Received: by 2002:ac0:a581:0:0:0:0:0 with SMTP id m1-v6csp1469411imm;
        Wed, 20 Jun 2018 19:32:28 -0700 (PDT)
X-Google-Smtp-Source: ADUXVKKF/117LlWtDxo8fwBizOsHN4B3697dYxYK9q+G898jMmxuaMd1fB6kmu6wBuR2clUekbfg
X-Received: by 2002:a17:902:6b05:: with SMTP id o5-v6mr4465781plk.67.1529548348685;
        Wed, 20 Jun 2018 19:32:28 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1529548348; cv=none;
        d=google.com; s=arc-20160816;
        b=nNnXz6Obewf90Xr/p+OXOl3KorRXndyXIWHJaOxsGYAi9iMVP422A6YFPpR3HvB0xm
         3RInqWPgVjk3fdRkB/RNn2x8U7Gd3R50wKS7AXLkezJ87bJnNwopqRTAlPuuCUksmUVy
         oXxvbidVjNLMm2MMQuHnZXFKRNvLkTFNGgZjN0Q9a1OS3aqKasp1Pd5QhbODjYmeHh0U
         mudlXFeb7jh3UbK9Q7L3zMxVxD3c1SU9Lp6xd4seOd4u8VNp0t8fdlSl2u8eLMG/h74z
         D9/b0D2h+CMmdBwkxYBRPn2JYd5SeKcRRNkYR3/qcOBvCji+9zt1kbQU5GmUzfR05OPV
         Xpow==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:user-agent:in-reply-to
         :content-disposition:mime-version:references:message-id:subject:cc
         :to:from:date:arc-authentication-results;
        bh=B3xoImWxBLpahKQ2HIhM9nuD6zTVt4Gt4Wod0ah4rpA=;
        b=ZCLqh2MDENnBdFqYmq5KiJPuQPoHdzRoOt/Icl6o/idd2xXa7GmCOGhI9QSzjaf2I1
         iqiwfL09Hjw6X0zj0VcRL1IPLfFfAldC1Sr1hm9nxLBjOvhpgzr0EDDC8Sgc7YTh1rlT
         fY5Vbw0Waov77vCXVyEzm1w3aHHMiCnEx0D1fQkhYjmuFr9pH3HaXYu1a4fuv0nOywAM
         IxHh6SGkDgi5lhovlvNEFUkL5vqI16GEjGV7FqfmFT7E+SoQmqsQ3HUd7sCSdEDUmXE3
         CsmOzEdRfVOmwlltpzsWnKOFV9wjq/tNw6cOSs87+eKNQyhM2KVr0olqsd8Q4N97i8as
         szZQ==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id m9-v6si3105084pgr.148.2018.06.20.19.32.11;
        Wed, 20 Jun 2018 19:32:28 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1754290AbeFUCbd (ORCPT <rfc822;huangleihappily@gmail.com>
        + 99 others); Wed, 20 Jun 2018 22:31:33 -0400
Received: from orcrist.hmeau.com ([104.223.48.154]:36886 "EHLO
        deadmen.hmeau.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1754137AbeFUCbb (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 20 Jun 2018 22:31:31 -0400
Received: from gondobar.mordor.me.apana.org.au ([192.168.128.4] helo=gondobar)
        by deadmen.hmeau.com with esmtps (Exim 4.89 #2 (Debian))
        id 1fVpNL-0001l3-25; Thu, 21 Jun 2018 10:31:07 +0800
Received: from herbert by gondobar with local (Exim 4.89)
        (envelope-from <herbert@gondor.apana.org.au>)
        id 1fVpN8-0001Rb-Ay; Thu, 21 Jun 2018 10:30:54 +0800
Date:   Thu, 21 Jun 2018 10:30:54 +0800
From:   Herbert Xu <herbert@gondor.apana.org.au>
To:     Kees Cook <keescook@chromium.org>
Cc:     "Gustavo A. R. Silva" <gustavo@embeddedor.com>,
        Alasdair Kergon <agk@redhat.com>,
        Arnd Bergmann <arnd@arndb.de>,
        Eric Biggers <ebiggers@google.com>,
        Giovanni Cabiddu <giovanni.cabiddu@intel.com>,
        Lars Persson <larper@axis.com>,
        Mike Snitzer <snitzer@redhat.com>,
        Rabin Vincent <rabinv@axis.com>,
        Tim Chen <tim.c.chen@linux.intel.com>,
        "David S. Miller" <davem@davemloft.net>,
        linux-crypto@vger.kernel.org, qat-linux@intel.com,
        dm-devel@redhat.com, linux-kernel@vger.kernel.org
Subject: Re: [PATCH 04/11] dm verity fec: Remove VLA usage
Message-ID: <20180621023054.5jx5s3jzap3soe6e@gondor.apana.org.au>
References: <20180620190408.45104-1-keescook@chromium.org>
 <20180620190408.45104-5-keescook@chromium.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20180620190408.45104-5-keescook@chromium.org>
User-Agent: NeoMutt/20170113 (1.7.2)
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Wed, Jun 20, 2018 at 12:04:01PM -0700, Kees Cook wrote:
> In the quest to remove all stack VLA usage from the kernel[1], this
> uses the newly defined max digest size macro. Also adds a sanity-check
> at use-time.
> 
> [1] https://lkml.kernel.org/r/CA+55aFzCG-zNmZwX4A2FQpadafLfEzK6CC=qPXydAacU1RqZWA@mail.gmail.com
> 
> Signed-off-by: Kees Cook <keescook@chromium.org>
> ---
>  drivers/md/dm-verity-fec.c | 5 ++++-
>  1 file changed, 4 insertions(+), 1 deletion(-)
> 
> diff --git a/drivers/md/dm-verity-fec.c b/drivers/md/dm-verity-fec.c
> index 684af08d0747..0dfcc52835bc 100644
> --- a/drivers/md/dm-verity-fec.c
> +++ b/drivers/md/dm-verity-fec.c
> @@ -212,12 +212,15 @@ static int fec_read_bufs(struct dm_verity *v, struct dm_verity_io *io,
>  	struct dm_verity_fec_io *fio = fec_io(io);
>  	u64 block, ileaved;
>  	u8 *bbuf, *rs_block;
> -	u8 want_digest[v->digest_size];
> +	u8 want_digest[AHASH_MAX_DIGESTSIZE];
>  	unsigned n, k;
>  
>  	if (neras)
>  		*neras = 0;
>  
> +	if (WARN_ON(v->digest_size < sizeof(want_digest)))
> +		return -EINVAL;

How about verifying digest_size in the ahash API when algorithms
are registered?

Cheers,
-- 
Email: Herbert Xu <herbert@gondor.apana.org.au>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt