All of lore.kernel.org
 help / color / mirror / Atom feed
* Reminder: 10 open syzbot bugs in "net/sctp" subsystem
@ 2019-07-24  2:27 ` Eric Biggers
  0 siblings, 0 replies; 2+ messages in thread
From: Eric Biggers @ 2019-07-24  2:27 UTC (permalink / raw)
  To: linux-sctp, netdev, Vlad Yasevich, Neil Horman,
	Marcelo Ricardo Leitner, David S. Miller, Xin Long
  Cc: linux-kernel, syzkaller-bugs

[This email was generated by a script.  Let me know if you have any suggestions
to make it better, or if you want it re-generated with the latest status.]

Of the currently open syzbot reports against the upstream kernel, I've manually
marked 10 of them as possibly being bugs in the "net/sctp" subsystem.  I've
listed these reports below, sorted by an algorithm that tries to list first the
reports most likely to be still valid, important, and actionable.

Of these 10 bugs, 2 were seen in mainline in the last week.

Of these 10 bugs, 1 was bisected to a commit from the following person:

	Xin Long <lucien.xin@gmail.com>

If you believe a bug is no longer valid, please close the syzbot report by
sending a '#syz fix', '#syz dup', or '#syz invalid' command in reply to the
original thread, as explained at https://goo.gl/tpsmEJ#status

If you believe I misattributed a bug to the "net/sctp" subsystem, please let me
know, and if possible forward the report to the correct people or mailing list.

Here are the bugs:

--------------------------------------------------------------------------------
Title:              memory leak in sctp_send_reset_streams
Last occurred:      2 days ago
Reported:           53 days ago
Branches:           Mainline
Dashboard link:     https://syzkaller.appspot.com/bug?id=ecedaad28cb6bb86a08d6dcabd93ef76f875bfaf
Original thread:    https://lkml.kernel.org/lkml/000000000000f7a443058a358cb4@google.com/T/#u

This bug has a C reproducer.

The original thread for this bug has received 2 replies; the last was 52 days
ago.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+6ad9c3bd0a218a2ab41d@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000f7a443058a358cb4@google.com

--------------------------------------------------------------------------------
Title:              memory leak in sctp_stream_init_ext
Last occurred:      4 days ago
Reported:           53 days ago
Branches:           Mainline
Dashboard link:     https://syzkaller.appspot.com/bug?id=bbfa653205516be2a33b51c381ef827c534ba596
Original thread:    https://lkml.kernel.org/lkml/000000000000f122ab058a303d94@google.com/T/#u

This bug has a C reproducer.

The original thread for this bug has received 2 replies; the last was 49 days
ago.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+7f3b6b106be8dcdcdeec@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000f122ab058a303d94@google.com

--------------------------------------------------------------------------------
Title:              KASAN: use-after-free Read in __lock_sock
Last occurred:      37 days ago
Reported:           248 days ago
Branches:           Mainline and others
Dashboard link:     https://syzkaller.appspot.com/bug?id=27934d200d11e2fbae5c715bfefad252f41785fb
Original thread:    https://lkml.kernel.org/lkml/000000000000b98a67057ad7158a@google.com/T/#u

This bug has a syzkaller reproducer only.

This bug was bisected to:

	commit 8f840e47f190cbe61a96945c13e9551048d42cef
	Author: Xin Long <lucien.xin@gmail.com>
	Date:   Thu Apr 14 07:35:33 2016 +0000

	  sctp: add the sctp_diag.c file

The original thread for this bug received 6 replies; the last was 229 days ago.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+9276d76e83e3bcde6c99@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000b98a67057ad7158a@google.com

--------------------------------------------------------------------------------
Title:              KASAN: use-after-free Read in ip6_hold_safe (3)
Last occurred:      30 days ago
Reported:           77 days ago
Branches:           Mainline and others
Dashboard link:     https://syzkaller.appspot.com/bug?id=b30a8ecdfbefe331ff4d3a0a601ae28d91a430e3
Original thread:    https://lkml.kernel.org/lkml/000000000000eba333058848fcc1@google.com/T/#u

Unfortunately, this bug does not have a reproducer.

No one has replied to the original thread for this bug yet.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+1de7f57dd018a516ae89@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000eba333058848fcc1@google.com

--------------------------------------------------------------------------------
Title:              BUG: unable to handle kernel paging request in sctp_v6_get_dst
Last occurred:      37 days ago
Reported:           205 days ago
Branches:           Mainline and others
Dashboard link:     https://syzkaller.appspot.com/bug?id=b44ed5bb06a257ee2649272a08d7b68c184a7bfe
Original thread:    https://lkml.kernel.org/lkml/000000000000aa968f057e372583@google.com/T/#u

Unfortunately, this bug does not have a reproducer.

No one replied to the original thread for this bug.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+ae70faffd84f05295f27@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000aa968f057e372583@google.com

--------------------------------------------------------------------------------
Title:              KASAN: user-memory-access Read in ip6_hold_safe (3)
Last occurred:      33 days ago
Reported:           52 days ago
Branches:           bpf-next, linux-next, and net-next
Dashboard link:     https://syzkaller.appspot.com/bug?id=1707ac302b38aaceb5b3df470b198244fe0205d0
Original thread:    https://lkml.kernel.org/lkml/000000000000a7776f058a3ce9db@google.com/T/#u

Unfortunately, this bug does not have a reproducer.

The original thread for this bug has received 3 replies; the last was 29 days
ago.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+a5b6e01ec8116d046842@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000a7776f058a3ce9db@google.com

--------------------------------------------------------------------------------
Title:              BUG: unable to handle kernel paging request in dst_release (2)
Last occurred:      41 days ago
Reported:           119 days ago
Branches:           net and net-next
Dashboard link:     https://syzkaller.appspot.com/bug?id=1457062b2884c65d9c089e0abee144e7a6de1006
Original thread:    https://lkml.kernel.org/lkml/0000000000008cc65f0584fba1c4@google.com/T/#u

Unfortunately, this bug does not have a reproducer.

No one replied to the original thread for this bug.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+f7b46bf869b6ace2ea45@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/0000000000008cc65f0584fba1c4@google.com

--------------------------------------------------------------------------------
Title:              general protection fault in sctp_v6_get_dst (2)
Last occurred:      46 days ago
Reported:           126 days ago
Branches:           bpf-next, net, and net-next
Dashboard link:     https://syzkaller.appspot.com/bug?id=f30835c913a031ac302f0124763139ec0eb4b5d3
Original thread:    https://lkml.kernel.org/lkml/000000000000e8335605846f099f@google.com/T/#u

Unfortunately, this bug does not have a reproducer.

No one replied to the original thread for this bug.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+5aab5972d41ebaa03f25@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000e8335605846f099f@google.com

--------------------------------------------------------------------------------
Title:              KASAN: slab-out-of-bounds Read in fib6_rule_action
Last occurred:      99 days ago
Reported:           91 days ago
Branches:           net
Dashboard link:     https://syzkaller.appspot.com/bug?id=9b73c38d6e1905753dad5374ca51271b6787a124
Original thread:    https://lkml.kernel.org/lkml/0000000000001645670587350783@google.com/T/#u

Unfortunately, this bug does not have a reproducer.

No one replied to the original thread for this bug.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+3edc8b0bf48d614ae4ef@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/0000000000001645670587350783@google.com

--------------------------------------------------------------------------------
Title:              general protection fault in reuseport_add_sock
Last occurred:      158 days ago
Reported:           157 days ago
Branches:           net
Dashboard link:     https://syzkaller.appspot.com/bug?id=aae414b4366f2bb8cb759da428861e6e81942046
Original thread:    https://lkml.kernel.org/lkml/0000000000009e38f10581fd7499@google.com/T/#u

Unfortunately, this bug does not have a reproducer.

No one replied to the original thread for this bug.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+675ee297acac988852c1@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/0000000000009e38f10581fd7499@google.com


^ permalink raw reply	[flat|nested] 2+ messages in thread

* Reminder: 10 open syzbot bugs in "net/sctp" subsystem
@ 2019-07-24  2:27 ` Eric Biggers
  0 siblings, 0 replies; 2+ messages in thread
From: Eric Biggers @ 2019-07-24  2:27 UTC (permalink / raw)
  To: linux-sctp, netdev, Vlad Yasevich, Neil Horman,
	Marcelo Ricardo Leitner, David S. Miller, Xin Long
  Cc: linux-kernel, syzkaller-bugs

[This email was generated by a script.  Let me know if you have any suggestions
to make it better, or if you want it re-generated with the latest status.]

Of the currently open syzbot reports against the upstream kernel, I've manually
marked 10 of them as possibly being bugs in the "net/sctp" subsystem.  I've
listed these reports below, sorted by an algorithm that tries to list first the
reports most likely to be still valid, important, and actionable.

Of these 10 bugs, 2 were seen in mainline in the last week.

Of these 10 bugs, 1 was bisected to a commit from the following person:

	Xin Long <lucien.xin@gmail.com>

If you believe a bug is no longer valid, please close the syzbot report by
sending a '#syz fix', '#syz dup', or '#syz invalid' command in reply to the
original thread, as explained at https://goo.gl/tpsmEJ#status

If you believe I misattributed a bug to the "net/sctp" subsystem, please let me
know, and if possible forward the report to the correct people or mailing list.

Here are the bugs:

--------------------------------------------------------------------------------
Title:              memory leak in sctp_send_reset_streams
Last occurred:      2 days ago
Reported:           53 days ago
Branches:           Mainline
Dashboard link:     https://syzkaller.appspot.com/bug?idìedaad28cb6bb86a08d6dcabd93ef76f875bfaf
Original thread:    https://lkml.kernel.org/lkml/000000000000f7a443058a358cb4@google.com/T/#u

This bug has a C reproducer.

The original thread for this bug has received 2 replies; the last was 52 days
ago.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+6ad9c3bd0a218a2ab41d@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000f7a443058a358cb4@google.com

--------------------------------------------------------------------------------
Title:              memory leak in sctp_stream_init_ext
Last occurred:      4 days ago
Reported:           53 days ago
Branches:           Mainline
Dashboard link:     https://syzkaller.appspot.com/bug?id»fa653205516be2a33b51c381ef827c534ba596
Original thread:    https://lkml.kernel.org/lkml/000000000000f122ab058a303d94@google.com/T/#u

This bug has a C reproducer.

The original thread for this bug has received 2 replies; the last was 49 days
ago.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+7f3b6b106be8dcdcdeec@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000f122ab058a303d94@google.com

--------------------------------------------------------------------------------
Title:              KASAN: use-after-free Read in __lock_sock
Last occurred:      37 days ago
Reported:           248 days ago
Branches:           Mainline and others
Dashboard link:     https://syzkaller.appspot.com/bug?id'934d200d11e2fbae5c715bfefad252f41785fb
Original thread:    https://lkml.kernel.org/lkml/000000000000b98a67057ad7158a@google.com/T/#u

This bug has a syzkaller reproducer only.

This bug was bisected to:

	commit 8f840e47f190cbe61a96945c13e9551048d42cef
	Author: Xin Long <lucien.xin@gmail.com>
	Date:   Thu Apr 14 07:35:33 2016 +0000

	  sctp: add the sctp_diag.c file

The original thread for this bug received 6 replies; the last was 229 days ago.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+9276d76e83e3bcde6c99@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000b98a67057ad7158a@google.com

--------------------------------------------------------------------------------
Title:              KASAN: use-after-free Read in ip6_hold_safe (3)
Last occurred:      30 days ago
Reported:           77 days ago
Branches:           Mainline and others
Dashboard link:     https://syzkaller.appspot.com/bug?id³0a8ecdfbefe331ff4d3a0a601ae28d91a430e3
Original thread:    https://lkml.kernel.org/lkml/000000000000eba333058848fcc1@google.com/T/#u

Unfortunately, this bug does not have a reproducer.

No one has replied to the original thread for this bug yet.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+1de7f57dd018a516ae89@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000eba333058848fcc1@google.com

--------------------------------------------------------------------------------
Title:              BUG: unable to handle kernel paging request in sctp_v6_get_dst
Last occurred:      37 days ago
Reported:           205 days ago
Branches:           Mainline and others
Dashboard link:     https://syzkaller.appspot.com/bug?id´4ed5bb06a257ee2649272a08d7b68c184a7bfe
Original thread:    https://lkml.kernel.org/lkml/000000000000aa968f057e372583@google.com/T/#u

Unfortunately, this bug does not have a reproducer.

No one replied to the original thread for this bug.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+ae70faffd84f05295f27@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000aa968f057e372583@google.com

--------------------------------------------------------------------------------
Title:              KASAN: user-memory-access Read in ip6_hold_safe (3)
Last occurred:      33 days ago
Reported:           52 days ago
Branches:           bpf-next, linux-next, and net-next
Dashboard link:     https://syzkaller.appspot.com/bug?id\x1707ac302b38aaceb5b3df470b198244fe0205d0
Original thread:    https://lkml.kernel.org/lkml/000000000000a7776f058a3ce9db@google.com/T/#u

Unfortunately, this bug does not have a reproducer.

The original thread for this bug has received 3 replies; the last was 29 days
ago.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+a5b6e01ec8116d046842@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000a7776f058a3ce9db@google.com

--------------------------------------------------------------------------------
Title:              BUG: unable to handle kernel paging request in dst_release (2)
Last occurred:      41 days ago
Reported:           119 days ago
Branches:           net and net-next
Dashboard link:     https://syzkaller.appspot.com/bug?id\x1457062b2884c65d9c089e0abee144e7a6de1006
Original thread:    https://lkml.kernel.org/lkml/0000000000008cc65f0584fba1c4@google.com/T/#u

Unfortunately, this bug does not have a reproducer.

No one replied to the original thread for this bug.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+f7b46bf869b6ace2ea45@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/0000000000008cc65f0584fba1c4@google.com

--------------------------------------------------------------------------------
Title:              general protection fault in sctp_v6_get_dst (2)
Last occurred:      46 days ago
Reported:           126 days ago
Branches:           bpf-next, net, and net-next
Dashboard link:     https://syzkaller.appspot.com/bug?idó0835c913a031ac302f0124763139ec0eb4b5d3
Original thread:    https://lkml.kernel.org/lkml/000000000000e8335605846f099f@google.com/T/#u

Unfortunately, this bug does not have a reproducer.

No one replied to the original thread for this bug.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+5aab5972d41ebaa03f25@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000e8335605846f099f@google.com

--------------------------------------------------------------------------------
Title:              KASAN: slab-out-of-bounds Read in fib6_rule_action
Last occurred:      99 days ago
Reported:           91 days ago
Branches:           net
Dashboard link:     https://syzkaller.appspot.com/bug?id›73c38d6e1905753dad5374ca51271b6787a124
Original thread:    https://lkml.kernel.org/lkml/0000000000001645670587350783@google.com/T/#u

Unfortunately, this bug does not have a reproducer.

No one replied to the original thread for this bug.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+3edc8b0bf48d614ae4ef@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/0000000000001645670587350783@google.com

--------------------------------------------------------------------------------
Title:              general protection fault in reuseport_add_sock
Last occurred:      158 days ago
Reported:           157 days ago
Branches:           net
Dashboard link:     https://syzkaller.appspot.com/bug?idªe414b4366f2bb8cb759da428861e6e81942046
Original thread:    https://lkml.kernel.org/lkml/0000000000009e38f10581fd7499@google.com/T/#u

Unfortunately, this bug does not have a reproducer.

No one replied to the original thread for this bug.

If you fix this bug, please add the following tag to the commit:
    Reported-by: syzbot+675ee297acac988852c1@syzkaller.appspotmail.com

If you send any email or patch for this bug, please consider replying to the
original thread.  For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/0000000000009e38f10581fd7499@google.com

^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2019-07-24  2:27 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2019-07-24  2:27 Reminder: 10 open syzbot bugs in "net/sctp" subsystem Eric Biggers
2019-07-24  2:27 ` Eric Biggers

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.