From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <linux-usb-owner@vger.kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 8EE39EB64DD
	for <linux-usb@archiver.kernel.org>; Thu, 20 Jul 2023 11:55:29 +0000 (UTC)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S230150AbjGTLz2 (ORCPT <rfc822;linux-usb@archiver.kernel.org>);
        Thu, 20 Jul 2023 07:55:28 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:52176 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S229682AbjGTLz1 (ORCPT
        <rfc822;linux-usb@vger.kernel.org>); Thu, 20 Jul 2023 07:55:27 -0400
Received: from mail-wm1-x329.google.com (mail-wm1-x329.google.com [IPv6:2a00:1450:4864:20::329])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 895552727
        for <linux-usb@vger.kernel.org>; Thu, 20 Jul 2023 04:55:04 -0700 (PDT)
Received: by mail-wm1-x329.google.com with SMTP id 5b1f17b1804b1-3fbd33a1819so57095e9.1
        for <linux-usb@vger.kernel.org>; Thu, 20 Jul 2023 04:55:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20221208; t=1689854102; x=1690458902;
        h=content-transfer-encoding:cc:to:subject:message-id:date:from
         :in-reply-to:references:mime-version:from:to:cc:subject:date
         :message-id:reply-to;
        bh=c7W1A++0DmK32WknpFfFMJvCsm3vvkm9n73s4zuJV0A=;
        b=ZN0pvitrpyGLGHO7DXi/CBmlTQA8KHBrZMzlz3oGazd+8bDa7qzIJ+Xj0z2GiJtZOU
         iCJQVdRt5eqS+el53qE+5cpS4za7pvXs4GpwDW5IktKoQvxWYZ5rx/Ga6yhAjObCcdBb
         CeViB+SqwwF2cWcYfmK3NRXmWkPMqjHis6+i6u2uTyaKwPNaHLc1e4idr8pamrQC5n3R
         0e0Jxy+GNG1pNJKDlI9VoItQwXadT/nWW2A1l9DPTQRiCbiXdBE7X1DOxlBvpRlvCwsM
         7G3DwHpOmIe74X2B9q8VPwu32pr2xqg4g8GNNxX8GOhlqTtr3G4WER6Yun8AP+yQYARz
         /jVg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20221208; t=1689854103; x=1690458903;
        h=content-transfer-encoding:cc:to:subject:message-id:date:from
         :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc
         :subject:date:message-id:reply-to;
        bh=c7W1A++0DmK32WknpFfFMJvCsm3vvkm9n73s4zuJV0A=;
        b=atJJLqC9YVsZAiEbPwDn9gPhlgDhDZCC01j2BR27ajC3GYCO3CsL2TKkOPU2MNuusB
         KcAc6ZXVYWSQJ4hCj/AWkiahlV30h1rc3MxiMG6PfB+3bIAkK30/rGO+MdtCFh59GB+X
         wo28PaApxSRohhLVxqCpywJtvVIoA0pCWWznBx2S0e3eeZ+8AYwWFkcu6SQjiSQfCWPS
         exveLU7TGw/rKxPG8NCpD98A9K/W4zZatCIEhxMWSVC7Bodm0SMtdOcskyZL8gDAzQ3B
         IwjWJGV+bcA/0DKZ2OLhGczpJInZEe+aZf59nB9YHRKMAzeizSqFXf+D/mGHmHLh2LBe
         ZEqA==
X-Gm-Message-State: ABy/qLY1umI+zCNactyB9xRtkIgSy6DnKitufrW/wwSylk4Vw0Zc3P4e
        +6+KLJ88jNF7kfg4YM2IbUmiZs4FrkmmA9G6jpf9zA==
X-Google-Smtp-Source: APBJJlF6quPHTwSBR/5D8iYhvQDfr+5h6tZoGC1DPqjiaFa0POXQFNfCEXlT/1hj/qSzkPD5fWrzqYeGqeg9c27DzZI=
X-Received: by 2002:a05:600c:450e:b0:3f7:e463:a0d6 with SMTP id
 t14-20020a05600c450e00b003f7e463a0d6mr101638wmo.0.1689854102589; Thu, 20 Jul
 2023 04:55:02 -0700 (PDT)
MIME-Version: 1.0
References: <0000000000003ee3610599d20096@google.com> <000000000000c26a66060035ad18@google.com>
 <20230712211112.GD30092@pendragon.ideasonboard.com>
In-Reply-To: <20230712211112.GD30092@pendragon.ideasonboard.com>
From:   Aleksandr Nogikh <nogikh@google.com>
Date:   Thu, 20 Jul 2023 13:54:50 +0200
Message-ID: <CANp29Y7Y=0m4y0awEd5E4sgWYvpxbHQUTOMXH+6ub6BdBoEGwQ@mail.gmail.com>
Subject: Re: [syzbot] KASAN: use-after-free Read in __media_entity_remove_links
To:     Laurent Pinchart <laurent.pinchart@ideasonboard.com>
Cc:     syzbot <syzbot+0b0095300dfeb8a83dc8@syzkaller.appspotmail.com>,
        andreyknvl@google.com, linux-kernel@vger.kernel.org,
        linux-media@vger.kernel.org, linux-usb@vger.kernel.org,
        mchehab@kernel.org, sakari.ailus@linux.intel.com,
        syzkaller-bugs@googlegroups.com
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Precedence: bulk
List-ID: <linux-usb.vger.kernel.org>
X-Mailing-List: linux-usb@vger.kernel.org

On Wed, Jul 12, 2023 at 11:11=E2=80=AFPM Laurent Pinchart
<laurent.pinchart@ideasonboard.com> wrote:
>
> On Tue, Jul 11, 2023 at 06:00:08AM -0700, syzbot wrote:
> > This bug is marked as fixed by commit:
> > media: uvcvideo: Avoid cyclic entity chains due to malformed
> >
> > But I can't find it in the tested trees[1] for more than 90 days.
> > Is it a correct commit? Please update it by replying:
>
> #syz fix: media: uvcvideo: Avoid cyclic entity chains due to malformed US=
B descriptors

Thanks for providing the correct name!

>
> Can a commit ID be used as well ?

The problem with commit hashes is that we fuzz quite a number of
different Linux trees and every new commit might appear in all of them
with totally different hashes. Name is a much more reliable
identifier, so that's what we currently require in #syz fix.

>
> > Until then the bug is still considered open and new crashes with
> > the same signature are ignored.
> >
> > Kernel: Linux
> > Dashboard link: https://syzkaller.appspot.com/bug?extid=3D0b0095300dfeb=
8a83dc8
> >
> > ---
> > [1] I expect the commit to be present in:
> >
> > 1. for-kernelci branch of
> > git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git
> >
> > 2. master branch of
> > git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next.git
> >
> > 3. master branch of
> > git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf.git
> >
> > 4. main branch of
> > git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next.git
> >
> > The full list of 9 trees can be found at
> > https://syzkaller.appspot.com/upstream/repos
>
> --
> Regards,
>
> Laurent Pinchart