Re: [syzbot] KASAN: use-after-free Write in __io_free_req

From: syzbot
Date: Sun Oct 31 2021 - 18:59:13 EST

Next message: Benson Leung: "Re: [PATCH 1/2] platform/chrome: cros_ec_proto: Use EC struct for features"
Previous message: Maxim Levitsky: "Re: [PATCH v2 28/43] KVM: VMX: Remove vCPU from PI wakeup list before updating PID.NV"
In reply to: Pavel Begunkov: "Re: [syzbot] KASAN: use-after-free Write in __io_free_req"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

syzbot has bisected this issue to:

commit 34ced75ca1f63fac6148497971212583aa0f7a87
Author: Xiaoguang Wang <xiaoguang.wang@xxxxxxxxxxxxxxxxx>
Date: Mon Oct 25 05:38:48 2021 +0000

io_uring: reduce frequent add_wait_queue() overhead for multi-shot poll request

bisection log: https://syzkaller.appspot.com/x/bisect.txt?x=14f83bbab00000
start commit: bdcc9f6a5682 Add linux-next specific files for 20211029
git tree: linux-next
final oops: https://syzkaller.appspot.com/x/report.txt?x=16f83bbab00000
console output: https://syzkaller.appspot.com/x/log.txt?x=12f83bbab00000
kernel config: https://syzkaller.appspot.com/x/.config?x=cea91ee10b0cd274
dashboard link: https://syzkaller.appspot.com/bug?extid=78b76ebc91042904f34e
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=10cf03e2b00000

Reported-by: syzbot+78b76ebc91042904f34e@xxxxxxxxxxxxxxxxxxxxxxxxx
Fixes: 34ced75ca1f6 ("io_uring: reduce frequent add_wait_queue() overhead for multi-shot poll request")

For information about bisection process see: https://goo.gl/tpsmEJ#bisection

Next message: Benson Leung: "Re: [PATCH 1/2] platform/chrome: cros_ec_proto: Use EC struct for features"
Previous message: Maxim Levitsky: "Re: [PATCH v2 28/43] KVM: VMX: Remove vCPU from PI wakeup list before updating PID.NV"
In reply to: Pavel Begunkov: "Re: [syzbot] KASAN: use-after-free Write in __io_free_req"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]