[Bug 219356] Using AES-GCM with IPSEC with aesni module loaded panics FreeBSD 11 stable

bugzilla-noreply Mon, 22 May 2017 01:51:37 -0700

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219356


Andrey V. Elsukov <a...@freebsd.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           Assignee|freebsd-bugs@FreeBSD.org    |a...@freebsd.org
             Status|New                         |In Progress

--- Comment #4 from Andrey V. Elsukov <a...@freebsd.org> ---
Created attachment 182793
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=182793&action=edit
Proposed patch (untested)

Thanks. The last trace is very helpful. Can you try this patch? It should be
applicable to both stable/11 and head/.

The problem triggered by error in crypto code. When AES-GCM fails authenticate
decrypted data, it returns EBADMSG error code. This error code was handled
incorrectly in new IPsec code and double free occurred for SA reference. This
patch removed extra free().

-- 
You are receiving this mail because:
You are the assignee for the bug.
_______________________________________________
freebsd-bugs@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-bugs
To unsubscribe, send any mail to "freebsd-bugs-unsubscr...@freebsd.org"

[Bug 219356] Using AES-GCM with IPSEC with aesni module loaded panics FreeBSD 11 stable

Reply via email to