GFP_KERNEL);
-       if (!key)
+       buf_len = max_t(size_t, pkey->keylen + sizeof(u32) * 2 + pkey->paramlen,
+                       sig->s_size + sig->digest_size);
+
+       buf = kmalloc(buf_len, GFP_KERNEL);
+       if (!buf)
                 goto error_free_req;
  
-       memcpy(key, pkey->key, pkey->keylen);
-       ptr = key + pkey->keylen;
+       memcpy(buf, pkey->key, pkey->keylen);
+       ptr = buf + pkey->keylen;
         ptr = pkey_pack_u32(ptr, pkey->algo);
         ptr = pkey_pack_u32(ptr, pkey->paramlen);
         memcpy(ptr, pkey->params, pkey->paramlen);
  
         if (pkey->key_is_private)
-               ret = crypto_akcipher_set_priv_key(tfm, key, pkey->keylen);
+               ret = crypto_akcipher_set_priv_key(tfm, buf, pkey->keylen);
         else
-               ret = crypto_akcipher_set_pub_key(tfm, key, pkey->keylen);
+               ret = crypto_akcipher_set_pub_key(tfm, buf, pkey->keylen);
         if (ret)
-               goto error_free_key;
+               goto error_free_buf;
  
         if (strcmp(pkey->pkey_algo, "sm2") == 0 && sig->data_size) {
                 ret = cert_sig_digest_update(sig, tfm);
                 if (ret)
-                       goto error_free_key;
+                       goto error_free_buf;
         }
  
-       sg_init_table(src_sg, 2);
-       sg_set_buf(&src_sg[0], sig->s, sig->s_size);
-       sg_set_buf(&src_sg[1], sig->digest, sig->digest_size);
-       akcipher_request_set_crypt(req, src_sg, NULL, sig->s_size,
+       memcpy(buf, sig->s, sig->s_size);
+       memcpy(buf + sig->s_size, sig->digest, sig->digest_size);
+
+       sg_init_one(&src_sg, buf, sig->s_size + sig->digest_size);
+       akcipher_request_set_crypt(req, &src_sg, NULL, sig->s_size,
                                    sig->digest_size);
         crypto_init_wait(&cwait);
         akcipher_request_set_callback(req, CRYPTO_TFM_REQ_MAY_BACKLOG |
@@ -455,8 +459,8 @@ int public_key_verify_signature(const struct public_key *pkey,
                                       crypto_req_done, &cwait);
         ret = crypto_wait_req(crypto_akcipher_verify(req), &cwait);
  
-error_free_key:
-       kfree(key);
+error_free_buf:
+       kfree(buf);
  error_free_req:
         akcipher_request_free(req);
  error_free_tfm:
author	Roberto Sassu <roberto.sassu@huawei.com>
	Thu, 8 Dec 2022 09:56:46 +0000 (10:56 +0100)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Fri, 9 Jun 2023 08:34:28 +0000 (10:34 +0200)