Página inicial Explorar Ajuda
Entrar
PUBLIC_REPOS
/
buildroot
mirror de git://git.buildroot.net/buildroot
2
1
Fork 0
Arquivos
Tree: 957ff8fa25
Branches Tags
buildroot
/
package
/
cryptsetup
/
0006-Simplify-validation-code-a-bit.patch

0006-Simplify-validation-code-a-bit.patch 2.3 KB
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 
  1. From 45de1eb6e3d31ac3ece6b02671ddcc9dfab06e76 Mon Sep 17 00:00:00 2001
    2. 

  2. From: Ondrej Kozina <okozina@redhat.com>
    3. 

  3. Date: Tue, 25 Aug 2020 19:23:21 +0200
    4. 

  4. Subject: [PATCH 6/6] Simplify validation code a bit.
    5. 

  5. 

  6. Keep it simple. If there's not enough memory we can't validate
    7. 

  7. segments. The LUKS2 specification does not recommend to continue
    8. 

  8. processing LUKS2 metadata if it can not be properly validated.
    9. 

  9. 

  10. (cherry picked from commit 752c9a52798f11d3b765b673ebaa3058eb25316e)
    11. 

  11. Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
    12. 

  12. ---
    13. 

  13.  lib/luks2/luks2_json_metadata.c | 19 ++++++++-----------
    14. 

  14.  1 file changed, 8 insertions(+), 11 deletions(-)
    15. 

  15. 

  16. diff --git a/lib/luks2/luks2_json_metadata.c b/lib/luks2/luks2_json_metadata.c
    17. 

  17. index cd28400c..66ee0b91 100644
    18. 

  18. --- a/lib/luks2/luks2_json_metadata.c
    19. 

  19. +++ b/lib/luks2/luks2_json_metadata.c
    20. 

  20. @@ -594,9 +594,9 @@ static bool validate_segment_intervals(struct crypt_device *cd,
    21. 

  21.  static int hdr_validate_segments(struct crypt_device *cd, json_object *hdr_jobj)
    22. 

  22.  {
    23. 

  23.  	json_object *jobj_segments, *jobj_digests, *jobj_offset, *jobj_size, *jobj_type, *jobj_flags, *jobj;
    24. 

  24. -	struct interval *intervals;
    25. 

  25.  	uint64_t offset, size;
    26. 

  26.  	int i, r, count, first_backup = -1;
    27. 

  27. +	struct interval *intervals = NULL;
    28. 

  28.  
    29. 

  29.  	if (!json_object_object_get_ex(hdr_jobj, "segments", &jobj_segments)) {
    30. 

  30.  		log_dbg(cd, "Missing segments section.");
    31. 

  31. @@ -687,8 +687,11 @@ static int hdr_validate_segments(struct crypt_device *cd, json_object *hdr_jobj)
    32. 

  32.  
    33. 

  33.  	if ((size_t)first_backup < SIZE_MAX / sizeof(*intervals))
    34. 

  34.  		intervals = malloc(first_backup * sizeof(*intervals));
    35. 

  35. -	else
    36. 

  36. -		intervals = NULL;
    37. 

  37. +
    38. 

  38. +	if (!intervals) {
    39. 

  39. +		log_dbg(cd, "Not enough memory.");
    40. 

  40. +		return 1;
    41. 

  41. +	}
    42. 

  42.  
    43. 

  43.  	for (i = 0; i < first_backup; i++) {
    44. 

  44.  		jobj = json_segments_get_segment(jobj_segments, i);
    45. 

  45. @@ -697,14 +700,8 @@ static int hdr_validate_segments(struct crypt_device *cd, json_object *hdr_jobj)
    46. 

  46.  			free(intervals);
    47. 

  47.  			return 1;
    48. 

  48.  		}
    49. 

  49. -		if (intervals != NULL) {
    50. 

  50. -			intervals[i].offset = json_segment_get_offset(jobj, 0);
    51. 

  51. -			intervals[i].length = json_segment_get_size(jobj, 0) ?: UINT64_MAX;
    52. 

  52. -		}
    53. 

  53. -	}
    54. 

  54. -	if (intervals == NULL) {
    55. 

  55. -		log_dbg(cd, "Not enough memory.");
    56. 

  56. -		return 1;
    57. 

  57. +		intervals[i].offset = json_segment_get_offset(jobj, 0);
    58. 

  58. +		intervals[i].length = json_segment_get_size(jobj, 0) ?: UINT64_MAX;
    59. 

  59.  	}
    60. 

  60.  
    61. 

  61.  	r = !validate_segment_intervals(cd, first_backup, intervals);
    62. 

  62. -- 
    63. 

  63. 2.20.1
    64. 

  64.