* [PATCH] crypto/cnxk: fix out-of-bounds access
@ 2025-05-15 8:05 Gowrishankar Muthukrishnan
0 siblings, 0 replies; only message in thread
From: Gowrishankar Muthukrishnan @ 2025-05-15 8:05 UTC (permalink / raw)
To: dev, Ankur Dwivedi, Anoob Joseph, Tejasree Kondoj,
Gowrishankar Muthukrishnan
Cc: Akhil Goyal, stable
Fix coverity issue on out-of-bounds access.
Coverity-issue: 403166, 403171, 403172
Fixes: 5686b573e4b ("crypto/cnxk: support SM2")
Cc: stable@dpdk.org
Signed-off-by: Gowrishankar Muthukrishnan <gmuthukrishn@marvell.com>
---
drivers/crypto/cnxk/cnxk_ae.h | 9 +++++++++
1 file changed, 9 insertions(+)
diff --git a/drivers/crypto/cnxk/cnxk_ae.h b/drivers/crypto/cnxk/cnxk_ae.h
index cd66f66e70..75d6a536ae 100644
--- a/drivers/crypto/cnxk/cnxk_ae.h
+++ b/drivers/crypto/cnxk/cnxk_ae.h
@@ -1090,6 +1090,9 @@ cnxk_ae_sm2_sign_prep(struct rte_crypto_sm2_op_param *sm2,
if (order_len > ROC_AE_EC_DATA_MAX)
order_len = ROC_AE_EC_DATA_MAX;
+ if (pkey_len > ROC_AE_EC_DATA_MAX)
+ pkey_len = ROC_AE_EC_DATA_MAX;
+
/* Truncate input length to curve prime length */
if (message_len > prime_len)
message_len = prime_len;
@@ -1181,6 +1184,12 @@ cnxk_ae_sm2_verify_prep(struct rte_crypto_sm2_op_param *sm2,
if (order_len > ROC_AE_EC_DATA_MAX)
order_len = ROC_AE_EC_DATA_MAX;
+ if (qx_len > ROC_AE_EC_DATA_MAX)
+ qx_len = ROC_AE_EC_DATA_MAX;
+
+ if (qy_len > ROC_AE_EC_DATA_MAX)
+ qy_len = ROC_AE_EC_DATA_MAX;
+
/* Truncate input length to curve prime length */
if (message_len > prime_len)
message_len = prime_len;
--
2.25.1
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2025-05-15 8:05 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2025-05-15 8:05 [PATCH] crypto/cnxk: fix out-of-bounds access Gowrishankar Muthukrishnan
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).