| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 23 Jul 2019 18:48:40 -0700
From: Eric Biggers <ebiggers@...nel.org>
To: linux-rdma@...r.kernel.org, Doug Ledford <dledford@...hat.com>,
Jason Gunthorpe <jgg@...pe.ca>,
Yishai Hadas <yishaih@...lanox.com>
Cc: linux-kernel@...r.kernel.org, syzkaller-bugs@...glegroups.com
Subject: Reminder: 11 open syzbot bugs in RDMA subsystem
[This email was generated by a script. Let me know if you have any suggestions
to make it better, or if you want it re-generated with the latest status.]
Of the currently open syzbot reports against the upstream kernel, I've manually
marked 11 of them as possibly being bugs in the RDMA subsystem. I've listed
these reports below, sorted by an algorithm that tries to list first the reports
most likely to be still valid, important, and actionable.
Of these 11 bugs, 1 was seen in mainline in the last week.
Of these 11 bugs, 1 was bisected to a commit from the following person:
Yishai Hadas <yishaih@...lanox.com>
If you believe a bug is no longer valid, please close the syzbot report by
sending a '#syz fix', '#syz dup', or '#syz invalid' command in reply to the
original thread, as explained at https://goo.gl/tpsmEJ#status
If you believe I misattributed a bug to the RDMA subsystem, please let me know,
and if possible forward the report to the correct people or mailing list.
Here are the bugs:
--------------------------------------------------------------------------------
Title: KASAN: use-after-free Read in rdma_listen (2)
Last occurred: 3 days ago
Reported: 115 days ago
Branches: Mainline and others
Dashboard link: https://syzkaller.appspot.com/bug?id=8dc0bcd9dd6ec915ba10b3354740eb420884acaa
Original thread: https://lkml.kernel.org/lkml/00000000000012a4cd05854a1d0a@google.com/T/#u
This bug has a syzkaller reproducer only.
No one replied to the original thread for this bug.
If you fix this bug, please add the following tag to the commit:
Reported-by: syzbot+adb15cf8c2798e4e0db4@...kaller.appspotmail.com
If you send any email or patch for this bug, please consider replying to the
original thread. For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/00000000000012a4cd05854a1d0a@google.com
--------------------------------------------------------------------------------
Title: WARNING: bad unlock balance in ucma_destroy_id
Last occurred: 27 days ago
Reported: 329 days ago
Branches: Mainline and others
Dashboard link: https://syzkaller.appspot.com/bug?id=c600e111223ce0a20e5f2fb4e9a4ebdff54d7fa6
Original thread: https://lkml.kernel.org/lkml/0000000000003b9c4b0574806070@google.com/T/#u
This bug has a syzkaller reproducer only.
This bug was bisected to:
commit e1c30298ccab87151a0c4241fc5985c591598361
Author: Yishai Hadas <yishaih@...lanox.com>
Date: Thu Aug 13 15:32:07 2015 +0000
IB/ucma: HW Device hot-removal support
No one replied to the original thread for this bug.
If you fix this bug, please add the following tag to the commit:
Reported-by: syzbot+4b628fcc748474003457@...kaller.appspotmail.com
If you send any email or patch for this bug, please consider replying to the
original thread. For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/0000000000003b9c4b0574806070@google.com
--------------------------------------------------------------------------------
Title: WARNING: bad unlock balance in ucma_event_handler
Last occurred: 43 days ago
Reported: 405 days ago
Branches: Mainline and others
Dashboard link: https://syzkaller.appspot.com/bug?id=d5222b3e1659e0aea19df562c79f216515740daa
Original thread: https://lkml.kernel.org/lkml/000000000000af6530056e863794@google.com/T/#u
This bug has a C reproducer.
The original thread for this bug received 6 replies; the last was 42 days ago.
If you fix this bug, please add the following tag to the commit:
Reported-by: syzbot+e5579222b6a3edd96522@...kaller.appspotmail.com
If you send any email or patch for this bug, please consider replying to the
original thread. For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000af6530056e863794@google.com
--------------------------------------------------------------------------------
Title: KASAN: use-after-free Read in __list_del_entry_valid (4)
Last occurred: 478 days ago
Reported: 485 days ago
Branches: Mainline
Dashboard link: https://syzkaller.appspot.com/bug?id=56b60fb3340c5995373fe5b8eae9e8722a012fc4
Original thread: https://lkml.kernel.org/lkml/001a1141551246502d056845782e@google.com/T/#u
This bug has a C reproducer.
The original thread for this bug received 6 replies; the last was 334 days ago.
If you fix this bug, please add the following tag to the commit:
Reported-by: syzbot+29ee8f76017ce6cf03da@...kaller.appspotmail.com
If you send any email or patch for this bug, please consider replying to the
original thread. For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/001a1141551246502d056845782e@google.com
--------------------------------------------------------------------------------
Title: KASAN: use-after-free Read in addr_resolve
Last occurred: 26 days ago
Reported: 123 days ago
Branches: Mainline
Dashboard link: https://syzkaller.appspot.com/bug?id=07328fd3299fadf7005c46651d2ff50c1cd4e1dd
Original thread: https://lkml.kernel.org/lkml/0000000000006d637a0584aa6520@google.com/T/#u
Unfortunately, this bug does not have a reproducer.
No one replied to the original thread for this bug.
If you fix this bug, please add the following tag to the commit:
Reported-by: syzbot+bd034f3fdc0402e942ed@...kaller.appspotmail.com
If you send any email or patch for this bug, please consider replying to the
original thread. For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/0000000000006d637a0584aa6520@google.com
--------------------------------------------------------------------------------
Title: KASAN: use-after-free Read in cma_cancel_operation
Last occurred: 136 days ago
Reported: 476 days ago
Branches: Mainline and others
Dashboard link: https://syzkaller.appspot.com/bug?id=95f89b8fb9fdc42e28ad586e657fea074e4e719b
Original thread: https://lkml.kernel.org/lkml/94eb2c054604ad40010568e8ea21@google.com/T/#u
This bug has a C reproducer.
The original thread for this bug received 4 replies; the last was 153 days ago.
If you fix this bug, please add the following tag to the commit:
Reported-by: syzbot+6956235342b7317ec564@...kaller.appspotmail.com
If you send any email or patch for this bug, please consider replying to the
original thread. For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/94eb2c054604ad40010568e8ea21@google.com
--------------------------------------------------------------------------------
Title: KASAN: use-after-free Read in addr_handler
Last occurred: 154 days ago
Reported: 222 days ago
Branches: Mainline and others
Dashboard link: https://syzkaller.appspot.com/bug?id=a9796acbdecc1b2ba927578917755899c63c48af
Original thread: https://lkml.kernel.org/lkml/00000000000055ee31057ce8f277@google.com/T/#u
This bug has a syzkaller reproducer only.
syzbot has bisected this bug, but I think the bisection result is incorrect.
The original thread for this bug received 2 replies; the last was 119 days ago.
If you fix this bug, please add the following tag to the commit:
Reported-by: syzbot+b358909d8d01556b790b@...kaller.appspotmail.com
If you send any email or patch for this bug, please consider replying to the
original thread. For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/00000000000055ee31057ce8f277@google.com
--------------------------------------------------------------------------------
Title: BUG: corrupted list in rdma_listen
Last occurred: 134 days ago
Reported: 460 days ago
Branches: Mainline and others
Dashboard link: https://syzkaller.appspot.com/bug?id=25e00dd59f31783f233185cb60064b0ab645310f
Original thread: https://lkml.kernel.org/lkml/000000000000a366e2056a35c6fd@google.com/T/#u
This bug has a C reproducer.
No one replied to the original thread for this bug.
If you fix this bug, please add the following tag to the commit:
Reported-by: syzbot+8458d13b13562abf6b77@...kaller.appspotmail.com
If you send any email or patch for this bug, please consider replying to the
original thread. For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000a366e2056a35c6fd@google.com
--------------------------------------------------------------------------------
Title: general protection fault in rdma_listen (2)
Last occurred: 110 days ago
Reported: 258 days ago
Branches: Mainline and others
Dashboard link: https://syzkaller.appspot.com/bug?id=38d36d1b26b4299bf964d50af4d79688d39ab960
Original thread: https://lkml.kernel.org/lkml/000000000000396c09057a17b6fd@google.com/T/#u
This bug has a syzkaller reproducer only.
The original thread for this bug received 2 replies; the last was 105 days ago.
If you fix this bug, please add the following tag to the commit:
Reported-by: syzbot+6b46b135602a3f3ac99e@...kaller.appspotmail.com
If you send any email or patch for this bug, please consider replying to the
original thread. For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000396c09057a17b6fd@google.com
--------------------------------------------------------------------------------
Title: KASAN: slab-out-of-bounds Read in rdma_listen
Last occurred: 147 days ago
Reported: 337 days ago
Branches: Mainline and others
Dashboard link: https://syzkaller.appspot.com/bug?id=fc5df2d4d88353572496fcf9caf8a9c7bdc034c3
Original thread: https://lkml.kernel.org/lkml/0000000000001de4b70573d62017@google.com/T/#u
Unfortunately, this bug does not have a reproducer.
No one replied to the original thread for this bug.
If you fix this bug, please add the following tag to the commit:
Reported-by: syzbot+c92378b32760a4eef756@...kaller.appspotmail.com
If you send any email or patch for this bug, please consider replying to the
original thread. For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/0000000000001de4b70573d62017@google.com
--------------------------------------------------------------------------------
Title: KASAN: use-after-free Read in rdma_bind_addr
Last occurred: 111 days ago
Reported: 111 days ago
Branches: linux-next
Dashboard link: https://syzkaller.appspot.com/bug?id=ecb19d20c6748a78058dac77ad17468c4e6733c4
Original thread: https://lkml.kernel.org/lkml/000000000000ebb6bc05859ac2cf@google.com/T/#u
Unfortunately, this bug does not have a reproducer.
No one replied to the original thread for this bug.
If you fix this bug, please add the following tag to the commit:
Reported-by: syzbot+68b44a1597636e0b342c@...kaller.appspotmail.com
If you send any email or patch for this bug, please consider replying to the
original thread. For the git send-email command to use, or tips on how to reply
if the thread isn't in your mailbox, see the "Reply instructions" at
https://lkml.kernel.org/r/000000000000ebb6bc05859ac2cf@google.com
Powered by blists - more mailing lists