Re: KASAN: use-after-free Read in aead_recvmsg

From: Stephan Mueller
Date: Tue Nov 28 2017 - 01:30:55 EST

Next message: Tobin C. Harding: "[PATCH] leaking_addresses: add support for 32-bit kernel addresses"
Previous message: Tobin C. Harding: "Re: [PATCH v2] scripts: leaking_addresses: add support for 32-bit kernel addresses"
In reply to: Eric Biggers: "Re: KASAN: use-after-free Read in aead_recvmsg"
Next in thread: Eric Biggers: "Re: KASAN: use-after-free Read in aead_recvmsg"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Am Montag, 27. November 2017, 23:43:08 CET schrieb Eric Biggers:

Hi Eric,

> No, that doesn't help. I tested v4.15-rc1 with all the extra commits from
> crypto-2.6.git/master applied:
>
> crypto: algif_aead - skip SGL entries with NULL page
> crypto: af_alg - remove locking in async callback
> crypto: skcipher - Fix skcipher_walk_aead_common
>
> Did you use the .config the bot provided? It's possible the bug is only
> noticable with KASAN enabled.

Not so far, but the bug seemed to be there without my patch and then gone
after testing it with my patch. It seems not.

I will use your config then.

Thank you.

Ciao
Stephan

Next message: Tobin C. Harding: "[PATCH] leaking_addresses: add support for 32-bit kernel addresses"
Previous message: Tobin C. Harding: "Re: [PATCH v2] scripts: leaking_addresses: add support for 32-bit kernel addresses"
In reply to: Eric Biggers: "Re: KASAN: use-after-free Read in aead_recvmsg"
Next in thread: Eric Biggers: "Re: KASAN: use-after-free Read in aead_recvmsg"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]