Merge branch 'master' into sh/cachetlb

author: Paul Mundt <lethal@linux-sh.org> 2009-08-15 05:58:45 +0900
committer: Paul Mundt <lethal@linux-sh.org> 2009-08-15 05:58:45 +0900
commit: d2dcd9101b1a940ce8496601ba871e47f84881ec (patch)
tree: 3de9cb11379d51eb01b568a20c8d7c585c89d10e /fs/ecryptfs/keystore.c
parent: 8010fbe7a67c2f993cbb11b9d8b7e98528256dd1 (diff)
parent: 606b4c992f3b28f906100f1b6eb49059909d8da7 (diff)
1 files changed, 13 insertions, 0 deletions
diff --git a/fs/ecryptfs/keystore.c b/fs/ecryptfs/keystore.c
index af737bb56cb..259525c9abb 100644
--- a/fs/ecryptfs/keystore.c
+++ b/fs/ecryptfs/keystore.c
@@ -1303,6 +1303,13 @@ parse_tag_3_packet(struct ecryptfs_crypt_stat *crypt_stat,
 	}
 	(*new_auth_tok)->session_key.encrypted_key_size =
 		(body_size - (ECRYPTFS_SALT_SIZE + 5));
+	if ((*new_auth_tok)->session_key.encrypted_key_size
+	    > ECRYPTFS_MAX_ENCRYPTED_KEY_BYTES) {
+		printk(KERN_WARNING "Tag 3 packet contains key larger "
+		       "than ECRYPTFS_MAX_ENCRYPTED_KEY_BYTES\n");
+		rc = -EINVAL;
+		goto out_free;
+	}
 	if (unlikely(data[(*packet_size)++] != 0x04)) {
 		printk(KERN_WARNING "Unknown version number [%d]\n",
 		       data[(*packet_size) - 1]);
@@ -1449,6 +1456,12 @@ parse_tag_11_packet(unsigned char *data, unsigned char *contents,
 		rc = -EINVAL;
 		goto out;
 	}
+	if (unlikely((*tag_11_contents_size) > max_contents_bytes)) {
+		printk(KERN_ERR "Literal data section in tag 11 packet exceeds "
+		       "expected size\n");
+		rc = -EINVAL;
+		goto out;
+	}
 	if (data[(*packet_size)++] != 0x62) {
 		printk(KERN_WARNING "Unrecognizable packet\n");
 		rc = -EINVAL;
author	Paul Mundt <lethal@linux-sh.org>	2009-08-15 05:58:45 +0900
committer	Paul Mundt <lethal@linux-sh.org>	2009-08-15 05:58:45 +0900
commit	d2dcd9101b1a940ce8496601ba871e47f84881ec (patch)
tree	3de9cb11379d51eb01b568a20c8d7c585c89d10e /fs/ecryptfs/keystore.c
parent	8010fbe7a67c2f993cbb11b9d8b7e98528256dd1 (diff)
parent	606b4c992f3b28f906100f1b6eb49059909d8da7 (diff)