Received: by 2002:ac0:a594:0:0:0:0:0 with SMTP id m20-v6csp1238708imm; Fri, 11 May 2018 13:12:23 -0700 (PDT) X-Google-Smtp-Source: AB8JxZoJFtTFIuFrB91sNyRDfiu77/ogVrpuMejn8wBy3HnyEzDmfaiMJ11OEPWMufY3yOHBLSxu X-Received: by 2002:a65:5002:: with SMTP id f2-v6mr379835pgo.232.1526069543829; Fri, 11 May 2018 13:12:23 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1526069543; cv=none; d=google.com; s=arc-20160816; b=VSTBgsNINjD3h0sRIpuDZsgjXi82mayqyfYK9B5QtTiwnPEkdHwsxWU7C203G7PBwh Obdq64/0+71hHe/OeOVrCnNWnx6ERM+RqyrJ15Af5e2IOpC0jC4EoJGeTvc6bA+GWek0 Tmr6IEs0U66t/p4mNKlJ92/0yGhFopgsruCe7gRodDxAOL3cvinqhkHZiFyTM9dk9V4s RNTagav+svDsGVejR3GWVw6A6hmdtaLazUj7CoYfAGdNTSajA6TFTdmupR4H3IwYWmyb fKK2X0/2gNEdghTvKUn+lNdGWtWEqn+hdhJbo2EytD8Dw4o3vzq3om5wTg6Yjk7iZFlH wCxg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:mime-version:user-agent:references :message-id:in-reply-to:subject:cc:to:from:date :arc-authentication-results; bh=+qcVdTagyaBioevPGraI7arLS02gZR6gBcyEollz2Lo=; b=RH0EEw2ecEXFkPLoRHw5j/8PjprCmZ7IoSj9L4Zw9rqUpIOpibKwpaGvo3jY87UH9F y4Cti1YDN2w5jjy7jAOJdIMrLZmzI+N83k06b8L30KZ1NtJOoYYr9ALuLpZ4bCPEOQ4Q 6bm8/5L6y9Y15IDJUhB8rtSRHEtEns+BQ9GKgF77zG9jMpvoXrcnmWPbq9bw5DSm6M10 VLNu3GXQqom72c5+b8A3GdiYiGYsPHE+/hKcTvjVNuehydZGcdbqR1VAt6PEE4Zhe4Fa rkxwFDBliWJJi2io7M2kXqCkIiZ72XSgTmAvwiK9JcFlG7oah9ZiJ7NZOiT7zZL35Smk mSmQ== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id r14-v6si3856078pfa.296.2018.05.11.13.12.09; Fri, 11 May 2018 13:12:23 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1752002AbeEKUKO (ORCPT + 99 others); Fri, 11 May 2018 16:10:14 -0400 Received: from namei.org ([65.99.196.166]:60330 "EHLO namei.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1750876AbeEKUKM (ORCPT ); Fri, 11 May 2018 16:10:12 -0400 Received: from localhost (localhost [127.0.0.1]) by namei.org (8.14.4/8.14.4) with ESMTP id w4BK9nE5007083; Fri, 11 May 2018 20:09:49 GMT Date: Sat, 12 May 2018 06:09:49 +1000 (AEST) From: James Morris To: Tycho Andersen cc: David Howells , keyrings@vger.kernel.org, linux-security-module@vger.kernel.org, linux-kernel@vger.kernel.org, kernel-hardening@lists.openwall.com, "Serge E. Hallyn" , "Jason A . Donenfeld" , Eric Biggers Subject: Re: [PATCH v3 1/3] big key: get rid of stack array allocation In-Reply-To: <20180424202639.19830-1-tycho@tycho.ws> Message-ID: References: <20180424202639.19830-1-tycho@tycho.ws> User-Agent: Alpine 2.21 (LRH 202 2017-01-01) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Tue, 24 Apr 2018, Tycho Andersen wrote: > We're interested in getting rid of all of the stack allocated arrays in the > kernel [1]. This patch simply hardcodes the iv length to match that of the > hardcoded cipher. > > [1]: https://lkml.org/lkml/2018/3/7/621 > > v2: hardcode the length of the nonce to be the GCM AES IV length, and do a > sanity check in init(), Eric Biggers > v3: * remember to free big_key_aead when sanity check fails > * define a constant for big key IV size so it can be changed along side > the algorithm in the code All applied to git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security.git next-general and next-testing Thanks! -- James Morris