Re: KASAN: use-after-free Write in tcindex_change

From: Dmitry Vyukov
Date: Wed Nov 11 2020 - 08:12:03 EST

Next message: Dmitry Vyukov: "Re: general protection fault in tcf_action_destroy (2)"
Previous message: Dmitry Vyukov: "Re: WARNING: refcount bug in do_enable_set"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Apr 17, 2020 at 9:05 PM syzbot
<syzbot+ba4bcf1563f90386910f@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
>
> syzbot suspects this bug was fixed by commit:
>
> commit 0d1c3530e1bd38382edef72591b78e877e0edcd3
> Author: Cong Wang <xiyou.wangcong@xxxxxxxxx>
> Date: Thu Mar 12 05:42:28 2020 +0000
>
> net_sched: keep alloc_hash updated after hash allocation
>
> bisection log: https://syzkaller.appspot.com/x/bisect.txt?x=15a956d7e00000
> start commit: ac309e77 Merge branch 'for-linus' of git://git.kernel.org/..
> git tree: upstream
> kernel config: https://syzkaller.appspot.com/x/.config?x=6dfa02302d6db985
> dashboard link: https://syzkaller.appspot.com/bug?extid=ba4bcf1563f90386910f
> syz repro: https://syzkaller.appspot.com/x/repro.syz?x=1771b973e00000
> C reproducer: https://syzkaller.appspot.com/x/repro.c?x=1248a61de00000
>
> If the result looks correct, please mark the bug fixed by replying with:
>
> #syz fix: net_sched: keep alloc_hash updated after hash allocation
>
> For information about bisection process see: https://goo.gl/tpsmEJ#bisection

#syz fix: net_sched: keep alloc_hash updated after hash allocation

Next message: Dmitry Vyukov: "Re: general protection fault in tcf_action_destroy (2)"
Previous message: Dmitry Vyukov: "Re: WARNING: refcount bug in do_enable_set"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]