Fix check for bitlk iv overflow in crypto backend.

2025-12-05 16:00:05 +01:00 · 2019-11-10 10:36:04 +01:00
parent c802269ea3
commit 565de3c536
1 changed files with 1 additions and 1 deletions
--- a/lib/crypto_backend/crypto_cipher_kernel.c
+++ b/lib/crypto_backend/crypto_cipher_kernel.c
@@ -277,7 +277,7 @@ int crypt_bitlk_decrypt_key_kernel(const void *key, size_t key_length,
 	if (length + tag_length > sizeof(buffer))
 		return -EINVAL;

-	if (iv_length > sizeof(ccm_iv) - 1)
+	if (iv_length > sizeof(ccm_iv) - 2)
 		return -EINVAL;

 	r = _crypt_cipher_init(&c, key, key_length, tag_length, &sa);