)]}'
{
  "commit": "96c2b8f3d7e33875c0d0b3a01f65fafdbacffa8a",
  "tree": "ec28db97b0393003b31aa82da6f50305b6f60eff",
  "parents": [
    "117793401924075ff762ae88f1c78ebf69734c04"
  ],
  "author": {
    "name": "Jakub Kicinski",
    "email": "kuba@kernel.org",
    "time": "Tue Feb 06 17:18:21 2024 -0800"
  },
  "committer": {
    "name": "Robert Kolchmeyer",
    "email": "rkolchmeyer@google.com",
    "time": "Sun Jun 16 17:30:09 2024 +0000"
  },
  "message": "net: tls: handle backlogging of crypto requests\n\ncommit 8590541473188741055d27b955db0777569438e3 upstream.\n\nSince we\u0027re setting the CRYPTO_TFM_REQ_MAY_BACKLOG flag on our\nrequests to the crypto API, crypto_aead_{encrypt,decrypt} can return\n -EBUSY instead of -EINPROGRESS in valid situations. For example, when\nthe cryptd queue for AESNI is full (easy to trigger with an\nartificially low cryptd.cryptd_max_cpu_qlen), requests will be enqueued\nto the backlog but still processed. In that case, the async callback\nwill also be called twice: first with err \u003d\u003d -EINPROGRESS, which it\nseems we can just ignore, then with err \u003d\u003d 0.\n\nCompared to Sabrina\u0027s original patch this version uses the new\ntls_*crypt_async_wait() helpers and converts the EBUSY to\nEINPROGRESS to avoid having to modify all the error handling\npaths. The handling is identical.\n\nBUG\u003db/338196126\nTEST\u003dpresubmit\nRELEASE_NOTE\u003dFixed CVE-2024-26584 in the Linux kernel.\n\ncos-patch: security-high\nFixes: a54667f6728c (\"tls: Add support for encryption using async offload accelerator\")\nFixes: 94524d8fc965 (\"net/tls: Add support for async decryption of tls records\")\nCo-developed-by: Sabrina Dubroca \u003csd@queasysnail.net\u003e\nSigned-off-by: Sabrina Dubroca \u003csd@queasysnail.net\u003e\nLink: https://lore.kernel.org/netdev/9681d1febfec295449a62300938ed2ae66983f28.1694018970.git.sd@queasysnail.net/\nSigned-off-by: Jakub Kicinski \u003ckuba@kernel.org\u003e\nReviewed-by: Simon Horman \u003chorms@kernel.org\u003e\nSigned-off-by: David S. Miller \u003cdavem@davemloft.net\u003e\n[v5.15: fixed contextual merge-conflicts in tls_decrypt_done and tls_encrypt_done]\nCc: \u003cstable@vger.kernel.org\u003e # 5.15\nSigned-off-by: Shaoying Xu \u003cshaoyi@amazon.com\u003e\nSigned-off-by: Greg Kroah-Hartman \u003cgregkh@linuxfoundation.org\u003e\n(cherry picked from commit 3ade391adc584f17b5570fd205de3ad029090368)\nSigned-off-by: Robert Kolchmeyer \u003crkolchmeyer@google.com\u003e\nChange-Id: I44faca450c7d722bd06ddf17b00406dd7b37033b\nReviewed-on: https://cos-review.googlesource.com/c/third_party/kernel/+/74297\nTested-by: Cusky Presubmit Bot \u003cpresubmit@cos-infra-prod.iam.gserviceaccount.com\u003e\nReviewed-by: Oleksandr Tymoshenko \u003covt@google.com\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "ffa8804a2b8a1069d6e900f60456a01dfc5099e8",
      "old_mode": 33188,
      "old_path": "net/tls/tls_sw.c",
      "new_id": "c17c3a14b9c19f69a859d16328b9ff4838a88883",
      "new_mode": 33188,
      "new_path": "net/tls/tls_sw.c"
    }
  ]
}