On Fri, Sep 16, 2016 at 02:07:40PM +0200, Ondrej Mosnáček wrote: > The cipher block size for GCM is 16 bytes, and thus the CTR transform > used in crypto_gcm_setkey() will also expect a 16-byte IV. However, > the code currently reserves only 8 bytes for the IV, causing > an out-of-bounds access in the CTR transform. This patch fixes > the issue by setting the size of the IV buffer to 16 bytes. > > Fixes: 84c911523020 ("[CRYPTO] gcm: Add support for async ciphers") > Signed-off-by: Ondrej Mosnacek <omosnacek@xxxxxxxxx> > --- > I randomly noticed this while going over igcm.c for an unrelated > reason. It seems the wrong buffer size never caused any noticeable > problems (it's been there since 2007), but it should be corrected > nonetheless... Sorry, but your patch has been line-wrapped and doesn't apply. Please resubmit. Thanks, -- Email: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt -- To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html