Re: [syzbot] [nilfs?] [mm?] KASAN: slab-use-after-free Read in lru_add_fn

From: Hillf Danton
Date: Wed Jun 12 2024 - 19:17:08 EST

Next message: Bryan Brattlof: "[PATCH v2 3/5] dt-bindings: mfd: syscon: add TI's opp table compatible"
Previous message: Isaku Yamahata: "Re: [PATCH] KVM: interrupt kvm_gmem_populate() on signals"
In reply to: syzbot: "Re: [syzbot] [nilfs?] [mm?] KASAN: slab-use-after-free Read in lru_add_fn"
Next in thread: syzbot: "Re: [syzbot] [nilfs?] [mm?] KASAN: slab-use-after-free Read in lru_add_fn"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 11 Jun 2024 11:10:20 -0700
> syzbot has found a reproducer for the following issue on:
>
> HEAD commit: 83a7eefedc9b Linux 6.10-rc3
> git tree: upstream
> C reproducer: https://syzkaller.appspot.com/x/repro.c?x=17c645e2980000

#syz test https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master

--- x/fs/nilfs2/the_nilfs.c
+++ y/fs/nilfs2/the_nilfs.c
@@ -922,7 +922,6 @@ void nilfs_put_root(struct nilfs_root *r
spin_unlock(&nilfs->ns_cptree_lock);

nilfs_sysfs_delete_snapshot_group(root);
- iput(root->ifile);

kfree(root);
}
--

Next message: Bryan Brattlof: "[PATCH v2 3/5] dt-bindings: mfd: syscon: add TI's opp table compatible"
Previous message: Isaku Yamahata: "Re: [PATCH] KVM: interrupt kvm_gmem_populate() on signals"
In reply to: syzbot: "Re: [syzbot] [nilfs?] [mm?] KASAN: slab-use-after-free Read in lru_add_fn"
Next in thread: syzbot: "Re: [syzbot] [nilfs?] [mm?] KASAN: slab-use-after-free Read in lru_add_fn"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]