random: use a tighter cap in credit_entropy_bits_safe()

commit 9f886f4d1d292442b2f22a0a33321eae821bde40 upstream. This fixes a harmless UBSAN where root could potentially end up causing an overflow while bumping the entropy_total field (which is ignored once the entropy pool has been initialized, and this generally is completed during the boot sequence). This is marginal for the stable kernel series, but it's a really trivial patch, and it fixes UBSAN warning that might cause security folks to get overly excited for no reason. Signed-off-by: Theodore Ts'o <tytso@mit.edu> Reported-by: Chen Feng <puck.chen@hisilicon.com> Cc: stable@vger.kernel.org Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
author: Theodore Ts'o <tytso@mit.edu> 2017-02-25 18:21:33 -0400
committer: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2018-04-24 09:32:07 +0200
commit: 010f0fb42c2a19b71405ead2009164e4dcf78a00 (patch)
tree: 69583aedb064664de758b90492be9b47a35c0c5d /drivers
parent: 00cf298fae0bcee000bad030574b70307175219b (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/drivers/char/random.c b/drivers/char/random.c
index bd9fc2baa6aa..dffd06a3bb76 100644
--- a/drivers/char/random.c
+++ b/drivers/char/random.c
@@ -724,7 +724,7 @@ retry:
 
 static int credit_entropy_bits_safe(struct entropy_store *r, int nbits)
 {
-	const int nbits_max = (int)(~0U >> (ENTROPY_SHIFT + 1));
+	const int nbits_max = r->poolinfo->poolwords * 32;
 
 	if (nbits < 0)
 		return -EINVAL;
author	Theodore Ts'o <tytso@mit.edu>	2017-02-25 18:21:33 -0400
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2018-04-24 09:32:07 +0200
commit	010f0fb42c2a19b71405ead2009164e4dcf78a00 (patch)
tree	69583aedb064664de758b90492be9b47a35c0c5d /drivers
parent	00cf298fae0bcee000bad030574b70307175219b (diff)