[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20171219033926.GA26981@codemonkey.org.uk>
Date: Mon, 18 Dec 2017 22:39:26 -0500
From: Dave Jones <davej@...emonkey.org.uk>
To: Linus Torvalds <torvalds@...ux-foundation.org>
Cc: Al Viro <viro@...iv.linux.org.uk>,
Linux Kernel <linux-kernel@...r.kernel.org>
Subject: Re: proc_flush_task oops
On Mon, Dec 18, 2017 at 03:50:52PM -0800, Linus Torvalds wrote:
> But I don't see what would have changed in this area recently.
>
> Do you end up saving the seeds that cause crashes? Is this
> reproducible? (Other than seeing it twoce, of course)
Only clue so far, is every time I'm able to trigger it, the last thing
the child process that triggers it did, was an execveat.
Telling it to just fuzz execveat doesn't instantly trigger it, so it
must be a combination of some other syscall. I'll leave a script running
overnight to see if I can binary search the other syscalls in
combination with it.
One other thing: I said this was rc4, but it was actually rc4 + all the
x86 stuff from today. There's enough creepy stuff in that pile, that
I'll try with just plain rc4 tomorrow too.
Dave
Powered by blists - more mailing lists