diff options
| author | Eric Biggers <ebiggers@google.com> | 2016-11-14 04:35:52 +0300 | 
|---|---|---|
| committer | Theodore Ts'o <tytso@mit.edu> | 2016-11-20 04:56:06 +0300 | 
| commit | 3c7018ebf8dbf14e7cd4f5dc648c51fc979f45bb (patch) | |
| tree | 6d1f382a088cb398acb0bd9b3d50fe1d577038d4 /net/lapb/lapb_in.c | |
| parent | bc33b0ca11e3df467777a4fa7639ba488c9d4911 (diff) | |
| download | linux-3c7018ebf8dbf14e7cd4f5dc648c51fc979f45bb.tar.xz | |
fscrypto: don't use on-stack buffer for filename encryption
With the new (in 4.9) option to use a virtually-mapped stack
(CONFIG_VMAP_STACK), stack buffers cannot be used as input/output for
the scatterlist crypto API because they may not be directly mappable to
struct page.  For short filenames, fname_encrypt() was encrypting a
stack buffer holding the padded filename.  Fix it by encrypting the
filename in-place in the output buffer, thereby making the temporary
buffer unnecessary.
This bug could most easily be observed in a CONFIG_DEBUG_SG kernel
because this allowed the BUG in sg_set_buf() to be triggered.
Cc: stable@vger.kernel.org
Signed-off-by: Eric Biggers <ebiggers@google.com>
Signed-off-by: Theodore Ts'o <tytso@mit.edu>
Diffstat (limited to 'net/lapb/lapb_in.c')
0 files changed, 0 insertions, 0 deletions
