From mboxrd@z Thu Jan 1 00:00:00 1970 From: John Fastabend Subject: Re: KASAN: use-after-free Write in bpf_tcp_close Date: Fri, 8 Jun 2018 09:03:00 -0700 Message-ID: References: <000000000000cb4149056d3587f5@google.com> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit Cc: syzbot , Alexei Starovoitov , LKML , netdev , syzkaller-bugs To: Dmitry Vyukov , Daniel Borkmann Return-path: In-Reply-To: Content-Language: en-US Sender: linux-kernel-owner@vger.kernel.org List-Id: netdev.vger.kernel.org On 06/07/2018 09:58 AM, Dmitry Vyukov wrote: > On Mon, May 28, 2018 at 12:15 AM, Daniel Borkmann wrote: >> [ +John ] >> >> On 05/27/2018 10:06 PM, syzbot wrote: >>> Hello, >>> >>> syzbot found the following crash on: >>> >>> HEAD commit: ff4fb475cea8 Merge branch 'btf-uapi-cleanups' >>> git tree: bpf-next >>> console output: https://syzkaller.appspot.com/x/log.txt?x=12b3d577800000 >>> kernel config: https://syzkaller.appspot.com/x/.config?x=b632d8e2c2ab2c1 >>> dashboard link: https://syzkaller.appspot.com/bug?extid=31025a5f3f7650081204 >>> compiler: gcc (GCC) 8.0.1 20180413 (experimental) >>> syzkaller repro:https://syzkaller.appspot.com/x/repro.syz?x=109a2f37800000 >>> C reproducer: https://syzkaller.appspot.com/x/repro.c?x=171a727b800000 >>> >>> IMPORTANT: if you fix the bug, please add the following tag to the commit: >>> Reported-by: syzbot+31025a5f3f7650081204@syzkaller.appspotmail.com >> >> Should be fixed by: https://patchwork.ozlabs.org/patch/920695/ > > #syz fix: bpf: sockhash fix race with bpf_tcp_close and map delete > Same here 'bpf: sockhash fix race with bpf_tcp_close and map delete" was dropped and a new fix will be posted shortly. Thanks! John