HardenedBSD

mirror of https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git synced 2024-11-14 22:32:30 +01:00

History

Mark Johnston 564b6aa7fc aesni: Avoid a potential out-of-bounds load in aes_encrypt_icm() Given a partial block at the end of a payload, aes_encrypt_icm() would perform a 16-byte load of the residual into a temporary variable. This is unsafe in principle since the full block may cross a page boundary. Fix the problem by copying the residual into a stack buffer first. Reported by: syzbot+b7e44cde9e2e89f0f6c9@syzkaller.appspotmail.com Reported by: syzbot+4b5eaf123a99456b5160@syzkaller.appspotmail.com Reported by: syzbot+70c74c1aa232633355ca@syzkaller.appspotmail.com Reported by: syzbot+2c663776a52828373d41@syzkaller.appspotmail.com Reviewed by: cem, jhb MFC after: 1 week Sponsored by: The FreeBSD Foundation Differential Revision: https://reviews.freebsd.org/D31730		2021-08-30 14:22:20 -04:00
..
aesencdec.h
aeskeys_amd64.S
aeskeys_i386.S
aesni_ccm.c	Fix AES-CCM requests with an AAD size smaller than a single block.	2020-06-12 21:33:02 +00:00
aesni_ghash.c
aesni_os.h
aesni_wrap.c	aesni: Avoid a potential out-of-bounds load in aes_encrypt_icm()	2021-08-30 14:22:20 -04:00
aesni.c	aesni: Ensure that key schedules are aligned	2021-01-18 17:07:56 -05:00
aesni.h	aesni: Ensure that key schedules are aligned	2021-01-18 17:07:56 -05:00
intel_sha1.c
intel_sha256.c
sha_sse.h