Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 34e32863 authored by Zhen Kong's avatar Zhen Kong
Browse files

qcrypto: protect potential integer overflow. 



Adding user passed parameters without check might
lead to Integer overflow and unpredictable system
behaviour.

Change-Id: Iaf8259e3c4a157e1790f1447b1b62a646988b7c4
Signed-off-by: default avatarNeeraj Soni <neersoni@codeaurora.org>
Signed-off-by: default avatarZhen Kong <zkong@codeaurora.org>
parent 314869eb

drivers/crypto/msm/qce50.c

+5 −0
Original line number Diff line number Diff line
@@ -4967,6 +4967,11 @@ int qce_aead_req(void *handle, struct qce_req *q_req) 
	else

		q_req->cryptlen = areq->cryptlen - authsize;



	if (q_req->cryptlen > UINT_MAX - areq->assoclen) {

		pr_err("Integer overflow on total aead req length.\n");

		return -EINVAL;

	}



	totallen = q_req->cryptlen + areq->assoclen;



	if (pce_dev->support_cmd_dscr) {