crypto: aead - add check for presence of auth tag

The AEAD decryption operation requires the authentication tag to be present as part of the cipher text buffer. The added check verifies that the caller provides a cipher text with at least the authentication tag. Signed-off-by: Stephan Mueller <smueller@chronox.de> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
author: Stephan Mueller <smueller@chronox.de> 2015-01-05 12:21:45 +0100
committer: Herbert Xu <herbert@gondor.apana.org.au> 2015-01-08 21:46:18 +1100
commit: 15acabfd02e35e270360fbe0def898e48754b3d6 (patch)
tree: 7d510d2073d5504d17bed2b9038057f16bf2f97b /include/linux/crypto.h
parent: 42d2e780c6239040ec29d404f87e752de3627e08 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/include/linux/crypto.h b/include/linux/crypto.h
index 9c8776d0ada8..90998348e564 100644
--- a/include/linux/crypto.h
+++ b/include/linux/crypto.h
@@ -1412,6 +1412,9 @@ static inline int crypto_aead_encrypt(struct aead_request *req)
  */
 static inline int crypto_aead_decrypt(struct aead_request *req)
 {
+	if (req->cryptlen < crypto_aead_authsize(crypto_aead_reqtfm(req)))
+		return -EINVAL;
+
 	return crypto_aead_crt(crypto_aead_reqtfm(req))->decrypt(req);
 }
author	Stephan Mueller <smueller@chronox.de>	2015-01-05 12:21:45 +0100
committer	Herbert Xu <herbert@gondor.apana.org.au>	2015-01-08 21:46:18 +1100
commit	15acabfd02e35e270360fbe0def898e48754b3d6 (patch)
tree	7d510d2073d5504d17bed2b9038057f16bf2f97b /include/linux/crypto.h
parent	42d2e780c6239040ec29d404f87e752de3627e08 (diff)