Skip to content

Commit 7ac8020

Browse files
PlaidCatPlaidCat
committed
crypto: seqiv - Handle EBUSY correctly
jira LE-4385 cve CVE-2023-53373 Rebuild_History Non-Buildable kernel-5.14.0-570.52.1.el9_6 commit-author Herbert Xu <herbert@gondor.apana.org.au> commit 32e6202 As it is seqiv only handles the special return value of EINPROGERSS, which means that in all other cases it will free data related to the request. However, as the caller of seqiv may specify MAY_BACKLOG, we also need to expect EBUSY and treat it in the same way. Otherwise backlogged requests will trigger a use-after-free. Fixes: 0a27032 ("[CRYPTO] seqiv: Add Sequence Number IV Generator") Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> (cherry picked from commit 32e6202) Signed-off-by: Jonathan Maple <jmaple@ciq.com>
1 parent a870ed1 commit 7ac8020

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

crypto/seqiv.c

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -23,7 +23,7 @@ static void seqiv_aead_encrypt_complete2(struct aead_request *req, int err)
2323
struct aead_request *subreq = aead_request_ctx(req);
2424
struct crypto_aead *geniv;
2525

26-
if (err == -EINPROGRESS)
26+
if (err == -EINPROGRESS || err == -EBUSY)
2727
return;
2828

2929
if (err)

0 commit comments

Comments
 (0)