Re: KASAN: use-after-free Write in skb_release_data (2)

From: syzbot
Date: Mon Mar 25 2019 - 04:19:09 EST

Next message: Matti Vaittinen: "Re: [PATCH v10 0/9] support ROHM BD70528 PMIC"
Previous message: John Ogness: "Re: [ANNOUNCE] v5.0.3-rt1"
In reply to: syzbot: "Re: KASAN: use-after-free Write in skb_release_data (2)"
Next in thread: Eric Dumazet: "Re: KASAN: use-after-free Write in skb_release_data (2)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

syzbot has bisected this bug to:

commit 472c2e07eef045145bc1493cc94a01c87140780a
Author: Eric Dumazet <edumazet@xxxxxxxxxx>
Date: Fri Mar 22 15:56:39 2019 +0000

tcp: add one skb cache for tx

bisection log: https://syzkaller.appspot.com/x/bisect.txt?x=17abf52b200000
start commit: 68cc2999 Merge branch 'devlink-small-spring-cleanup'
git tree: net-next
final crash: https://syzkaller.appspot.com/x/report.txt?x=146bf52b200000
console output: https://syzkaller.appspot.com/x/log.txt?x=106bf52b200000
kernel config: https://syzkaller.appspot.com/x/.config?x=9ab5bbbbf283c99a
dashboard link: https://syzkaller.appspot.com/bug?extid=580be3953ed99133804f
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=123a3d3b200000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=11d34f93200000

Reported-by: syzbot+580be3953ed99133804f@xxxxxxxxxxxxxxxxxxxxxxxxx
Fixes: 472c2e07eef0 ("tcp: add one skb cache for tx")

For information about bisection process see: https://goo.gl/tpsmEJ#bisection

Next message: Matti Vaittinen: "Re: [PATCH v10 0/9] support ROHM BD70528 PMIC"
Previous message: John Ogness: "Re: [ANNOUNCE] v5.0.3-rt1"
In reply to: syzbot: "Re: KASAN: use-after-free Write in skb_release_data (2)"
Next in thread: Eric Dumazet: "Re: KASAN: use-after-free Write in skb_release_data (2)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]