Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / system / vold / bf0d972ab4aa04918dc57ba277454ea65bbdee26^! / .
commitbf0d972ab4aa04918dc57ba277454ea65bbdee26[log] [tgz]
authorAdam Langley <agl@google.com>Wed Nov 04 14:51:39 2015 -0800
committerAdam Langley <agl@google.com>Wed Nov 04 14:51:39 2015 -0800
treeb11b473bf116192b74b861a2221a7d25de00a05b
parent7d17af08a80c3d9a14a3fe11d70bd12d59641a7b [diff]
system/vold: check return value of PKCS5_PBKDF2_HMAC_SHA1.

The function PKCS5_PBKDF2_HMAC_SHA1 can fail for a number of reasons and
thus its return value should be checked and handled.

Change-Id: I0f0d8f74b58940a34df16b88434a085760822075

diff --git a/cryptfs.c b/cryptfs.c
index a905ff6..1d1a585 100644
--- a/cryptfs.c
+++ b/cryptfs.c

@@ -1253,11 +1253,9 @@
     SLOGI("Using pbkdf2 for cryptfs KDF");
 
     /* Turn the password into a key and IV that can decrypt the master key */
-    PKCS5_PBKDF2_HMAC_SHA1(passwd, strlen(passwd),
-                           salt, SALT_LEN,
-                           HASH_COUNT, KEY_LEN_BYTES+IV_LEN_BYTES, ikey);
-
-    return 0;
+    return PKCS5_PBKDF2_HMAC_SHA1(passwd, strlen(passwd), salt, SALT_LEN,
+                                  HASH_COUNT, KEY_LEN_BYTES + IV_LEN_BYTES,
+                                  ikey) != 1;
 }
 
 static int scrypt(const char *passwd, const unsigned char *salt,