[PATCH] crypto: sun4i-ss - Remove insecure and unused rng_alg
Corentin Labbe
clabbe.montjoie at gmail.com
Mon Jun 1 08:08:13 PDT 2026
Le Fri, May 29, 2026 at 12:36:48PM -0700, Eric Biggers a écrit :
> Remove sun4i_ss_rng, as it is insecure and unused:
>
> - It has multiple vulnerabilities. sun4i_ss_prng_seed() is missing
> locking and has a buffer overflow. sun4i_ss_prng_generate() fails to
> fill the entire buffer with cryptographic random bytes, because it
> rounds the destination length down and also doesn't actually wait for
> the hardware to be ready before pulling bytes from it.
>
> - No user of this code is known. It's usable only theoretically via the
> "rng" algorithm type of AF_ALG. But userspace actually just uses the
> actual Linux RNG (/dev/random etc) instead. And rng_algs don't
> contribute entropy to the actual Linux RNG either. (This may have
> been confused with hwrng, which does contribute entropy.)
>
> Fixes: b8ae5c7387ad ("crypto: sun4i-ss - support the Security System PRNG")
> Cc: stable at vger.kernel.org
> Cc: Corentin Labbe <clabbe.montjoie at gmail.com>
> Signed-off-by: Eric Biggers <ebiggers at kernel.org>
> ---
Acked-by: Corentin LABBE <clabbe.montjoie at gmail.com>
More information about the linux-arm-kernel
mailing list