Netdev Archive on lore.kernel.org
 help / color / Atom feed
* Re: KASAN: slab-out-of-bounds Write in validate_chain
       [not found] <000000000000e672c6058bd7ee45@google.com>
@ 2019-06-25 23:07 ` syzbot
  2019-06-25 23:48   ` Eric Biggers
  0 siblings, 1 reply; 3+ messages in thread
From: syzbot @ 2019-06-25 23:07 UTC (permalink / raw)
  To: akpm, ast, cai, crecklin, daniel, john.fastabend, keescook,
	linux-kernel, linux-mm, netdev, syzkaller-bugs

syzbot has bisected this bug to:

commit e9db4ef6bf4ca9894bb324c76e01b8f1a16b2650
Author: John Fastabend <john.fastabend@gmail.com>
Date:   Sat Jun 30 13:17:47 2018 +0000

     bpf: sockhash fix omitted bucket lock in sock_close

bisection log:  https://syzkaller.appspot.com/x/bisect.txt?x=14a4e9b5a00000
start commit:   abf02e29 Merge tag 'pm-5.2-rc6' of git://git.kernel.org/pu..
git tree:       upstream
final crash:    https://syzkaller.appspot.com/x/report.txt?x=16a4e9b5a00000
console output: https://syzkaller.appspot.com/x/log.txt?x=12a4e9b5a00000
kernel config:  https://syzkaller.appspot.com/x/.config?x=28ec3437a5394ee0
dashboard link: https://syzkaller.appspot.com/bug?extid=8893700724999566d6a9
syz repro:      https://syzkaller.appspot.com/x/repro.syz?x=167098b2a00000

Reported-by: syzbot+8893700724999566d6a9@syzkaller.appspotmail.com
Fixes: e9db4ef6bf4c ("bpf: sockhash fix omitted bucket lock in sock_close")

For information about bisection process see: https://goo.gl/tpsmEJ#bisection

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: KASAN: slab-out-of-bounds Write in validate_chain
  2019-06-25 23:07 ` KASAN: slab-out-of-bounds Write in validate_chain syzbot
@ 2019-06-25 23:48   ` Eric Biggers
  2019-06-26 22:24     ` John Fastabend
  0 siblings, 1 reply; 3+ messages in thread
From: Eric Biggers @ 2019-06-25 23:48 UTC (permalink / raw)
  To: John Fastabend
  Cc: syzbot, akpm, ast, cai, crecklin, daniel, keescook, linux-kernel,
	linux-mm, netdev, bpf, syzkaller-bugs

Hi John,

On Tue, Jun 25, 2019 at 04:07:00PM -0700, syzbot wrote:
> syzbot has bisected this bug to:
> 
> commit e9db4ef6bf4ca9894bb324c76e01b8f1a16b2650
> Author: John Fastabend <john.fastabend@gmail.com>
> Date:   Sat Jun 30 13:17:47 2018 +0000
> 
>     bpf: sockhash fix omitted bucket lock in sock_close
> 

Are you working on this?  This is the 6th open syzbot report that has been
bisected to this commit, and I suspect it's the cause of many of the other
30 open syzbot reports I assigned to the bpf subsystem too
(https://lore.kernel.org/bpf/20190624050114.GA30702@sol.localdomain/).

Also, this is happening in mainline (v5.2-rc6).

- Eric

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: KASAN: slab-out-of-bounds Write in validate_chain
  2019-06-25 23:48   ` Eric Biggers
@ 2019-06-26 22:24     ` John Fastabend
  0 siblings, 0 replies; 3+ messages in thread
From: John Fastabend @ 2019-06-26 22:24 UTC (permalink / raw)
  To: Eric Biggers, John Fastabend
  Cc: syzbot, akpm, ast, cai, crecklin, daniel, keescook, linux-kernel,
	linux-mm, netdev, bpf, syzkaller-bugs

Eric Biggers wrote:
> Hi John,
> 
> On Tue, Jun 25, 2019 at 04:07:00PM -0700, syzbot wrote:
> > syzbot has bisected this bug to:
> > 
> > commit e9db4ef6bf4ca9894bb324c76e01b8f1a16b2650
> > Author: John Fastabend <john.fastabend@gmail.com>
> > Date:   Sat Jun 30 13:17:47 2018 +0000
> > 
> >     bpf: sockhash fix omitted bucket lock in sock_close
> > 
> 
> Are you working on this?  This is the 6th open syzbot report that has been
> bisected to this commit, and I suspect it's the cause of many of the other
> 30 open syzbot reports I assigned to the bpf subsystem too
> (https://lore.kernel.org/bpf/20190624050114.GA30702@sol.localdomain/).
> 
> Also, this is happening in mainline (v5.2-rc6).
> 
> - Eric

Should have a fix today. It seems syzbot has found this bug repeatedly.

.John

^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, back to index

Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
     [not found] <000000000000e672c6058bd7ee45@google.com>
2019-06-25 23:07 ` KASAN: slab-out-of-bounds Write in validate_chain syzbot
2019-06-25 23:48   ` Eric Biggers
2019-06-26 22:24     ` John Fastabend

Netdev Archive on lore.kernel.org

Archives are clonable:
	git clone --mirror https://lore.kernel.org/netdev/0 netdev/git/0.git
	git clone --mirror https://lore.kernel.org/netdev/1 netdev/git/1.git

	# If you have public-inbox 1.1+ installed, you may
	# initialize and index your mirror using the following commands:
	public-inbox-init -V2 netdev netdev/ https://lore.kernel.org/netdev \
		netdev@vger.kernel.org netdev@archiver.kernel.org
	public-inbox-index netdev


Newsgroup available over NNTP:
	nntp://nntp.lore.kernel.org/org.kernel.vger.netdev


AGPL code for this site: git clone https://public-inbox.org/ public-inbox