mirror of
git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
synced 2025-09-04 20:19:47 +08:00
eed848871c
The recent patch to make the rfc3961 simplified code use sg_miter rather
than manually walking the scatterlist to hash the contents of a buffer
described by that scatterlist failed to take the starting offset into
account.
This is indicated by the selftests reporting:
krb5: Running aes128-cts-hmac-sha256-128 mic
krb5: !!! TESTFAIL crypto/krb5/selftest.c:446
krb5: MIC mismatch
Fix this by calling sg_miter_skip() before doing the loop to advance
by the offset.
This only affects packet signing modes and not full encryption in RxGK
because, for full encryption, the message digest is handled inside the
authenc and krb5enc drivers.
Note: Nothing in linus/master uses the krb5lib, though the bug is there.
It is used by AF_RXRPC's RxGK implementation in -next, no need to backport.
Fixes:
|
||
|---|---|---|
| .. | ||
| internal.h | ||
| Kconfig | ||
| krb5_api.c | ||
| krb5_kdf.c | ||
| Makefile | ||
| rfc3961_simplified.c | ||
| rfc3962_aes.c | ||
| rfc6803_camellia.c | ||
| rfc8009_aes2.c | ||
| selftest_data.c | ||
| selftest.c | ||