From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org X-Spam-Level: X-Spam-Status: No, score=-13.4 required=3.0 tests=DKIMWL_WL_MED,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI, MENTIONS_GIT_HOSTING,SPF_HELO_NONE,SPF_PASS,USER_IN_DEF_DKIM_WL autolearn=ham autolearn_force=no version=3.4.0 Received: from mail.kernel.org (mail.kernel.org [198.145.29.99]) by smtp.lore.kernel.org (Postfix) with ESMTP id 2B960C43603 for ; Thu, 5 Dec 2019 10:16:21 +0000 (UTC) Received: from vger.kernel.org (vger.kernel.org [209.132.180.67]) by mail.kernel.org (Postfix) with ESMTP id F2561205ED for ; Thu, 5 Dec 2019 10:16:20 +0000 (UTC) Authentication-Results: mail.kernel.org; dkim=pass (2048-bit key) header.d=google.com header.i=@google.com header.b="lCZ22bHz" Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1729044AbfLEKQU (ORCPT ); Thu, 5 Dec 2019 05:16:20 -0500 Received: from mail-qt1-f193.google.com ([209.85.160.193]:32831 "EHLO mail-qt1-f193.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1729018AbfLEKQU (ORCPT ); Thu, 5 Dec 2019 05:16:20 -0500 Received: by mail-qt1-f193.google.com with SMTP id d5so3059267qto.0 for ; Thu, 05 Dec 2019 02:16:19 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=5K3iSfguK9BgLZmuNv+P78rfwEAvYBwmmPVubK0s/pU=; b=lCZ22bHzgt5kpBC9O6jPqAKgkhjGIQobnqGoJRzGTE90z5sZbBQhcrTLXtFcemHhB2 Rg6cHalQvuAg0CIGToyD3T1xZXTb8k08Xh/1ZXrZfMLT6UwzJTzrWHYUV3cRRsMl9xPd e2lg4dNPpTTrEainmBfCe3YWqbVqS2qeYG0Nik6vGzaNGrFbe12HLZZYeSLDGc8yczVq K2LGYznvnziZpgOoBDpITggU3BXGsdLpk9EFF28TtBghesL8yDOXMt+EAiYCuONfcNpA hNkCtewjlvVS5UvMzp8S1YY2cKnjX69xWEx0oGyaM3qO8U9AuNswgHen3fj/MgNdK9d4 7GcA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=5K3iSfguK9BgLZmuNv+P78rfwEAvYBwmmPVubK0s/pU=; b=YeXVQ1upZN8maf1aosPJeDOCjm/O7Fp82BDgZ/bYVNq1eTuizMAsiFvGeWz8tZOquu 403l9TYNtv/PdTknsbpf7OKsSNV+aHWEse3lidD1asX5Ft7F475+7OQPEtp7WrbDkvJF XdV2z8cBm+Vyif1RjdH2ur6vtaYFssW2P7Hxe9TTPwq8P345O0pfarTs1g+TZ2sKu5dp pjubSnO+w0rK8V9V8iN6JWKDBknnT7a9Ryy5aVQxj6gF56SAA1j2ZZUdlQr7Zhn9xNHC KTbJk0Tg/xy1PkOddZct/Sf65nC/ZytzKz5uWlt3zf7OW1V7/F/7NsZavOSuJ50TyNpL Q8Xw== X-Gm-Message-State: APjAAAU0Uj6MFgR2iNkg7XehVB+weJpIlJIANp1Wj2w0ReDrJ55NaEWd MclAYaYEjv4/SOVidx24xqUV11fpAPuRopcjUiLfUA== X-Google-Smtp-Source: APXvYqzKqDCCc0kbBiNwk/8CDZ3khjRTfsJD5k2PvUhdgdLt8YCzmfSIZLXTyRfa9Tebhhcml+smc9OpBFFXQlE1Yqk= X-Received: by 2002:ac8:2489:: with SMTP id s9mr6779647qts.257.1575540979068; Thu, 05 Dec 2019 02:16:19 -0800 (PST) MIME-Version: 1.0 References: <0000000000003e640e0598e7abc3@google.com> <41c082f5-5d22-d398-3bdd-3f4bf69d7ea3@redhat.com> In-Reply-To: <41c082f5-5d22-d398-3bdd-3f4bf69d7ea3@redhat.com> From: Dmitry Vyukov Date: Thu, 5 Dec 2019 11:16:08 +0100 Message-ID: Subject: Re: KASAN: slab-out-of-bounds Read in fbcon_get_font To: Paolo Bonzini Cc: syzbot , Andrey Ryabinin , Bartlomiej Zolnierkiewicz , Daniel Thompson , Daniel Vetter , DRI , ghalat@redhat.com, Gleb Natapov , gwshan@linux.vnet.ibm.com, "H. Peter Anvin" , James Morris , kasan-dev , KVM list , Linux Fbdev development list , LKML , linux-security-module , Maarten Lankhorst , Ingo Molnar , Michael Ellerman , Tetsuo Handa , Russell Currey , Sam Ravnborg , "Serge E. Hallyn" , stewart@linux.vnet.ibm.com, syzkaller-bugs , Kentaro Takeda , Thomas Gleixner , "the arch/x86 maintainers" Content-Type: text/plain; charset="UTF-8" Sender: owner-linux-security-module@vger.kernel.org Precedence: bulk List-ID: On Thu, Dec 5, 2019 at 11:13 AM Paolo Bonzini wrote: > > On 04/12/19 22:41, syzbot wrote: > > syzbot has bisected this bug to: > > > > commit 2de50e9674fc4ca3c6174b04477f69eb26b4ee31 > > Author: Russell Currey > > Date: Mon Feb 8 04:08:20 2016 +0000 > > > > powerpc/powernv: Remove support for p5ioc2 > > > > bisection log: https://syzkaller.appspot.com/x/bisect.txt?x=127a042ae00000 > > start commit: 76bb8b05 Merge tag 'kbuild-v5.5' of > > git://git.kernel.org/p.. > > git tree: upstream > > final crash: https://syzkaller.appspot.com/x/report.txt?x=117a042ae00000 > > console output: https://syzkaller.appspot.com/x/log.txt?x=167a042ae00000 > > kernel config: https://syzkaller.appspot.com/x/.config?x=dd226651cb0f364b > > dashboard link: > > https://syzkaller.appspot.com/bug?extid=4455ca3b3291de891abc > > syz repro: https://syzkaller.appspot.com/x/repro.syz?x=11181edae00000 > > C reproducer: https://syzkaller.appspot.com/x/repro.c?x=105cbb7ae00000 > > > > Reported-by: syzbot+4455ca3b3291de891abc@syzkaller.appspotmail.com > > Fixes: 2de50e9674fc ("powerpc/powernv: Remove support for p5ioc2") > > > > For information about bisection process see: > > https://goo.gl/tpsmEJ#bisection > > > > Why is everybody being CC'd, even if the bug has nothing to do with the > person's subsystem? The To list should be intersection of 2 groups of emails: result of get_maintainers.pl on the file identified as culprit in the crash message + emails extracted from the bisected to commit.