[S390] prng: prevent access beyond end of stack While initializing the state of the prng only the first 8 bytes of random data where used, the second 8 bytes were read from the memory after the stack. If only 64 bytes of the kernel stack are used and CONFIG_DEBUG_PAGEALLOC is enabled a kernel panic may occur because of the invalid page access. Use the correct multiplicator to stay within the random data buffer. Signed-off-by: Jan Glauber <jang@linux.vnet.ibm.com> Signed-off-by: Martin Schwidefsky <schwidefsky@de.ibm.com>

commit: c708c57e247775928b9a6bce7b4d8d14883bf39b [log] [tgz]
author: Jan Glauber <jang@linux.vnet.ibm.com> Wed Apr 20 10:15:31 2011 +0200
committer: Martin Schwidefsky <sky@mschwide.boeblingen.de.ibm.com> Wed Apr 20 10:15:43 2011 +0200
tree: fe47b86f80b931b3cb072a5c687d309cde1e9c7c
parent: 65f8da475995f667af5298c644707dbd9d646ca6 [diff] [blame]
diff --git a/arch/s390/crypto/prng.c b/arch/s390/crypto/prng.c
index 975e3ab..44bca3f 100644
--- a/arch/s390/crypto/prng.c
+++ b/arch/s390/crypto/prng.c

@@ -76,7 +76,7 @@
 
 	/* Add the entropy */
 	while (nbytes >= 8) {
-		*((__u64 *)parm_block) ^= *((__u64 *)buf+i*8);
+		*((__u64 *)parm_block) ^= *((__u64 *)buf+i);
 		prng_add_entropy();
 		i += 8;
 		nbytes -= 8;
commit	c708c57e247775928b9a6bce7b4d8d14883bf39b	[log] [tgz]
author	Jan Glauber <jang@linux.vnet.ibm.com>	Wed Apr 20 10:15:31 2011 +0200
committer	Martin Schwidefsky <sky@mschwide.boeblingen.de.ibm.com>	Wed Apr 20 10:15:43 2011 +0200
tree	fe47b86f80b931b3cb072a5c687d309cde1e9c7c
parent	65f8da475995f667af5298c644707dbd9d646ca6 [diff] [blame]