Re: [syzbot] KASAN: use-after-free Read in filp_close

From: Al Viro
Date: Sun Jun 05 2022 - 07:03:00 EST

Next message: richard clark: "Re: Question about SPIs' interrupt trigger type restrictions"
Previous message: Sudip Mukherjee: "mainline build failure due to 0a97953fd221 ("lib: add bitmap_{from,to}_arr64")"
In reply to: syzbot: "Re: [syzbot] KASAN: use-after-free Read in filp_close"
Next in thread: syzbot: "Re: [syzbot] KASAN: use-after-free Read in filp_close"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, Jun 05, 2022 at 01:49:19AM -0700, syzbot wrote:
> syzbot has found a reproducer for the following issue on:
>
> HEAD commit: 952923ddc011 Merge tag 'pull-18-rc1-work.namei' of git://g..
> git tree: upstream
> console output: https://syzkaller.appspot.com/x/log.txt?x=173fb6dbf00000
> kernel config: https://syzkaller.appspot.com/x/.config?x=3096247591885bfa
> dashboard link: https://syzkaller.appspot.com/bug?extid=47dd250f527cb7bebf24
> compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
> syz repro: https://syzkaller.appspot.com/x/repro.syz?x=114f7bcdf00000
> C reproducer: https://syzkaller.appspot.com/x/repro.c?x=1659a94ff00000

_Very_ interesting. Has anything of that sort been observed on -next?

Because everything in that branch had been present there since at least
January.

Next message: richard clark: "Re: Question about SPIs' interrupt trigger type restrictions"
Previous message: Sudip Mukherjee: "mainline build failure due to 0a97953fd221 ("lib: add bitmap_{from,to}_arr64")"
In reply to: syzbot: "Re: [syzbot] KASAN: use-after-free Read in filp_close"
Next in thread: syzbot: "Re: [syzbot] KASAN: use-after-free Read in filp_close"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]