Re: [PATCH] tls: fix encrypt_pending refcount leak on -EBUSY error path

Next message: Pasha Tatashin: "Re: [PATCH v6 01/12] PCI: liveupdate: Set up FLB handler for the PCI core"
Previous message: Vlastimil Babka (SUSE): "Re: &#x7B54;&#x590D;: [PATCH v3] mm/mempool: Untangle CONFIG_SLUB_DEBUG_ON abuse and switch to static key"
In reply to: WenTao Liang: "[PATCH] tls: fix encrypt_pending refcount leak on -EBUSY error path"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Sabrina Dubroca

Date: Fri Jun 12 2026 - 06:46:58 EST

2026-06-12, 10:01:33 +0800, WenTao Liang wrote:
> In tls_do_encryption(), when crypto_aead_encrypt() returns -EBUSY,
> tls_encrypt_async_wait() drains pending completions and restores
> encrypt_pending to 1, expecting the caller to issue the final
> decrement. However, if tls_encrypt_async_wait() returns an error
> (rc != -EINPROGRESS), the function returns early at the error
> cleanup block without decrementing encrypt_pending.
>
> Since the -EBUSY path never submitted the request to the crypto
> engine, tls_encrypt_done() callback will not fire for this request,
> and the synchronous cleanup path (atomic_dec at line 599) is also
> skipped. This leaves encrypt_pending permanently elevated by 1.

No. Please fix whatever scanner/LLM you're using to generate those.

--
Sabrina