Revision e7afe6c1d486b516ed586dcc10b3e7e3e85a9c2b authored by Scott Mayhew on 15 February 2019, 18:42:02 UTC, committed by J. Bruce Fields on 15 February 2019, 19:56:51 UTC
While trying to reproduce a reported kernel panic on arm64, I discovered that AUTH_GSS basically doesn't work at all with older enctypes on arm64 systems with CONFIG_VMAP_STACK enabled. It turns out there still a few places using stack memory with scatterlists, causing krb5_encrypt() and krb5_decrypt() to produce incorrect results (or a BUG if CONFIG_DEBUG_SG is enabled). Tested with cthon on v4.0/v4.1/v4.2 with krb5/krb5i/krb5p using des3-cbc-sha1 and arcfour-hmac-md5. Signed-off-by: Scott Mayhew <smayhew@redhat.com> Cc: stable@vger.kernel.org Signed-off-by: J. Bruce Fields <bfields@redhat.com>
1 parent 3bf6b57
| File | Mode | Size |
|---|---|---|
| Kconfig | -rw-r--r-- | 803 bytes |
| Makefile | -rw-r--r-- | 263 bytes |
| crypto.c | -rw-r--r-- | 61.8 KB |
| debug.c | -rw-r--r-- | 3.8 KB |
| dentry.c | -rw-r--r-- | 2.6 KB |
| ecryptfs_kernel.h | -rw-r--r-- | 25.2 KB |
| file.c | -rw-r--r-- | 11.8 KB |
| inode.c | -rw-r--r-- | 32.3 KB |
| keystore.c | -rw-r--r-- | 79.3 KB |
| kthread.c | -rw-r--r-- | 4.9 KB |
| main.c | -rw-r--r-- | 25.3 KB |
| messaging.c | -rw-r--r-- | 13.5 KB |
| miscdev.c | -rw-r--r-- | 14.6 KB |
| mmap.c | -rw-r--r-- | 15.7 KB |
| read_write.c | -rw-r--r-- | 8.5 KB |
| super.c | -rw-r--r-- | 6.1 KB |
Computing file changes ...
