Re: [syzbot] KASAN: use-after-free Read in idr_for_each (2)

2021-04-19 Thread Pavel Begunkov
On 4/15/21 7:28 PM, syzbot wrote: > syzbot suspects this issue was fixed by commit: > > commit 61cf93700fe6359552848ed5e3becba6cd760efa > Author: Matthew Wilcox (Oracle) > Date: Mon Mar 8 14:16:16 2021 + > > io_uring: Convert personality_idr to XArray > > bisection log:

Re: [syzbot] KASAN: use-after-free Read in idr_for_each (2)

2021-04-15 Thread syzbot
syzbot suspects this issue was fixed by commit: commit 61cf93700fe6359552848ed5e3becba6cd760efa Author: Matthew Wilcox (Oracle) Date: Mon Mar 8 14:16:16 2021 + io_uring: Convert personality_idr to XArray bisection log: https://syzkaller.appspot.com/x/bisect.txt?x=16f91b9ad0

Re: [syzbot] KASAN: use-after-free Read in idr_for_each (2)

2021-03-19 Thread syzbot
Hello, syzbot has tested the proposed patch and the reproducer did not trigger any issue: Reported-and-tested-by: syzbot+12056a09a0311d758...@syzkaller.appspotmail.com Tested on: commit: ece5fae7 io_uring: don't leak creds on SQO attach error git tree:

Re: KASAN: use-after-free Read in idr_for_each (2)

2021-03-19 Thread Pavel Begunkov
On 18/12/2020 16:44, syzbot wrote: > Hello, > > syzbot has tested the proposed patch but the reproducer is still triggering > an issue: > KASAN: use-after-free Read in idr_for_each #syz test: git://git.kernel.dk/linux-block io_uring-5.12 > >

Re: KASAN: use-after-free Read in idr_for_each (2)

2020-12-18 Thread syzbot
Hello, syzbot has tested the proposed patch but the reproducer is still triggering an issue: KASAN: use-after-free Read in idr_for_each == BUG: KASAN: use-after-free in radix_tree_next_slot include/linux/radix-tree.h:422 [inline]

Re: KASAN: use-after-free Read in idr_for_each (2)

2020-12-18 Thread Pavel Begunkov
On 28/11/2020 17:19, syzbot wrote: > syzbot has found a reproducer for the following issue on: > > HEAD commit:c84e1efa Merge tag 'asm-generic-fixes-5.10-2' of git://git.. > git tree: upstream > console output: https://syzkaller.appspot.com/x/log.txt?x=1251d75950 > kernel config:

Re: KASAN: use-after-free Read in idr_for_each (2)

2020-11-30 Thread Jens Axboe
On 11/29/20 5:26 AM, Matthew Wilcox wrote: > On Sun, Nov 29, 2020 at 07:34:29PM +0800, Hillf Danton wrote: >>> radix_tree_next_slot include/linux/radix-tree.h:422 [inline] >>> idr_for_each+0x206/0x220 lib/idr.c:202 >>> io_destroy_buffers fs/io_uring.c:8275 [inline] >> >> Matthew, can you shed

Re: KASAN: use-after-free Read in idr_for_each (2)

2020-11-29 Thread Matthew Wilcox
On Sun, Nov 29, 2020 at 07:34:29PM +0800, Hillf Danton wrote: > > radix_tree_next_slot include/linux/radix-tree.h:422 [inline] > > idr_for_each+0x206/0x220 lib/idr.c:202 > > io_destroy_buffers fs/io_uring.c:8275 [inline] > > Matthew, can you shed any light on the link between the use of idr >

Re: KASAN: use-after-free Read in idr_for_each (2)

2020-11-28 Thread syzbot
syzbot has found a reproducer for the following issue on: HEAD commit:c84e1efa Merge tag 'asm-generic-fixes-5.10-2' of git://git.. git tree: upstream console output: https://syzkaller.appspot.com/x/log.txt?x=1251d75950 kernel config:

KASAN: use-after-free Read in idr_for_each (2)

2020-10-05 Thread syzbot
Hello, syzbot found the following issue on: HEAD commit:472e5b05 pipe: remove pipe_wait() and fix wakeup race with.. git tree: upstream console output: https://syzkaller.appspot.com/x/log.txt?x=15ae0d4790 kernel config: https://syzkaller.appspot.com/x/.config?x=89ab6a0c48f30b49