git.proxmox.com Git - mirror_ubuntu-bionic-kernel.git/commit

author	Gary R Hook <gary.hook@amd.com>
	Tue, 30 Jul 2019 16:05:26 +0000 (16:05 +0000)
committer	Kleber Sacilotto de Souza <kleber.souza@canonical.com>
	Tue, 17 Sep 2019 16:02:18 +0000 (18:02 +0200)
commit	b92747aba2c106db4a48c197e102a63d5ae5f337
tree	54648191767b98236a3527c9a297f9ce8df01086	tree
parent	8f67c9be5512391766bf959c9e56cb8be627a4e8	commit \| diff

crypto: ccp - Ignore tag length when decrypting GCM ciphertext

BugLink: https://bugs.launchpad.net/bugs/1840520
commit e2664ecbb2f26225ac6646876f2899558ffb2604 upstream.

AES GCM input buffers for decryption contain AAD+CTEXT+TAG. Only
decrypt the ciphertext, and use the tag for comparison.

Fixes: 36cf515b9bbe2 ("crypto: ccp - Enable support for AES GCM on v5 CCPs")
Cc: <stable@vger.kernel.org>
Signed-off-by: Gary R Hook <gary.hook@amd.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Kamal Mostafa <kamal@canonical.com>
Signed-off-by: Kleber Sacilotto de Souza <kleber.souza@canonical.com>