Re: Progress in ticket

From: Andrey Kalachev
Date: Thu Jun 27 2024 - 11:55:45 EST

Next message: Jens Axboe: "Re: [PATCH] block: clean up the check in blkdev_iomap_begin()"
Previous message: Conor Dooley: "Re: [PATCH v4 1/2] dt-bindings: clock: Add MediaTek MT6735 clock and reset bindings"
In reply to: Michal Switala: "Progress in ticket"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Jun 27, 2024 at 01:55:44PM +0200, Michal Switala wrote:

Hello,

I am currently looking at this bug and checked your reproduction.
Unfortunately, it doesn's set xfrm transformations in the same way as
syz reproducer. The effect is that in xfrm_lookup_with_ifid, the packet goes to
the nopol section instead of notransform as in the original.

Regards
Michal

Hi Michal.

Most likely system("ip xfrm policy update src 254.136.0.0/0 dst 255.1.0.0/0 dir out flag icmp") does not work.

syzkaller uses Busybox based disk images.

ip is present there (/sbin/ip), but it has limited functionality.
In particular, the xfrm framework commands are not supported.
The original reproducer worked with ipsec/xfrm via netlink.
The rewritten reproducer will work with a Debian-based image with iproute2 installed.
I made a Debian image of bullseye (the easiest way to do that is to use create-image.sh).

Regards,
Andrey

Next message: Jens Axboe: "Re: [PATCH] block: clean up the check in blkdev_iomap_begin()"
Previous message: Conor Dooley: "Re: [PATCH v4 1/2] dt-bindings: clock: Add MediaTek MT6735 clock and reset bindings"
In reply to: Michal Switala: "Progress in ticket"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]