Merge tag 'libcrypto-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiggers/linux

torvalds · torvalds · commit d0c3bcd5b897 · 2026-03-30T13:40:48.000-07:00
Pull crypto library fix from Eric Biggers:
 "Fix missing zeroization of the ChaCha state"

* tag 'libcrypto-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiggers/linux:
  lib/crypto: chacha: Zeroize permuted_state before it leaves scope
diff --git a/lib/crypto/chacha-block-generic.c b/lib/crypto/chacha-block-generic.c
@@ -87,6 +87,8 @@ void chacha_block_generic(struct chacha_state *state,
 				   &out[i * sizeof(u32)]);
 
 	state->x[12]++;
+
+	chacha_zeroize_state(&permuted_state);
 }
 EXPORT_SYMBOL(chacha_block_generic);
 
@@ -110,5 +112,7 @@ void hchacha_block_generic(const struct chacha_state *state,
 
 	memcpy(&out[0], &permuted_state.x[0], 16);
 	memcpy(&out[4], &permuted_state.x[12], 16);
+
+	chacha_zeroize_state(&permuted_state);
 }
 EXPORT_SYMBOL(hchacha_block_generic);

Original file line number	Diff line number	Diff line change
`@@ -87,6 +87,8 @@ void chacha_block_generic(struct chacha_state *state,`
`87`	`87`	`&out[i * sizeof(u32)]);`
`88`	`88`
`89`	`89`	`state->x[12]++;`
	`90`	`+`
	`91`	`+ chacha_zeroize_state(&permuted_state);`
`90`	`92`	`}`
`91`	`93`	`EXPORT_SYMBOL(chacha_block_generic);`
`92`	`94`
`@@ -110,5 +112,7 @@ void hchacha_block_generic(const struct chacha_state *state,`
`110`	`112`
`111`	`113`	`memcpy(&out[0], &permuted_state.x[0], 16);`
`112`	`114`	`memcpy(&out[4], &permuted_state.x[12], 16);`
	`115`	`+`
	`116`	`+ chacha_zeroize_state(&permuted_state);`
`113`	`117`	`}`
`114`	`118`	`EXPORT_SYMBOL(hchacha_block_generic);`