libceph: implement CEPHX_V2 calculation mode - kernel/linux.git

diff options

author	Ilya Dryomov <idryomov@gmail.com>	2018-07-27 20:25:32 +0300
committer	Ilya Dryomov <idryomov@gmail.com>	2018-08-02 22:33:25 +0300
commit	cc255c76c70f7a87d97939621eae04b600d9f4a1 (patch)
tree	b090dc5237386d76ac1b44e204922ddce79f3428 /security
parent	6daca13d2e72bedaaacfc08f873114c9307d5aea (diff)
download	linux-cc255c76c70f7a87d97939621eae04b600d9f4a1.tar.xz

libceph: implement CEPHX_V2 calculation mode

Derive the signature from the entire buffer (both AES cipher blocks) instead of using just the first half of the first block, leaving out data_crc entirely. This addresses CVE-2018-1129. Link: http://tracker.ceph.com/issues/24837 Signed-off-by: Ilya Dryomov <idryomov@gmail.com> Reviewed-by: Sage Weil <sage@redhat.com>

Diffstat (limited to 'security')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: