Re: net/ipv4: use-after-free in ipv4_datagram_support_cmsg

7 at 8:39 AM, Willem de Bruijn >>> <willemdebruijn.ker...@gmail.com> wrote: >>> > === >>> >> BUG: KASAN: use-after-free in ipv4_datagram_support_cmsg >>> >> net/ipv4/ip_sockglue.c:500 [inline] at addr 880059be0128 >>>

Re: net/ipv4: use-after-free in ipv4_datagram_support_cmsg

On Wed, Apr 12, 2017 at 6:25 PM, Willem de Bruijn wrote: > On Wed, Apr 12, 2017 at 4:47 PM, Eric Dumazet wrote: >> On Wed, 2017-04-12 at 13:07 -0700, Cong Wang wrote: >>> On Wed, Apr 12, 2017 at 8:39 AM, Willem de Bruijn >>> wrote: >>> > ======

Re: net/ipv4: use-after-free in ipv4_datagram_support_cmsg

On Wed, Apr 12, 2017 at 4:47 PM, Eric Dumazet <eric.duma...@gmail.com> wrote: > On Wed, 2017-04-12 at 13:07 -0700, Cong Wang wrote: >> On Wed, Apr 12, 2017 at 8:39 AM, Willem de Bruijn >> <willemdebruijn.ker...@gmail.com> wrote: >> > ========

Re: net/ipv4: use-after-free in ipv4_datagram_support_cmsg

On Wed, Apr 12, 2017 at 4:47 PM, Eric Dumazet wrote: > On Wed, 2017-04-12 at 13:07 -0700, Cong Wang wrote: >> On Wed, Apr 12, 2017 at 8:39 AM, Willem de Bruijn >> wrote: >> > ======= >> >> BUG: KASAN: use-after-free in ipv4_datagram_support_c

Re: net/ipv4: use-after-free in ipv4_datagram_support_cmsg

On Wed, 2017-04-12 at 13:07 -0700, Cong Wang wrote: > On Wed, Apr 12, 2017 at 8:39 AM, Willem de Bruijn > <willemdebruijn.ker...@gmail.com> wrote: > > === > >> BUG: KASAN: use-after-free in ipv4_datagram_support_cmsg > >> net/ipv4/ip_sockglue.c:5

Re: net/ipv4: use-after-free in ipv4_datagram_support_cmsg

On Wed, 2017-04-12 at 13:07 -0700, Cong Wang wrote: > On Wed, Apr 12, 2017 at 8:39 AM, Willem de Bruijn > wrote: > > === > >> BUG: KASAN: use-after-free in ipv4_datagram_support_cmsg > >> net/ipv4/ip_sockglue.c:500 [inline] at addr 880059be0128

Re: net/ipv4: use-after-free in ipv4_datagram_support_cmsg

On Wed, Apr 12, 2017 at 8:39 AM, Willem de Bruijn <willemdebruijn.ker...@gmail.com> wrote: > === >> BUG: KASAN: use-after-free in ipv4_datagram_support_cmsg >> net/ipv4/ip_sockglue.c:500 [inline] at addr 880059be0128 > > Thanks for the report. This

Re: net/ipv4: use-after-free in ipv4_datagram_support_cmsg

On Wed, Apr 12, 2017 at 8:39 AM, Willem de Bruijn wrote: > === >> BUG: KASAN: use-after-free in ipv4_datagram_support_cmsg >> net/ipv4/ip_sockglue.c:500 [inline] at addr 880059be0128 > > Thanks for the report. This is accessing skb->dev from wit

Re: net/ipv4: use-after-free in ipv4_datagram_support_cmsg

=== > BUG: KASAN: use-after-free in ipv4_datagram_support_cmsg > net/ipv4/ip_sockglue.c:500 [inline] at addr 880059be0128 Thanks for the report. This is accessing skb->dev from within recvmsg() at line info->ipi_ifindex = skb->dev->ifindex; Introduc

Re: net/ipv4: use-after-free in ipv4_datagram_support_cmsg

=== > BUG: KASAN: use-after-free in ipv4_datagram_support_cmsg > net/ipv4/ip_sockglue.c:500 [inline] at addr 880059be0128 Thanks for the report. This is accessing skb->dev from within recvmsg() at line info->ipi_ifindex = skb->dev->ifindex; Introduc

net/ipv4: use-after-free in ipv4_datagram_support_cmsg

Hi, I've got the following error report while fuzzing the kernel with syzkaller. On commit 39da7c509acff13fc8cb12ec1bb20337c988ed36 (4.11-rc6). Unfortunately it's not reproducible. == BUG: KASAN: use-after-free

net/ipv4: use-after-free in ipv4_datagram_support_cmsg

Hi, I've got the following error report while fuzzing the kernel with syzkaller. On commit 39da7c509acff13fc8cb12ec1bb20337c988ed36 (4.11-rc6). Unfortunately it's not reproducible. == BUG: KASAN: use-after-free