Linux kernel stable tree (mirror) https://git.radix-linux.su/kernel/linux.git/atom?h=v3.2.95 2017-06-05T20:13:48+00:00 2017-06-05T20:13:48+00:00 Dan Carpenter dan.carpenter@oracle.com 2017-02-09T17:17:52+00:00 urn:sha1:c1a88bb20bd87204e83588bcc23490b291205d33 commit 57cb17e764ba0aaa169d07796acce54ccfbc6cae upstream. This function has two callers and neither are able to handle a NULL return. Really, -EINVAL is the correct thing return here anyway. This fixes some static checker warnings like: security/keys/encrypted-keys/encrypted.c:709 encrypted_key_decrypt() error: uninitialized symbol 'master_key'. Fixes: 7e70cb497850 ("keys: add new key-type encrypted") Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com> Acked-by: Mimi Zohar <zohar@linux.vnet.ibm.com> Signed-off-by: James Morris <james.l.morris@oracle.com> Signed-off-by: Ben Hutchings <ben@decadent.org.uk> 2015-02-20T00:49:29+00:00 Takashi Iwai tiwai@suse.de 2014-12-04T17:25:19+00:00 urn:sha1:655f4c99e1b105fe481f254ed1cb7af0ba64f550 commit b26bdde5bb27f3f900e25a95e33a0c476c8c2c48 upstream. When loading encrypted-keys module, if the last check of aes_get_sizes() in init_encrypted() fails, the driver just returns an error without unregistering its key type. This results in the stale entry in the list. In addition to memory leaks, this leads to a kernel crash when registering a new key type later. This patch fixes the problem by swapping the calls of aes_get_sizes() and register_key_type(), and releasing resources properly at the error paths. Bugzilla: https://bugzilla.opensuse.org/show_bug.cgi?id=908163 Signed-off-by: Takashi Iwai <tiwai@suse.de> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> Signed-off-by: Ben Hutchings <ben@decadent.org.uk> 2011-11-16T19:23:13+00:00 Mimi Zohar zohar@linux.vnet.ibm.com 2011-10-24T12:17:42+00:00 urn:sha1:f4a0d5abef14562c37dee5a1d49180f494106230 Fix request_master_key() error return code. Signed-off-by: Mimi Zohar <zohar@us.ibm.com> 2011-11-01T00:30:56+00:00 Andy Shevchenko andriy.shevchenko@linux.intel.com 2011-11-01T00:12:55+00:00 urn:sha1:02473119bc54b0b239c2501064c7a37314347f87 There is no functional change. Signed-off-by: Andy Shevchenko <andriy.shevchenko@linux.intel.com> Cc: Mimi Zohar <zohar@us.ibm.com> Cc: James Morris <jmorris@namei.org> Signed-off-by: Andrew Morton <akpm@linux-foundation.org> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org> 2011-09-21T03:26:44+00:00 Mimi Zohar zohar@linux.vnet.ibm.com 2011-09-20T15:23:55+00:00 urn:sha1:2b3ff6319e2312656fbefe0209bef02d58b6836a For each hex2bin call in encrypted keys, check that the ascii hex string is valid. On failure, return -EINVAL. Changelog v1: - hex2bin now returns an int Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> Acked-by: Andy Shevchenko <andy.shevchenko@gmail.com> 2011-09-14T19:23:49+00:00 Mimi Zohar zohar@linux.vnet.ibm.com 2011-08-28T02:21:26+00:00 urn:sha1:982e617a313b57abee3bcfa53381c356d00fd64a Encrypted keys are decrypted/encrypted using either a trusted-key or, for those systems without a TPM, a user-defined key. This patch removes the trusted-keys and TCG_TPM dependencies. Signed-off-by: Mimi Zohar <zohar@us.ibm.com> 2011-09-14T19:22:26+00:00 Mimi Zohar zohar@linux.vnet.ibm.com 2011-09-14T19:06:00+00:00 urn:sha1:61cf45d0199041df1a8ba334b6bf4a3a13b7f904 Move all files associated with encrypted keys to keys/encrypted-keys. Signed-off-by: Mimi Zohar <zohar@us.ibm.com>