[PATCH 1/1] crypto:algif_aead - Fix kernel panic on list_del

Harsh Jain Wed, 01 Feb 2017 07:42:24 -0800

Kernel panics when userspace program try to access AEAD interface.
Remove node from Linked List before freeing its memory.


Signed-off-by: Harsh Jain <ha...@chelsio.com>
---
 crypto/algif_aead.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/crypto/algif_aead.c b/crypto/algif_aead.c
index f849311..533265f 100644
--- a/crypto/algif_aead.c
+++ b/crypto/algif_aead.c
@@ -661,9 +661,9 @@ static int aead_recvmsg_sync(struct socket *sock, struct 
msghdr *msg, int flags)
 unlock:
        list_for_each_entry_safe(rsgl, tmp, &ctx->list, list) {
                af_alg_free_sg(&rsgl->sgl);
+               list_del(&rsgl->list);
                if (rsgl != &ctx->first_rsgl)
                        sock_kfree_s(sk, rsgl, sizeof(*rsgl));
-               list_del(&rsgl->list);
        }
        INIT_LIST_HEAD(&ctx->list);
        aead_wmem_wakeup(sk);
-- 
1.8.2.3

[PATCH 1/1] crypto:algif_aead - Fix kernel panic on list_del

Reply via email to