Re: [V2][PATCH 1/2] PKCS#7: Fix kernel panic when referring to the empty AuthorityKeyIdentifier

On 07/15/2016 10:48 PM, David Howells wrote: Lans Zhang wrote: This fix resolves the following kernel panic if the empty AuthorityKeyIdentifier employed. It should be noted that this is only an issue if DEBUG is #defined at the top of pkcs7_verify.c as the crash

Re: [RFC PATCH] KEYS: add SP800-56A KDF support for DH

Stephan, On Fri, 15 Jul 2016, Stephan Mueller wrote: Am Donnerstag, 14. Juli 2016, 17:45:59 schrieb Mat Martineau: Hi Mat, Signed-off-by: Stephan Mueller --- include/uapi/linux/keyctl.h | 10 + security/keys/Kconfig | 1 + security/keys/dh.c | 98

Re: [RFC PATCH] KEYS: add SP800-56A KDF support for DH

Am Donnerstag, 14. Juli 2016, 17:45:59 schrieb Mat Martineau: Hi Mat, > > Signed-off-by: Stephan Mueller > > --- > > include/uapi/linux/keyctl.h | 10 + > > security/keys/Kconfig | 1 + > > security/keys/dh.c | 98 > >

Re: [V2][PATCH 1/2] PKCS#7: Fix kernel panic when referring to the empty AuthorityKeyIdentifier

Lans Zhang wrote: > This fix resolves the following kernel panic if the empty > AuthorityKeyIdentifier employed. It should be noted that this is only an issue if DEBUG is #defined at the top of pkcs7_verify.c as the crash happens in a pr_debug() statement. David -- To

[patch] crypto: nx - off by one bug in nx_of_update_msc()

The props->ap[] array is defined like this: struct alg_props ap[NX_MAX_FC][NX_MAX_MODE][3]; So we can see that if msc->fc and msc->mode are == to NX_MAX_FC or NX_MAX_MODE then we're off by one. Fixes: ae0222b7289d ('powerpc/crypto: nx driver code supporting nx encryption')