From e8e0742ef417d3efa75fd71e372979e985c0a6b5 Mon Sep 17 00:00:00 2001
From: Poul-Henning Kamp <phk@FreeBSD.org>
Date: Fri, 25 Apr 2003 21:28:28 +0000
Subject: [PATCH] If on a BIO_READ request, we failed to allocate the bio for
 reading our key-sector, we would end up returning the read without an error,
 despite the fact that the data was not correctly decrypted.

This would result in data corruption on read, but intact data still
on the media.
---
 sys/geom/bde/g_bde_work.c | 19 +++++++++++++------
 1 file changed, 13 insertions(+), 6 deletions(-)

diff --git a/sys/geom/bde/g_bde_work.c b/sys/geom/bde/g_bde_work.c
index 9375051c823..1093566d1ad 100644
--- a/sys/geom/bde/g_bde_work.c
+++ b/sys/geom/bde/g_bde_work.c
@@ -572,13 +572,20 @@ g_bde_worker(void *arg)
 			} 
 			switch(wp->bp->bio_cmd) {
 			case BIO_READ:
-				if (wp->ksp != NULL && wp->sp->error == 0) {
-					mtx_unlock(&sc->worklist_mutex);
-					g_bde_crypt_read(wp);
-					mtx_lock(&sc->worklist_mutex);
+				if (wp->ksp == NULL) {
+					KASSERT(wp->error != 0,
+					    ("BIO_READ, no ksp and no error"));
+					g_bde_contribute(wp->bp, wp->length,
+						    wp->error);
+				} else {
+					if (wp->sp->error == 0) {
+						mtx_unlock(&sc->worklist_mutex);
+						g_bde_crypt_read(wp);
+						mtx_lock(&sc->worklist_mutex);
+					}
+					g_bde_contribute(wp->bp, wp->length,
+						    wp->sp->error);
 				}
-				g_bde_contribute(wp->bp, wp->length,
-					    wp->sp->error);
 				g_bde_delete_sector(sc, wp->sp);
 				if (wp->ksp != NULL)
 					g_bde_release_keysector(wp);