Google Git
Sign in
linux / linux / kernel / git / herbert / crypto-2.6 / 6f3a06d959f4f38f2beb0a8f25b0e2d5c9792b18
commit6f3a06d959f4f38f2beb0a8f25b0e2d5c9792b18[log] [tgz]
authorEric Biggers <ebiggers@google.com>Wed Mar 04 14:44:03 2020 -0800
committerHerbert Xu <herbert@gondor.apana.org.au>Thu Mar 12 23:00:13 2020 +1100
tree12718b69d0002a4afecea4d66387a304abc12fb7
parentd069b20403d7fe5585d38d2c04b2d429fc95f3e6 [diff]
crypto: testmgr - use consistent IV copies for AEADs that need it

rfc4543 was missing from the list of algorithms that may treat the end
of the AAD buffer specially.

Also, with rfc4106, rfc4309, rfc4543, and rfc7539esp, the end of the AAD
buffer is actually supposed to contain a second copy of the IV, and
we've concluded that if the IV copies don't match the behavior is
implementation-defined.  So, the fuzz tests can't easily test that case.

So, make the fuzz tests only use inputs where the two IV copies match.

Reported-by: Geert Uytterhoeven <geert+renesas@glider.be>
Fixes: 40153b10d91c ("crypto: testmgr - fuzz AEADs against their generic implementation")
Cc: Stephan Mueller <smueller@chronox.de>
Originally-from: Gilad Ben-Yossef <gilad@benyossef.com>
Signed-off-by: Eric Biggers <ebiggers@google.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
1 file changed
tree: 12718b69d0002a4afecea4d66387a304abc12fb7
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. LICENSES/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .clang-format
  24. .cocciconfig
  25. .get_maintainer.ignore
  26. .gitattributes
  27. .gitignore
  28. .mailmap
  29. COPYING
  30. CREDITS
  31. Kbuild
  32. Kconfig
  33. MAINTAINERS
  34. Makefile
  35. README