Received: by 2002:a05:7412:b995:b0:f9:9502:5bb8 with SMTP id it21csp3163747rdb; Tue, 26 Dec 2023 20:04:00 -0800 (PST) X-Google-Smtp-Source: AGHT+IGvq6NXzJT+BhkSC4bvO5VTXK+7y3yWKmmmjI5eW1IAvVOXYFTN+tfo7d+OGv/ywvLh0XfI X-Received: by 2002:a9d:6e94:0:b0:6dc:16f:5e00 with SMTP id a20-20020a9d6e94000000b006dc016f5e00mr899875otr.29.1703649839874; Tue, 26 Dec 2023 20:03:59 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1703649839; cv=none; d=google.com; s=arc-20160816; b=y/7pAfHHH2cesXvHLpLTJt3QMTt6TMozawxdCETnqkc6zwWi475y7ksZINNOIgyJHC yCFgmfgdKXCqwaCCgpKbXrU/daYWnRBsjAqMitzw+luWsMWgoZtqmolYpw4AmKJetarP HBHgQ65WkjGeDo2dBLZNVDoUAmGCx0in+k62Nv9ImDqeEQDeZXSBW1cQQWd+a6G9TsCW rcQG6MitJHIE5AykcyvmdxfGUb+7yidxuRd93xjDfZ26HKskwffpIfArYderrMWfff9w 4YfPNPJBYLW7cOulhIKjS+AG6SA3LdOwj/3Tzeg+4wZyCM6+5vZ6uDZwkMFwTugWnn5h 99Aw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:references:in-reply-to:from :subject:cc:to:message-id:date:dkim-signature; bh=DYnbMfr6YIqES14uXvQ/ldz8qMPfpB6A/e3ZgdEIsFI=; fh=z8O+sB2mNgbD764qT0GiHsfAWcmgFnrC3RfgFExT5+Y=; b=iryFRTB7EVbmwnd+RSDKVpKKF6eFTdfyq6MwUzmjr7547A1U9rNDYRRcgGNdX5keST cOJFTewGwRr56evu7IrE78N+9CJWlJbJ1jUqgAU/Dk7tNSDkZo6Be5keFlWyDQtGf2hR vLl9zR5gveIwzB8RcznnpliFtPlPR2//6xOQYbyrbn2Hi9C/wBTofOkgPhHKTQgIErdC NjEVOipMqI5pUDpKaeIJU5Q73Z9Cft3kIaZlwrYZbHHm9+YbmKHcXGOi3DirAPe6CogS 1noVV34pjrWtP1lpx7VObynOOwm2tCniLkWI5+bxX7/YXZCON0LI3WmUdA89sDMX4uhb 6+Lg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=bRWChaRh; spf=pass (google.com: domain of linux-crypto+bounces-1053-linux.lists.archive=gmail.com@vger.kernel.org designates 139.178.88.99 as permitted sender) smtp.mailfrom="linux-crypto+bounces-1053-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com Return-Path: Received: from sv.mirrors.kernel.org (sv.mirrors.kernel.org. [139.178.88.99]) by mx.google.com with ESMTPS id l2-20020a63f302000000b005ce24eeba8esi4024401pgh.552.2023.12.26.20.03.59 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 26 Dec 2023 20:03:59 -0800 (PST) Received-SPF: pass (google.com: domain of linux-crypto+bounces-1053-linux.lists.archive=gmail.com@vger.kernel.org designates 139.178.88.99 as permitted sender) client-ip=139.178.88.99; Authentication-Results: mx.google.com; dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=bRWChaRh; spf=pass (google.com: domain of linux-crypto+bounces-1053-linux.lists.archive=gmail.com@vger.kernel.org designates 139.178.88.99 as permitted sender) smtp.mailfrom="linux-crypto+bounces-1053-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by sv.mirrors.kernel.org (Postfix) with ESMTPS id 125312827E5 for ; Wed, 27 Dec 2023 04:03:59 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 93C853C29; Wed, 27 Dec 2023 04:03:54 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (1024-bit key) header.d=redhat.com header.i=@redhat.com header.b="bRWChaRh" X-Original-To: linux-crypto@vger.kernel.org Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id CE0873C15 for ; Wed, 27 Dec 2023 04:03:52 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=redhat.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=redhat.com DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1703649831; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=DYnbMfr6YIqES14uXvQ/ldz8qMPfpB6A/e3ZgdEIsFI=; b=bRWChaRhCoxDK3a1bYkNAmsX5yBprNKwiOlzSYnV5u12Qf6jRCOBgcT5arL+l9e8CxjfP/ 1c1GvAJlfsaoWopux1K01D+wHNeAhMPFJ13DuYvQNXltjGNoldwdRzYNvN0RgsJom5nmX0 27elFPnmalnq2omuC0y09nk4YAyQckY= Received: from mail-oa1-f70.google.com (mail-oa1-f70.google.com [209.85.160.70]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.3, cipher=TLS_AES_256_GCM_SHA384) id us-mta-624--r1j-HCrPK-Slzb60ZQPPw-1; Tue, 26 Dec 2023 23:03:49 -0500 X-MC-Unique: -r1j-HCrPK-Slzb60ZQPPw-1 Received: by mail-oa1-f70.google.com with SMTP id 586e51a60fabf-20424523dc8so7826307fac.3 for ; Tue, 26 Dec 2023 20:03:49 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1703649829; x=1704254629; h=content-transfer-encoding:mime-version:references:in-reply-to:from :subject:cc:to:message-id:date:x-gm-message-state:from:to:cc:subject :date:message-id:reply-to; bh=DYnbMfr6YIqES14uXvQ/ldz8qMPfpB6A/e3ZgdEIsFI=; b=ia4DPOEmgtkIvGPa1aeiEuu4i/z+GDBkqoyYbcn0bfjeEEzyjl8+2EEICq/Ylr/1jW tq6+3ZNtbI/hhUD32fBMQSmypBisTUKD5e6qltEgWizktZq5bWSEkx2O6UzvS+z4tBCJ pXLMVrvrOTBG+hiI386sG9ERhfYoaZm5tiZdJbEgokqcMMf7p1t5J05WnUUi+Xfc+4I2 GqXcM9NkWU3hgKmTkzA5/N5qlZRCo9HE0II+bJsSDagQQxT8nNOprgtOHfbiWlElVzlO ih+OaF972tyG8Eu5YX6f4IK87xcCn6T5jVkB6CZpWooUG795zIihz3pf2/xKDOxG92kO J2hQ== X-Gm-Message-State: AOJu0YyvMfkmMBC3dRpV4p9X0diEUsAxDgN+T5zgq3eEmggsrII+zXD4 8fUu2rEUJR5UT2U0AvZFTqELTK7CHECl6h0fcwBuhVslBvULZr15LHDsTz76VsyT3SOaxptidvP 1L8wmox3TCURtt05kWuVQSKwjMPj+7MpD X-Received: by 2002:a05:6870:15c2:b0:203:e8e:b384 with SMTP id k2-20020a05687015c200b002030e8eb384mr9426555oad.85.1703649828784; Tue, 26 Dec 2023 20:03:48 -0800 (PST) X-Received: by 2002:a05:6870:15c2:b0:203:e8e:b384 with SMTP id k2-20020a05687015c200b002030e8eb384mr9426544oad.85.1703649828536; Tue, 26 Dec 2023 20:03:48 -0800 (PST) Received: from localhost ([240d:1a:c0d:9f00:ad0f:51ab:624e:a513]) by smtp.gmail.com with ESMTPSA id a18-20020aa78e92000000b006d9beb968c3sm3746568pfr.106.2023.12.26.20.03.46 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 26 Dec 2023 20:03:48 -0800 (PST) Date: Wed, 27 Dec 2023 13:03:42 +0900 (JST) Message-Id: <20231227.130342.618032792909202594.syoshida@redhat.com> To: herbert@gondor.apana.org.au Cc: davem@davemloft.net, dhowells@redhat.com, linux-crypto@vger.kernel.org, linux-kernel@vger.kernel.org Subject: Re: [PATCH] crypto: af_alg/hash: Fix uninit-value access in af_alg_free_sg() From: Shigeru Yoshida In-Reply-To: References: <20231211135949.689204-1-syoshida@redhat.com> X-Mailer: Mew version 6.9 on Emacs 29.1 Precedence: bulk X-Mailing-List: linux-crypto@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit On Fri, 22 Dec 2023 11:42:43 +0800, Herbert Xu wrote: > On Mon, Dec 11, 2023 at 10:59:49PM +0900, Shigeru Yoshida wrote: >> >> Fixes: c662b043cdca ("crypto: af_alg/hash: Support MSG_SPLICE_PAGES") > > I think it should actually be > > b6d972f6898308fbe7e693bf8d44ebfdb1cd2dc4 > crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE) > > Anyway, I think we should fix it by adding a new goto label that > does not free the SG list: > > unlock_free: > af_alg_free_sg(&ctx->sgl); > <--- Add new label here > hash_free_result(sk, ctx); > ctx->more = false; > goto unlock; Thanks for the feedback, and sorry for the late response. I'll check the code again, and send v2 patch. Thanks, Shigeru > > Thanks, > -- > Email: Herbert Xu > Home Page: http://gondor.apana.org.au/~herbert/ > PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt >