From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org X-Spam-Level: X-Spam-Status: No, score=-2.6 required=3.0 tests=DKIMWL_WL_HIGH,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,MAILING_LIST_MULTI,SPF_HELO_NONE,SPF_PASS, USER_AGENT_SANE_1 autolearn=no autolearn_force=no version=3.4.0 Received: from mail.kernel.org (mail.kernel.org [198.145.29.99]) by smtp.lore.kernel.org (Postfix) with ESMTP id 89D0EC76186 for ; Wed, 24 Jul 2019 02:41:25 +0000 (UTC) Received: from vger.kernel.org (vger.kernel.org [209.132.180.67]) by mail.kernel.org (Postfix) with ESMTP id 5E20620828 for ; Wed, 24 Jul 2019 02:41:25 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=default; t=1563936085; bh=4BJpVnz9NtoVGKEWXigcPY+GsDWEePca0cBXnvCEgkM=; h=Date:From:To:Cc:Subject:List-ID:From; b=nsuWmxKUUcNGS/sOr2ZW1m9mINQ2Vdnrk8u7MKNDgUU75Ur8c9qhMZ70+QZXHjOyi 5vN0+52dBL5jYO/nNd9wz14jVQB/nC75OSRUUtxi9IJRwNgr2TlKvSIrRQFG7xmR2b FBKV8YmTYadfZnL86TuIcctQL8158Nbm0ryexibY= Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726186AbfGXClY (ORCPT ); Tue, 23 Jul 2019 22:41:24 -0400 Received: from mail.kernel.org ([198.145.29.99]:46098 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1725372AbfGXClY (ORCPT ); Tue, 23 Jul 2019 22:41:24 -0400 Received: from sol.localdomain (c-24-5-143-220.hsd1.ca.comcast.net [24.5.143.220]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPSA id B8BE22054F; Wed, 24 Jul 2019 02:41:22 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=default; t=1563936082; bh=4BJpVnz9NtoVGKEWXigcPY+GsDWEePca0cBXnvCEgkM=; h=Date:From:To:Cc:Subject:From; b=LSLibIUYCFxOTNdFqOiV8bSMzshK13x3F9+125mPy6j0A4mjE+z/yh+eOQ0EfiaKr +FDmwlluz8UAw4Z0GInpjFZJg7Rl3+aqsoWcQU+O3r11QkfB0wcWUhMrBvlG7AVYxp 7rKnZZ2CmRLgMGzf3GGn0KWN44wPsbshqVerSe2s= Date: Tue, 23 Jul 2019 19:41:21 -0700 From: Eric Biggers To: linux-input@vger.kernel.org, Jiri Kosina , Benjamin Tissoires Cc: linux-kernel@vger.kernel.org, syzkaller-bugs@googlegroups.com Subject: Reminder: 3 open syzbot bugs in hid subsystem Message-ID: <20190724024121.GD643@sol.localdomain> Mail-Followup-To: linux-input@vger.kernel.org, Jiri Kosina , Benjamin Tissoires , linux-kernel@vger.kernel.org, syzkaller-bugs@googlegroups.com MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.12.1 (2019-06-15) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org [This email was generated by a script. Let me know if you have any suggestions to make it better, or if you want it re-generated with the latest status.] Of the currently open syzbot reports against the upstream kernel, I've manually marked 3 of them as possibly being bugs in the hid subsystem. I've listed these reports below, sorted by an algorithm that tries to list first the reports most likely to be still valid, important, and actionable. Of these 3 bugs, 2 were seen in mainline in the last week. If you believe a bug is no longer valid, please close the syzbot report by sending a '#syz fix', '#syz dup', or '#syz invalid' command in reply to the original thread, as explained at https://goo.gl/tpsmEJ#status If you believe I misattributed a bug to the hid subsystem, please let me know, and if possible forward the report to the correct people or mailing list. Here are the bugs: -------------------------------------------------------------------------------- Title: KASAN: use-after-free Read in hidraw_ioctl Last occurred: 0 days ago Reported: 0 days ago Branches: Mainline (with usb-fuzzer patches) Dashboard link: https://syzkaller.appspot.com/bug?id=c7e345ba243bc4476aae52a3354ccbd2a90e344e Original thread: https://lkml.kernel.org/lkml/000000000000c07378058e589a29@google.com/T/#u This bug has a C reproducer. No one has replied to the original thread for this bug yet. This looks like a bug in a hid USB driver. If you fix this bug, please add the following tag to the commit: Reported-by: syzbot+ded1794a717e3b235226@syzkaller.appspotmail.com If you send any email or patch for this bug, please reply to the original thread. For the git send-email command to use, or tips on how to reply if the thread isn't in your mailbox, see the "Reply instructions" at https://lkml.kernel.org/r/000000000000c07378058e589a29@google.com -------------------------------------------------------------------------------- Title: KASAN: use-after-free Read in usbhid_power Last occurred: 0 days ago Reported: 0 days ago Branches: Mainline (with usb-fuzzer patches) Dashboard link: https://syzkaller.appspot.com/bug?id=36143971c5b9b0341ad4018313375a5a40cb52c8 Original thread: https://lkml.kernel.org/lkml/000000000000bb4247058e589a20@google.com/T/#u This bug has a C reproducer. No one has replied to the original thread for this bug yet. This looks like a bug in a hid USB driver. If you fix this bug, please add the following tag to the commit: Reported-by: syzbot+ef5de9c4f99c4edb4e49@syzkaller.appspotmail.com If you send any email or patch for this bug, please reply to the original thread. For the git send-email command to use, or tips on how to reply if the thread isn't in your mailbox, see the "Reply instructions" at https://lkml.kernel.org/r/000000000000bb4247058e589a20@google.com -------------------------------------------------------------------------------- Title: INFO: task hung in fsnotify_connector_destroy_workfn (2) Last occurred: 32 days ago Reported: 311 days ago Branches: Mainline and others Dashboard link: https://syzkaller.appspot.com/bug?id=d6011f00f49a2253c15a60ac102b2ea79e3ee8de Original thread: https://lkml.kernel.org/lkml/0000000000006364200575dfc280@google.com/T/#u This bug has a syzkaller reproducer only. The original thread for this bug received 7 replies; the last was 301 days ago. If you fix this bug, please add the following tag to the commit: Reported-by: syzbot+6fb572170402d311dd39@syzkaller.appspotmail.com If you send any email or patch for this bug, please consider replying to the original thread. For the git send-email command to use, or tips on how to reply if the thread isn't in your mailbox, see the "Reply instructions" at https://lkml.kernel.org/r/0000000000006364200575dfc280@google.com