upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-05-15 10:40:28 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
opnsense-src/sys
History
Mark Johnston 90ffac35b7 eli: Zero pad bytes that arise when certain auth algorithms are used 
When authentication is configured, GELI ensures that the amount of data
per sector is a multiple of 16 bytes.  This is done in
eli_metadata_softc().  When the digest size is not a multiple of 16
bytes, this leaves some extra pad bytes at the end of every sector, and
they were not being zeroed before being written to disk.  In particular,
this happens with the HMAC/SHA1, HMAC/RIPEMD160 and HMAC/SHA384 data
authentication algorithms.

This change ensures that they are zeroed before being written to disk.

Reported by:	KMSAN
Reviewed by:	delphij, asomers
Sponsored by:	The FreeBSD Foundation

(cherry picked from commit 0fcafe8516)
2021-07-29 08:12:22 -04:00
..
amd64 Do not call FreeBSD-ABI specific code for all ABIs 2021-07-22 01:11:52 +03:00
arm arm: dedup counter(9) address calculation 2021-07-25 07:00:14 +00:00
arm64 Assert that valid PTEs are not overwritten when installing a new PTP 2021-07-29 08:12:12 -04:00
bsm Add aio_writev and aio_readv 2021-01-02 19:57:58 -07:00
cam mmc_sim: Make XPT_MMC_GET_TRAN_SETTINGS fully async 2021-07-22 19:26:47 +02:00
cddl fbt: Remove some handling for multiple CTF containers 2021-04-15 21:27:24 -04:00
compat cloudabi and linux ABIs: do not call umtx_thread_cleanup() from thr_exit syscall 2021-07-22 01:11:52 +03:00
conf pf: fix LINT build 2021-07-27 09:45:23 +02:00
contrib ibcore: Declare ib_post_send() and ib_post_recv() arguments const 2021-07-26 18:04:32 +02:00
crypto armv8crypto: note derivation in armv8_crypto_wrap.c 2021-03-22 13:14:51 -03:00
ddb ddb: reliably fail with ambiguous commands 2021-07-02 14:13:24 -07:00
dev mmc: Drain the intrhook in mmc_detach() 2021-07-29 08:11:50 -04:00
dts arm: allwinner: dtb: Add overlays to disable SD/MMC node 2021-07-22 19:29:21 +02:00
fs nfsclient: Avoid copying uninitialized bytes into statfs 2021-07-29 08:11:16 -04:00
gdb gdb: report specific stop reason for watchpoints 2021-04-21 10:20:33 -03:00
geom eli: Zero pad bytes that arise when certain auth algorithms are used 2021-07-29 08:12:22 -04:00
gnu Remove the old dts imported tree. 2021-01-15 20:09:55 +01:00
i386 Assert that valid PTEs are not overwritten when installing a new PTP 2021-07-29 08:12:12 -04:00
isa Remove more remnants of sio(4) 2021-04-14 09:19:49 -04:00
kern blist: Correct the node count computed in blist_create() 2021-07-26 21:47:20 -04:00
kgssapi State kgssapi dependency on xdr. 2020-09-17 22:29:38 +00:00
libkern Remove incorrect __restricted labels from strcspn 2021-07-21 10:13:10 -06:00
mips Assert that valid PTEs are not overwritten when installing a new PTP 2021-07-29 08:12:12 -04:00
modules pf: syncookie support 2021-07-27 09:42:25 +02:00
net pf: clean up syncookie callout on vnet shutdown 2021-07-27 09:45:41 +02:00
net80211 net80211/LinuxKPI: add more radiotap definitions 2021-07-18 00:35:03 +00:00
netgraph Consistently use the SOLISTENING() macro 2021-06-21 09:14:40 -04:00
netinet pf: syncookie support 2021-07-27 09:42:25 +02:00
netinet6 sctp: Fix errno in case of association setup failures 2021-07-13 20:30:57 +02:00
netipsec Add missing sockaddr length and family validation to various protocols 2021-05-17 13:43:07 -04:00
netpfil pf: Constify tag name and queue name helper functions 2021-07-29 08:12:01 -04:00
netsmb netsmb: Avoid a read-after-free in smb_t2_request_int() 2021-06-02 09:34:47 -04:00
nfs nfs: clean up empty lines in .c and .h files 2020-09-01 21:25:39 +00:00
nfsclient nfs: clean up empty lines in .c and .h files 2020-09-01 21:25:39 +00:00
nfsserver nfs: Mark unused statistics variable as reserved 2020-11-18 04:35:49 +00:00
nlm nlm: clean up empty lines in .c and .h files 2020-09-01 22:14:52 +00:00
ofed Fix mismerge in OFED update 2021-07-26 18:12:35 +02:00
opencrypto cryptodev: Fix some input validation bugs 2021-05-14 09:58:54 -04:00
powerpc Assert that valid PTEs are not overwritten when installing a new PTP 2021-07-29 08:12:12 -04:00
riscv Assert that valid PTEs are not overwritten when installing a new PTP 2021-07-29 08:12:12 -04:00
rpc krpc: Acquire ref count of CLIENT for backchannel use 2021-06-26 16:03:41 -07:00
security mac: cheaper check for ifnet_create_mbuf and ifnet_check_transmit 2021-07-05 11:32:14 +00:00
sys cache: add cache_enter_time_flags 2021-07-25 06:59:56 +00:00
teken loader: implement framebuffer console 2021-01-02 21:41:36 +02:00
tests tests: Revise FIB lookups per second benchmarking routines 2021-06-20 13:27:17 +02:00
tools makesyscalls.lua: improve generated file style(9) compliance 2021-05-19 20:31:54 -04:00
ufs ffs_softdep: force sync if journal is low in journal_check_space 2021-07-07 13:50:44 +03:00
vm Un-staticise vm_page_init_page() 2021-06-24 05:20:33 +03:00
x86 Consolidate machine/endian.h definitions 2021-06-24 20:42:56 -03:00
xdr xdr: clean up empty lines in .c and .h files 2020-09-01 22:13:28 +00:00
xen xen: remove .swp file from public headers 2021-01-11 18:14:11 +01:00
Makefile