[Bug 265852] qat: kernel crash using krb5p with nfs

bugzilla-noreply Mon, 15 Aug 2022 11:59:54 -0700

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=265852


Mark Johnston <ma...@freebsd.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |ma...@freebsd.org,
                   |                            |m...@freebsd.org
             Status|New                         |Open

--- Comment #1 from Mark Johnston <ma...@freebsd.org> ---
I believe this is a bug in kgssapi code.  aes_checksum() and aes_encrypt_1()
can observe that CRYPTO_F_DONE is set before the callback worker thread has had
a chance to invoke the callback.  Then the code frees the request, i.e., there
is a use-after-free.

kgssapi is ok with synchronous implementations of crypto routines, but not with
async implementations like QAT.  So the workaround for now is simply to not use
QAT.  I can provide a patch for testing, but I can't provide a truenas build.

-- 
You are receiving this mail because:
You are the assignee for the bug.

[Bug 265852] qat: kernel crash using krb5p with nfs

Reply via email to