Skip to content

  • Projects
  • Groups
  • Snippets
  • Help
    • Loading...
    • Help
    • Support
    • Submit feedback
    • Contribute to GitLab
  • Sign in / Register
K
kernel
  • Project overview
    • Project overview
    • Details
    • Activity
    • Releases
    • Cycle Analytics
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
    • Charts
  • Members
    • Members
  • Collapse sidebar
  • Activity
  • Graph
  • Charts
  • Commits
  • phytec
  • vm016-mx8m
  • kernel
  • Repository

Switch branch/tag
  • kernel
  • lib
  • digsig.c
Find file
BlameHistoryPermalink
  • Eric Biggers's avatar
    lib/digsig: fix dereference of NULL user_key_payload · 192cabd6
    Eric Biggers authored Oct 09, 2017
    digsig_verify() requests a user key, then accesses its payload.
    However, a revoked key has a NULL payload, and we failed to check for
    this.  request_key() *does* skip revoked keys, but there is still a
    window where the key can be revoked before we acquire its semaphore.
    
    Fix it by checking for a NULL payload, treating it like a key which was
    already revoked at the time it was requested.
    
    Fixes: 051dbb91 ("crypto: digital signature verification support")
    Reviewed-by: default avatarJames Morris <james.l.morris@oracle.com>
    Cc: <stable@vger.kernel.org>    [v3.3+]
    Cc: Dmitry Kasatkin <dmitry.kasatkin@intel.com>
    Signed-off-by: default avatarEric Biggers <ebiggers@google.com>
    Signed-off-by: default avatarDavid Howells <dhowells@redhat.com>
    192cabd6
digsig.c 5.71 KB
EditWeb IDE

Replace digsig.c

Attach a file by drag & drop or click to upload


Cancel
A new branch will be created in your fork and a new merge request will be started.