Re: KASAN: slab-out-of-bounds Read in rds_cong_queue_updates

From: Sowmini Varadhan
Date: Mon Mar 19 2018 - 02:37:42 EST


On (03/19/18 09:29), Dmitry Vyukov wrote:
>
> This looks the same as:
>
> #syz dup: KASAN: use-after-free Read in rds_cong_queue_updates

correct, seems like the rds_destroy_pending() fixes did not seal
this race condition. I need to look at this more carefully to see
what race I missed.. no easy answer here, I am afraid.

--Sowmini