From mboxrd@z Thu Jan 1 00:00:00 1970 From: John Fastabend Subject: Re: KASAN: use-after-free Read in bpf_tcp_close Date: Mon, 2 Jul 2018 11:56:08 -0700 Message-ID: <745e7f32-a886-2c7c-77e5-72bafb5105c7@gmail.com> References: <000000000000ac9069056d1806c4@google.com> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit To: syzbot , ast@kernel.org, daniel@iogearbox.net, netdev@vger.kernel.org, syzkaller-bugs@googlegroups.com Return-path: Received: from mail-it0-f66.google.com ([209.85.214.66]:37924 "EHLO mail-it0-f66.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1753162AbeGBS53 (ORCPT ); Mon, 2 Jul 2018 14:57:29 -0400 Received: by mail-it0-f66.google.com with SMTP id v83-v6so13346980itc.3 for ; Mon, 02 Jul 2018 11:57:29 -0700 (PDT) In-Reply-To: <000000000000ac9069056d1806c4@google.com> Content-Language: en-US Sender: netdev-owner@vger.kernel.org List-ID: On 05/26/2018 01:54 AM, syzbot wrote: > Hello, > > syzbot found the following crash on: > > HEAD commit:    3fb48d881dbe Merge branch 'bpf-fib-mtu-check' > git tree:       bpf-next > console output: https://syzkaller.appspot.com/x/log.txt?x=15fc1977800000 > kernel config:  https://syzkaller.appspot.com/x/.config?x=b632d8e2c2ab2c1 > dashboard link: https://syzkaller.appspot.com/bug?extid=fce8f2462c403d02af98 > compiler:       gcc (GCC) 8.0.1 20180413 (experimental) > syzkaller repro:https://syzkaller.appspot.com/x/repro.syz?x=1310c857800000 > C reproducer:   https://syzkaller.appspot.com/x/repro.c?x=17de7177800000 > > IMPORTANT: if you fix the bug, please add the following tag to the commit: > Reported-by: syzbot+fce8f2462c403d02af98@syzkaller.appspotmail.com > > ================================================================== #syz fix: bpf: sockhash fix omitted bucket lock in sock_close