Re: [syzbot] [io-uring?] KASAN: use-after-free Read in io_wq_worker_wake

From: syzbot
Date: Mon Mar 13 2023 - 10:32:29 EST

Next message: David Vernet: "Re: [PATCH bpf-next] bpf, doc: use internal linking for link to netdev FAQ"
Previous message: Ilpo Järvinen: "RE: [EXT] Re: [PATCH v9 3/3] Bluetooth: NXP: Add protocol support for NXP Bluetooth chipsets"
Next in thread: Jens Axboe: "Re: [syzbot] [io-uring?] KASAN: use-after-free Read in io_wq_worker_wake"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

syzbot suspects this issue was fixed by commit:

commit e6db6f9398dadcbc06318a133d4c44a2d3844e61
Author: Jens Axboe <axboe@xxxxxxxxx>
Date: Sun Jan 8 17:39:17 2023 +0000

io_uring/io-wq: only free worker if it was allocated for creation

bisection log: https://syzkaller.appspot.com/x/bisect.txt?x=113a76fac80000
start commit: 1fe4fd6f5cad Merge tag 'xfs-6.2-fixes-2' of git://git.kern..
git tree: upstream
kernel config: https://syzkaller.appspot.com/x/.config?x=8b79b14037065d92
dashboard link: https://syzkaller.appspot.com/bug?extid=b3ba2408ce0c74bb9230
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=1388e5f2480000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=127f1aa4480000

If the result looks correct, please mark the issue as fixed by replying with:

#syz fix: io_uring/io-wq: only free worker if it was allocated for creation

For information about bisection process see: https://goo.gl/tpsmEJ#bisection

Next message: David Vernet: "Re: [PATCH bpf-next] bpf, doc: use internal linking for link to netdev FAQ"
Previous message: Ilpo Järvinen: "RE: [EXT] Re: [PATCH v9 3/3] Bluetooth: NXP: Add protocol support for NXP Bluetooth chipsets"
Next in thread: Jens Axboe: "Re: [syzbot] [io-uring?] KASAN: use-after-free Read in io_wq_worker_wake"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]