chelsio/chtls: fix writing freed memory

When chtls_sock *csk is freed, same memory can be allocated to different csk in chtls_sock_create(). csk->cdev = NULL; statement might ends up modifying wrong csk, eventually causing kernel panic. removing (csk->cdev = NULL) statement as it is not required. Fixes: 3a0a9783 ("crypto/chtls: Fix chtls crash in connection cleanup") Signed-off-by: N Vinay Kumar Yadav <vinay.yadav@chelsio.com> Signed-off-by: N Jakub Kicinski <kuba@kernel.org>

chelsio/chtls: fix writing freed memory
When chtls_sock *csk is freed, same memory can be allocated to different csk in chtls_sock_create(). csk->cdev = NULL; statement might ends up modifying wrong csk, eventually causing kernel panic. removing (csk->cdev = NULL) statement as it is not required. Fixes: 3a0a9783 ("crypto/chtls: Fix chtls crash in connection cleanup") Signed-off-by: N Vinay Kumar Yadav <vinay.yadav@chelsio.com> Signed-off-by: N Jakub Kicinski <kuba@kernel.org>
da1a039b · Vinay Kumar Yadav · Jakub Kicinski · 8580a61a · da1a039b
隐藏空白更改
内联并排

Showing with 0 addition and 1 deletion

drivers/net/ethernet/chelsio/inline_crypto/chtls/chtls_cm.c drivers/net/ethernet/chelsio/inline_crypto/chtls/chtls_cm.c +0 -1

未找到文件。
--- a/drivers/net/ethernet/chelsio/inline_crypto/chtls/chtls_cm.c
+++ b/drivers/net/ethernet/chelsio/inline_crypto/chtls/chtls_cm.c
@@ -483,7 +483,6 @@ void chtls_destroy_sock(struct sock *sk)
 	chtls_purge_write_queue(sk);
 	free_tls_keyid(sk);
 	kref_put(&csk->kref, chtls_sock_release);
-	csk->cdev = NULL;
 	if (sk->sk_family == AF_INET)
 		sk->sk_prot = &tcp_prot;
 #if IS_ENABLED(CONFIG_IPV6)