[Bug 219356] Using AES-GCM with IPSEC with aesni module loaded panics FreeBSD 11 stable
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Mon May 22 08:51:07 UTC 2017
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219356
Andrey V. Elsukov <ae at FreeBSD.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Assignee|freebsd-bugs at FreeBSD.org |ae at FreeBSD.org
Status|New |In Progress
--- Comment #4 from Andrey V. Elsukov <ae at FreeBSD.org> ---
Created attachment 182793
--> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=182793&action=edit
Proposed patch (untested)
Thanks. The last trace is very helpful. Can you try this patch? It should be
applicable to both stable/11 and head/.
The problem triggered by error in crypto code. When AES-GCM fails authenticate
decrypted data, it returns EBADMSG error code. This error code was handled
incorrectly in new IPsec code and double free occurred for SA reference. This
patch removed extra free().
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-bugs
mailing list