Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 4dfb3442bb7e1fb80515df4a199ca5a7a8edf900
commit4dfb3442bb7e1fb80515df4a199ca5a7a8edf900[log] [tgz]
authorTheodore Ts'o <tytso@mit.edu>Wed Apr 11 13:27:52 2018 -0400
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>Tue Apr 24 09:34:16 2018 +0200
tree5f506f0bd86918f14291bce8d6b17ee9401c0d7a
parent2e2389a07923a888d6e22337391b08092f213416 [diff]
random: fix crng_ready() test

commit 43838a23a05fbd13e47d750d3dfd77001536dd33 upstream.

The crng_init variable has three states:

0: The CRNG is not initialized at all
1: The CRNG has a small amount of entropy, hopefully good enough for
   early-boot, non-cryptographical use cases
2: The CRNG is fully initialized and we are sure it is safe for
   cryptographic use cases.

The crng_ready() function should only return true once we are in the
last state.  This addresses CVE-2018-1108.

Reported-by: Jann Horn <jannh@google.com>
Fixes: e192be9d9a30 ("random: replace non-blocking pool...")
Cc: stable@kernel.org # 4.8+
Signed-off-by: Theodore Ts'o <tytso@mit.edu>
Reviewed-by: Jann Horn <jannh@google.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
1 file changed
tree: 5f506f0bd86918f14291bce8d6b17ee9401c0d7a
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .cocciconfig
  24. .get_maintainer.ignore
  25. .gitattributes
  26. .gitignore
  27. .mailmap
  28. COPYING
  29. CREDITS
  30. Kbuild
  31. Kconfig
  32. MAINTAINERS
  33. Makefile
  34. README
  35. REPORTING-BUGS