iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/crypto
History
Thore Sommer 51ffed9ca1 X.509: if signature is unsupported skip validation 
commit ef5b52a631f8c18353e80ccab8408b963305510c upstream.

When the hash algorithm for the signature is not available the digest size
is 0 and the signature in the certificate is marked as unsupported.

When validating a self-signed certificate, this needs to be checked,
because otherwise trying to validate the signature will fail with an
warning:

Loading compiled-in X.509 certificates
WARNING: CPU: 0 PID: 1 at crypto/rsa-pkcs1pad.c:537 \
pkcs1pad_verify+0x46/0x12c
...
Problem loading in-kernel X.509 certificate (-22)

Signed-off-by: Thore Sommer <public@thson.de>
Cc: stable@vger.kernel.org # v4.7+
Fixes: 6c2dc5ae4ab7 ("X.509: Extract signature digest and make self-signed cert checks earlier")
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2023-09-19 12:22:52 +02:00
..
asymmetric_keys
X.509: if signature is unsupported skip validation
2023-09-19 12:22:52 +02:00
async_tx
async_xor: check src_offs is not NULL before updating it
2021-06-10 19:40:14 -07:00
842.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 157
2019-05-30 11:26:37 -07:00
acompress.c
crypto: api - permit users to specify numa node of acomp hardware
2020-07-09 18:25:23 +10:00
adiantum.c
crypto: remove cipher routines from public crypto API
2021-01-03 08:41:35 +11:00
aead.c
crypto: algapi - enforce that all instances have a ->free() method
2020-01-09 11:30:58 +08:00
aegis128-core.c
crypto: aegis128 - Move simd prototypes into aegis.h
2021-03-19 21:59:45 +11:00
aegis128-neon-inner.c
crypto: aegis128/neon - move final tag check to SIMD domain
2020-11-27 17:13:40 +11:00
aegis128-neon.c
crypto: aegis128 - Move simd prototypes into aegis.h
2021-03-19 21:59:45 +11:00
aegis.h
crypto: aegis128 - Move simd prototypes into aegis.h
2021-03-19 21:59:45 +11:00
aes_generic.c
crypto: remove CRYPTO_TFM_RES_BAD_KEY_LEN
2020-01-09 11:30:53 +08:00
aes_ti.c
crypto: aes - create AES library based on the fixed time AES code
2019-07-26 14:55:33 +10:00
af_alg.c
crypto: af_alg - use DIV_ROUND_UP helper macro for calculations
2021-06-03 20:24:04 +08:00
ahash.c
crypto: ahash - Add init_tfm/exit_tfm
2020-08-28 16:58:28 +10:00
akcipher.c
crypto: akcipher - default implementation for setting a private key
2022-10-26 12:35:25 +02:00
algapi.c
crypto: api - Use work queue in crypto_destroy_instance
2023-09-19 12:22:33 +02:00
algboss.c
crypto: api - remove CRYPTOA_U32 and related functions
2021-06-17 15:07:31 +08:00
algif_aead.c
crypto: algif_aead - Do not set MAY_BACKLOG on the async path
2020-08-21 14:45:27 +10:00
algif_hash.c
net: make ->{get,set}sockopt in proto_ops optional
2020-07-19 18:16:41 -07:00
algif_rng.c
crypto: af_alg - add extra parameters for DRBG interface
2020-09-25 17:48:52 +10:00
algif_skcipher.c
crypto: algif_skcipher - EBUSY on aio should be an error
2020-08-21 14:45:26 +10:00
ansi_cprng.c
crypto: remove cipher routines from public crypto API
2021-01-03 08:41:35 +11:00
anubis.c
crypto: remove CRYPTO_TFM_RES_BAD_KEY_LEN
2020-01-09 11:30:53 +08:00
api.c
crypto: api - Move cryptomgr soft dependency into algapi
2022-02-11 09:10:26 +01:00
arc4.c
crypto: arc4 - mark ecb(arc4) skcipher as obsolete
2020-09-11 14:39:16 +10:00
authenc.c
crypto: authenc - Fix sleep in atomic context in decrypt_tail
2022-04-08 14:23:05 +02:00
authencesn.c
crypto: algapi - use common mechanism for inheriting flags
2020-07-16 21:49:08 +10:00
blake2b_generic.c
crypto: blake2b - update file comment
2021-01-03 08:41:39 +11:00
blowfish_common.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152
2019-05-30 11:26:32 -07:00
blowfish_generic.c
crypto: blowfish - use unaligned accessors instead of alignmask
2021-02-10 17:55:56 +11:00
camellia_generic.c
crypto: camellia - use unaligned accessors instead of alignmask
2021-02-10 17:55:56 +11:00
cast5_generic.c
crypto: cast5 - use unaligned accessors instead of alignmask
2021-02-10 17:55:56 +11:00
cast6_generic.c
crypto: cast6 - use unaligned accessors instead of alignmask
2021-02-10 17:55:56 +11:00
cast_common.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 44
2019-05-24 17:27:12 +02:00
cbc.c
crypto: remove cipher routines from public crypto API
2021-01-03 08:41:35 +11:00
ccm.c
crypto: remove cipher routines from public crypto API
2021-01-03 08:41:35 +11:00
cfb.c
crypto: remove cipher routines from public crypto API
2021-01-03 08:41:35 +11:00
chacha20poly1305.c
crypto: algapi - use common mechanism for inheriting flags
2020-07-16 21:49:08 +10:00
chacha_generic.c
crypto: chacha_generic - remove unnecessary setkey() functions
2019-11-22 18:48:39 +08:00
cipher.c
crypto: remove cipher routines from public crypto API
2021-01-03 08:41:35 +11:00
cmac.c
crypto: remove cipher routines from public crypto API
2021-01-03 08:41:35 +11:00
compress.c
crypto: compress - remove crt_u.compress (struct compress_tfm)
2019-12-11 16:37:01 +08:00
crc32_generic.c
crypto: crc32-generic - Use SPDX-License-Identifier
2021-04-16 21:24:27 +10:00
crc32c_generic.c
crypto: crc32c_generic - delete and fix duplicated words
2020-08-21 14:45:25 +10:00
crct10dif_common.c
crct10dif_generic.c
crypto: crct10dif_generic - fix duplicated words
2020-08-21 14:45:25 +10:00
cryptd.c
crypto: cryptd - Use request context instead of stack for sub-request
2022-12-31 13:14:23 +01:00
crypto_engine.c
crypto: engine - fix crypto_queue backlog handling
2023-05-17 11:50:20 +02:00
crypto_null.c
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2019-07-08 20:57:08 -07:00
crypto_user_base.c
crypto: algapi - make unregistration functions return void
2019-12-20 14:58:35 +08:00
crypto_user_stat.c
crypto: skcipher - remove the "blkcipher" algorithm type
2019-11-01 13:38:32 +08:00
ctr.c
crypto: remove cipher routines from public crypto API
2021-01-03 08:41:35 +11:00
cts.c
crypto: algapi - use common mechanism for inheriting flags
2020-07-16 21:49:08 +10:00
curve25519-generic.c
crypto: curve25519 - implement generic KPP driver
2019-11-17 09:02:43 +08:00
deflate.c
mm, treewide: rename kzfree() to kfree_sensitive()
2020-08-07 11:33:22 -07:00
des_generic.c
crypto: remove CRYPTO_TFM_RES_WEAK_KEY
2020-01-09 11:30:53 +08:00
dh_helper.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152
2019-05-30 11:26:32 -07:00
dh.c
crypto: dh - SP800-56A rev 3 local public key validation
2020-07-31 18:08:59 +10:00
drbg.c
crypto: drbg - Only fail when jent is unavailable in FIPS mode
2023-05-11 23:00:27 +09:00
ecb.c
crypto: remove cipher routines from public crypto API
2021-01-03 08:41:35 +11:00
ecc_curve_defs.h
Merge branch 'ecc'
2021-03-26 19:55:55 +11:00
ecc.c
crypto: ecc - Correct an error in the comments
2021-03-26 20:15:56 +11:00
ecc.h
crypto: ecc - handle unaligned input buffer in ecc_swap_digits
2021-07-30 10:58:36 +08:00
ecdh_helper.c
crypto: ecdh - move curve_id of ECDH from the key to algorithm name
2021-03-13 00:04:03 +11:00
ecdh.c
crypto: ecdh - register NIST P384 tfm
2021-05-28 15:11:47 +08:00
ecdsa.c
crypto: ecdsa - Register NIST P384 and extend test suite
2021-03-26 19:41:58 +11:00
ecdsasignature.asn1
crypto: ecdsa - Add support for ECDSA signature verification
2021-03-26 19:41:58 +11:00
echainiv.c
crypto: geniv - remove unneeded arguments from aead_geniv_alloc()
2020-07-16 21:49:07 +10:00
ecrdsa_defs.h
crypto: ecrdsa - add EC-RDSA (GOST 34.10) algorithm
2019-04-18 22:15:02 +08:00
ecrdsa_params.asn1
crypto: ecrdsa - add EC-RDSA (GOST 34.10) algorithm
2019-04-18 22:15:02 +08:00
ecrdsa_pub_key.asn1
crypto: ecrdsa - add EC-RDSA (GOST 34.10) algorithm
2019-04-18 22:15:02 +08:00
ecrdsa.c
crypto: ecrdsa - Fix incorrect use of vli_cmp
2022-06-06 08:43:39 +02:00
essiv.c
crypto: essiv - Handle EBUSY correctly
2023-03-10 09:39:11 +01:00
fcrypt.c
crypto: fcrypt - Remove 'do while(0)' loop for single statement macro
2021-04-02 18:28:13 +11:00
fips.c
crypto: fips - add FIPS test failure notification chain
2019-07-26 14:51:57 +10:00
gcm.c
mm, treewide: rename kzfree() to kfree_sensitive()
2020-08-07 11:33:22 -07:00
geniv.c
crypto: algapi - use common mechanism for inheriting flags
2020-07-16 21:49:08 +10:00
gf128mul.c
mm, treewide: rename kzfree() to kfree_sensitive()
2020-08-07 11:33:22 -07:00
ghash-generic.c
crypto: remove CRYPTO_TFM_RES_BAD_KEY_LEN
2020-01-09 11:30:53 +08:00
hash_info.c
crypto: rename sm3-256 to sm3 in hash_algo_name
2020-02-18 07:35:49 -05:00
hmac.c
crypto: algapi - use common mechanism for inheriting flags
2020-07-16 21:49:08 +10:00
internal.h
crypto: api - Move crypto attr definitions out of crypto.h
2021-06-24 14:51:35 +08:00
jitterentropy-kcapi.c
crypto: algapi - Remove skbuff.h inclusion
2020-08-20 14:04:28 +10:00
jitterentropy.c
crypto: jitter - consider 32 LSB for APT
2022-01-27 11:04:31 +01:00
jitterentropy.h
crypto: jitter - add header to fix buildwarnings
2019-10-18 18:49:40 +11:00
Kconfig
crypto: blake2s - remove shash module
2022-08-17 14:24:19 +02:00
keywrap.c
crypto: keywrap - Remove else after break statement
2021-04-02 18:28:13 +11:00
khazad.c
crypto: khazad,wp512 - remove leading spaces before tabs
2021-05-28 15:11:44 +08:00
kpp.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152
2019-05-30 11:26:32 -07:00
lrw.c
crypto: Replace HTTP links with HTTPS ones
2020-07-23 17:34:20 +10:00
lz4.c
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2019-07-08 20:57:08 -07:00
lz4hc.c
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2019-07-08 20:57:08 -07:00
lzo-rle.c
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2019-07-08 20:57:08 -07:00
lzo.c
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2019-07-08 20:57:08 -07:00
Makefile
crypto: blake2s - remove shash module
2022-08-17 14:24:19 +02:00
md4.c
crypto: make all generic algorithms set cra_driver_name
2019-06-13 14:31:39 +08:00
md5.c
crypto: md5 - remove unused macros
2020-02-28 08:43:21 +08:00
michael_mic.c
crypto: michael_mic - fix broken misalignment handling
2021-02-10 17:55:55 +11:00
nhpoly1305.c
crypto: poly1305 - add new 32 and 64-bit generic versions
2020-01-16 15:18:12 +08:00
ofb.c
crypto: remove cipher routines from public crypto API
2021-01-03 08:41:35 +11:00
pcbc.c
crypto: remove cipher routines from public crypto API
2021-01-03 08:41:35 +11:00
pcrypt.c
crypto: pcrypt - Delay write to padata->info
2021-11-18 19:16:44 +01:00
poly1305_generic.c
crypto: poly1305 - add new 32 and 64-bit generic versions
2020-01-16 15:18:12 +08:00
proc.c
crypto: proc - Removing some useless only space lines
2020-09-25 17:48:15 +10:00
ripemd.h
crypto: rmd320 - remove RIPE-MD 320 hash algorithm
2021-01-29 16:07:04 +11:00
rmd160.c
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2019-07-08 20:57:08 -07:00
rng.c
crypto: rng - fix crypto_rng_reset() refcounting when !CRYPTO_STATS
2021-04-02 18:28:12 +11:00
rsa_helper.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152
2019-05-30 11:26:32 -07:00
rsa-pkcs1pad.c
crypto: rsa-pkcs1pad - Use helper to set reqsize
2023-09-19 12:22:30 +02:00
rsa.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 36
2019-05-24 17:27:11 +02:00
rsaprivkey.asn1
rsapubkey.asn1
scatterwalk.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152
2019-05-30 11:26:32 -07:00
scompress.c
crypto: algapi - make unregistration functions return void
2019-12-20 14:58:35 +08:00
seed.c
crypto: seed - remove trailing semicolon in macro definition
2020-12-04 18:13:16 +11:00
seqiv.c
crypto: seqiv - Handle EBUSY correctly
2023-03-10 09:39:11 +01:00
serpent_generic.c
crypto: serpent - Fix sparse byte order warnings
2021-03-07 15:13:15 +11:00
sha1_generic.c
crypto: sha - split sha.h into sha1.h and sha2.h
2020-11-20 14:45:33 +11:00
sha3_generic.c
crypto: Replace HTTP links with HTTPS ones
2020-07-23 17:34:20 +10:00
sha256_generic.c
crypto: sha - split sha.h into sha1.h and sha2.h
2020-11-20 14:45:33 +11:00
sha512_generic.c
crypto: sha512 - remove imaginary and mystifying clearing of variables
2021-08-27 16:30:19 +08:00
shash.c
crypto: shash - avoid comparing pointers to exported functions under CFI
2021-06-17 15:07:31 +08:00
simd.c
crypto: algapi - use common mechanism for inheriting flags
2020-07-16 21:49:08 +10:00
skcipher.c
crypto: skcipher - in_irq() cleanup
2021-08-21 15:44:58 +08:00
sm2.c
crypto: sm2 - fix a memory leak in sm2
2021-06-11 15:03:30 +08:00
sm2signature.asn1
crypto: sm2 - introduce OSCCA SM2 asymmetric cipher algorithm
2020-09-25 17:48:54 +10:00
sm3_generic.c
crypto: sm3 - export crypto_sm3_final function
2020-09-25 17:48:53 +10:00
sm4_generic.c
crypto: arm64/sm4-ce - Make dependent on sm4 library instead of sm4-generic
2021-07-30 10:58:30 +08:00
streebog_generic.c
crypto: streebog - remove two unused variables
2019-08-15 21:52:14 +10:00
tcrypt.c
crypto: tcrypt - Fix multibuffer skcipher speed test mem leak
2022-12-31 13:14:24 +01:00
tcrypt.h
crypto: tcrypt - Add support for hash speed testing with keys
2020-08-21 14:45:27 +10:00
tea.c
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2019-07-08 20:57:08 -07:00
testmgr.c
crypto: blake2s - remove shash module
2022-08-17 14:24:19 +02:00
testmgr.h
crypto: blake2s - remove shash module
2022-08-17 14:24:19 +02:00
twofish_common.c
crypto: remove CRYPTO_TFM_RES_BAD_KEY_LEN
2020-01-09 11:30:53 +08:00
twofish_generic.c
crypto: twofish - use unaligned accessors instead of alignmask
2021-02-10 17:55:57 +11:00
vmac.c
crypto: remove cipher routines from public crypto API
2021-01-03 08:41:35 +11:00
wp512.c
crypto: wp512 - correct a non-kernel-doc comment
2021-08-12 19:32:17 +08:00
xcbc.c
crypto: remove cipher routines from public crypto API
2021-01-03 08:41:35 +11:00
xor.c
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2021-02-21 17:23:56 -08:00
xts.c
crypto: xts - Handle EBUSY correctly
2023-03-10 09:39:13 +01:00
xxhash_generic.c
crypto: remove CRYPTO_TFM_RES_BAD_KEY_LEN
2020-01-09 11:30:53 +08:00
zstd.c
mm, treewide: rename kzfree() to kfree_sensitive()
2020-08-07 11:33:22 -07:00