Diffusion FreeBSD src repository e196b12f4d4d

ipsec: Drain async ipsec_offload work when destroying a vnet
e196b12f4d4d
Actions

Tags

None

Referenced Files

None

Subscribers

None

Description

ipsec: Drain async ipsec_offload work when destroying a vnet

The ipsec_offload code in some cases releases object references in an
asynchronous context where it needs to set the current VNET. Make sure
that all such work completes before the VNET is actually destroyed,
otherwise a use-after-free is possible.

Reported by: KASAN
Reviewed by: kib
Fixes: ef2a572bf6bd ("ipsec_offload: kernel infrastructure")
Sponsored by: Klara, Inc.
Differential Revision: https://reviews.freebsd.org/D46483

Details

Provenance

Authored on Aug 30 2024, 12:44 AM

Reviewer

rGef2a572bf6bd: ipsec_offload: kernel infrastructure

Differential Revision

D46483: ipsec: Drain async ipsec_offload work when destroying a vnet

Parents

rG356be1348dac: kernel: Make some compile time constant variables const

Branches

Unknown

Tags

Unknown

Reverted By

rG28294dc92476: Revert "ipsec: Drain async ipsec_offload work when destroying a vnet"

Event Timeline

markj committed rGe196b12f4d4d: ipsec: Drain async ipsec_offload work when destroying a vnet (authored by markj).Aug 30 2024, 1:08 PM

markj added an edge: D46483: ipsec: Drain async ipsec_offload work when destroying a vnet.Aug 30 2024, 1:10 PM

markj added a reverting change: rG28294dc92476: Revert "ipsec: Drain async ipsec_offload work when destroying a vnet".Aug 30 2024, 3:01 PM

markj mentioned this in rG01f43479b592: ipsec: Drain async ipsec_offload work when destroying a vnet.Sep 4 2024, 2:29 PM

Changes (2)

Path

Size

sys/

netipsec/

ipsec_offload.c

rGe196b12f4d4d

sys/netipsec/ipsec_offload.c

Loading...

sys/netipsec/key.c

Loading...