55779f26ea
[ Upstream commit c6ab5c915da460c0397960af3c308386c3f3247b ]
Prevent ecc_digits_from_bytes from reading too many bytes from the input
byte array in case an insufficient number of bytes is provided to fill the
output digit array of ndigits. Therefore, initialize the most significant
digits with 0 to avoid trying to read too many bytes later on. Convert the
function into a regular function since it is getting too big for an inline
function.
If too many bytes are provided on the input byte array the extra bytes
are ignored since the input variable 'ndigits' limits the number of digits
that will be filled.
Fixes: d67c96fb97b5 ("crypto: ecdsa - Convert byte arrays with key coordinates to digits")
Reviewed-by: Jarkko Sakkinen <jarkko@kernel.org>
Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Sasha Levin <sashal@kernel.org>
|
||
|---|---|---|
| .. | ||
| internal | ||
| acompress.h | ||
| aead.h | ||
| aes.h | ||
| akcipher.h | ||
| algapi.h | ||
| arc4.h | ||
| aria.h | ||
| authenc.h | ||
| b128ops.h | ||
| blake2b.h | ||
| blake2s.h | ||
| blowfish.h | ||
| cast5.h | ||
| cast6.h | ||
| cast_common.h | ||
| chacha20poly1305.h | ||
| chacha.h | ||
| cryptd.h | ||
| ctr.h | ||
| curve25519.h | ||
| des.h | ||
| dh.h | ||
| drbg.h | ||
| ecc_curve.h | ||
| ecdh.h | ||
| engine.h | ||
| gcm.h | ||
| gf128mul.h | ||
| ghash.h | ||
| hash_info.h | ||
| hash.h | ||
| hmac.h | ||
| if_alg.h | ||
| kdf_sp800108.h | ||
| kpp.h | ||
| md5.h | ||
| nhpoly1305.h | ||
| null.h | ||
| padlock.h | ||
| pcrypt.h | ||
| pkcs7.h | ||
| poly1305.h | ||
| polyval.h | ||
| public_key.h | ||
| rng.h | ||
| scatterwalk.h | ||
| serpent.h | ||
| sha1_base.h | ||
| sha1.h | ||
| sha2.h | ||
| sha3.h | ||
| sha256_base.h | ||
| sha512_base.h | ||
| sig.h | ||
| skcipher.h | ||
| sm2.h | ||
| sm3_base.h | ||
| sm3.h | ||
| sm4.h | ||
| streebog.h | ||
| twofish.h | ||
| utils.h | ||
| xts.h | ||