On Thu, Jan 31, 2019 at 06:32:07AM +, Ramin Farajpour Cami wrote:
> Hi Eric,
>
> I going to for avoid double free of resource identifiers we should set
> variables initialized in "tmp/key" to NULL if an error occurred int the
> "esp_init_authenc()" and "esp_output_tail()" attempts to free the
From: Ramin Farajpour Cami
Date: Wed, 30 Jan 2019 21:35:42 +
> key/tmp is being kfree'd twice,once in the
> "aalg_desc->uinfo.auth.icv_fullbits / 8 != crypto_aead_authsize(aead)" call
> to "free_key",twice When "crypto_aead_setauthsize(aead,
> x->aalg->alg_trunc_len / 8)" fails call to agai
On 01/30/2019 01:35 PM, Ramin Farajpour Cami wrote:
> key/tmp is being kfree'd twice,once in the
> "aalg_desc->uinfo.auth.icv_fullbits / 8 != crypto_aead_authsize(aead)" call
> to "free_key",twice When "crypto_aead_setauthsize(aead,
> x->aalg->alg_trunc_len / 8)" fails call to again "free_key
key/tmp is being kfree'd twice,once in the "aalg_desc->uinfo.auth.icv_fullbits
/ 8 != crypto_aead_authsize(aead)" call
to "free_key",twice When "crypto_aead_setauthsize(aead, x->aalg->alg_trunc_len
/ 8)" fails call to again "free_key",
Signed-off-by: Ramin Farajpour Cami
---
net/ipv4/esp4.c |
