Andrew Lukoshko
b3393f484c
Drop the 211.7.x security-ahead patches superseded by the RHEL 211.8.1..211.16.1 backports (1100-1104), add those backports (1106-1161) from centos-stream-10 and upstream linux-6.12.y. Keep the smb cifs.spnego ahead-fix (1105). Bump to 211.16.1.
46 lines
1.5 KiB
Diff
46 lines
1.5 KiB
Diff
From dadc0c1bbccad48022e400debc3341597a0f2cf5 Mon Sep 17 00:00:00 2001
|
|
From: Herbert Xu <herbert.xu@redhat.com>
|
|
Date: Thu, 30 Apr 2026 19:56:24 +0800
|
|
Subject: [PATCH] crypto: authencesn - Fix src offset when decrypting in-place
|
|
|
|
JIRA: https://redhat.atlassian.net/browse/RHEL-172216
|
|
|
|
Upstream Status: 1f48ad3b19a9dfc947868edda0bb8e48e5b5a8fa
|
|
|
|
commit 1f48ad3b19a9dfc947868edda0bb8e48e5b5a8fa
|
|
Author: Herbert Xu <herbert@gondor.apana.org.au>
|
|
Date: Wed Apr 15 07:39:06 2026 +0800
|
|
|
|
crypto: authencesn - Fix src offset when decrypting in-place
|
|
|
|
The src SG list offset wasn't set properly when decrypting in-place,
|
|
fix it.
|
|
|
|
Reported-by: Wolfgang Walter <linux@stwm.de>
|
|
Fixes: e02494114ebf ("crypto: authencesn - Do not place hiseq at end of dst for out-of-place decryption")
|
|
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
|
|
|
|
Signed-off-by: Herbert Xu <herbert.xu@redhat.com>
|
|
|
|
diff --git a/crypto/authencesn.c b/crypto/authencesn.c
|
|
index b262e7e3f8d7..d96da934674e 100644
|
|
--- a/crypto/authencesn.c
|
|
+++ b/crypto/authencesn.c
|
|
@@ -259,9 +259,11 @@ static int crypto_authenc_esn_decrypt_tail(struct aead_request *req,
|
|
|
|
decrypt:
|
|
|
|
- if (src != dst)
|
|
- src = scatterwalk_ffwd(areq_ctx->src, src, assoclen);
|
|
dst = scatterwalk_ffwd(areq_ctx->dst, dst, assoclen);
|
|
+ if (req->src == req->dst)
|
|
+ src = dst;
|
|
+ else
|
|
+ src = scatterwalk_ffwd(areq_ctx->src, src, assoclen);
|
|
|
|
skcipher_request_set_tfm(skreq, ctx->enc);
|
|
skcipher_request_set_callback(skreq, flags,
|
|
--
|
|
2.50.1 (Apple Git-155)
|
|
|