Fix off by one bug in LUKS2 keyslot max id allocation.

This is almost impossible to hit bug. The max keyslot id is checked in higher layer.
2025-12-09 01:40:00 +01:00 · 2018-04-10 16:30:15 +02:00
parent 255c8e8ff4
commit 3616ee50c0
1 changed files with 1 additions and 1 deletions
--- a/lib/luks2/luks2_keyslot_luks2.c
+++ b/lib/luks2/luks2_keyslot_luks2.c
@@ -400,7 +400,7 @@ int luks2_keyslot_alloc(struct crypt_device *cd,
 	if (keyslot == CRYPT_ANY_SLOT)
 		keyslot = LUKS2_keyslot_find_empty(hdr, "luks2");

-	if (keyslot < 0 || keyslot > LUKS2_KEYSLOTS_MAX)
+	if (keyslot < 0 || keyslot >= LUKS2_KEYSLOTS_MAX)
 		return -ENOMEM;

 	if (LUKS2_get_keyslot_jobj(hdr, keyslot)) {