--- /dev/null
+From 19ced623db2fe91604d69f7d86b03144c5107739 Mon Sep 17 00:00:00 2001
+From: Linus Walleij <linus.walleij@linaro.org>
+Date: Wed, 8 Jun 2016 14:56:39 +0200
+Subject: crypto: ux500 - memmove the right size
+
+From: Linus Walleij <linus.walleij@linaro.org>
+
+commit 19ced623db2fe91604d69f7d86b03144c5107739 upstream.
+
+The hash buffer is really HASH_BLOCK_SIZE bytes, someone
+must have thought that memmove takes n*u32 words by mistake.
+Tests work as good/bad as before after this patch.
+
+Cc: Joakim Bech <joakim.bech@linaro.org>
+Reported-by: David Binderman <linuxdev.baldrick@gmail.com>
+Signed-off-by: Linus Walleij <linus.walleij@linaro.org>
+Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
+Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
+
+---
+ drivers/crypto/ux500/hash/hash_core.c | 4 ++--
+ 1 file changed, 2 insertions(+), 2 deletions(-)
+
+--- a/drivers/crypto/ux500/hash/hash_core.c
++++ b/drivers/crypto/ux500/hash/hash_core.c
+@@ -797,7 +797,7 @@ static int hash_process_data(struct hash
+ &device_data->state);
+ memmove(req_ctx->state.buffer,
+ device_data->state.buffer,
+- HASH_BLOCK_SIZE / sizeof(u32));
++ HASH_BLOCK_SIZE);
+ if (ret) {
+ dev_err(device_data->dev,
+ "%s: hash_resume_state() failed!\n",
+@@ -848,7 +848,7 @@ static int hash_process_data(struct hash
+
+ memmove(device_data->state.buffer,
+ req_ctx->state.buffer,
+- HASH_BLOCK_SIZE / sizeof(u32));
++ HASH_BLOCK_SIZE);
+ if (ret) {
+ dev_err(device_data->dev, "%s: hash_save_state() failed!\n",
+ __func__);
--- /dev/null
+crypto-ux500-memmove-the-right-size.patch
--- /dev/null
+net_sched-fix-pfifo_head_drop-behavior-vs-backlog.patch
+net-don-t-forget-pr_fmt-on-net_dbg_ratelimited-for-config_dynamic_debug.patch
+sit-correct-ip-protocol-used-in-ipip6_err.patch
+esp-fix-esn-generation-under-udp-encapsulation.patch
+netem-fix-a-use-after-free.patch
+ipmr-ip6mr-initialize-the-last-assert-time-of-mfc-entries.patch
+bridge-fix-ipv6-mc-snooping-if-bridge-has-no-ipv6-address.patch
+sock_diag-do-not-broadcast-raw-socket-destruction.patch
+bpf-perf-delay-release-of-bpf-prog-after-grace-period.patch
+neigh-explicitly-declare-rcu-bh-read-side-critical-section-in-neigh_xmit.patch
+net-macb-fix-default-configuration-for-gmac-on-at91.patch
+net-alx-work-around-the-dma-rx-overflow-issue.patch
+bpf-try-harder-on-clones-when-writing-into-skb.patch
+ax.25-close-socket-connection-on-session-completion.patch
+crypto-vmx-increase-priority-of-aes-cbc-cipher.patch
+crypto-ux500-memmove-the-right-size.patch
+crypto-user-re-add-size-check-for-crypto_msg_getalg.patch
--- /dev/null
+net_sched-fix-pfifo_head_drop-behavior-vs-backlog.patch
+act_ipt-fix-a-bind-refcnt-leak.patch
+net-don-t-forget-pr_fmt-on-net_dbg_ratelimited-for-config_dynamic_debug.patch
+sit-correct-ip-protocol-used-in-ipip6_err.patch
+kcm-fix-proc-memory-leak.patch
+esp-fix-esn-generation-under-udp-encapsulation.patch
+netem-fix-a-use-after-free.patch
+ipmr-ip6mr-initialize-the-last-assert-time-of-mfc-entries.patch
+bridge-fix-ipv6-mc-snooping-if-bridge-has-no-ipv6-address.patch
+sock_diag-do-not-broadcast-raw-socket-destruction.patch
+bpf-perf-delay-release-of-bpf-prog-after-grace-period.patch
+neigh-explicitly-declare-rcu-bh-read-side-critical-section-in-neigh_xmit.patch
+ax.25-close-socket-connection-on-session-completion.patch
+crypto-vmx-increase-priority-of-aes-cbc-cipher.patch
+crypto-ux500-memmove-the-right-size.patch
+crypto-user-re-add-size-check-for-crypto_msg_getalg.patch
projects / thirdparty / kernel / stable-queue.git / commitdiff
