| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <CAOssrKfakpGguAV=102jpW4m+YfpRx=+cBBO1O43bt3iwJHiSA@mail.gmail.com> Date: Tue, 18 Oct 2022 11:23:17 +0200 From: Miklos Szeredi <mszeredi@...hat.com> To: Pengfei Xu <pengfei.xu@...el.com> Cc: linux-kernel@...r.kernel.org, heng.su@...el.com Subject: Re: [Syzkaller] INFO: task hung in fuse_lookup with v6.0 kernel in guest On Mon, Oct 17, 2022 at 11:17 AM Pengfei Xu <pengfei.xu@...el.com> wrote: > > Hi Miklos, > > Greeting! > > Platform: Tiger lake CPU platform. > > We found 1 "task hung in fuse_lookup" issue by syzkaller with v6.0 mainline > kernel in guest. > > Bisected and found the bad commit: > " > commit: 62dd1fc8cc6b22e3e568be46ebdb817e66f5d6a5 > fuse: move fget() to fuse_get_tree() > " > > Reproduced code generated by syzkaller, binary, bisect log and all the dmesg > info are in attached package. Thanks for the report. I tried out the reproducer, and the deadlock can be triggered. Unfortunately killing the deadlocked processes is not enough, but it still should be possible to recover with "echo 1 > /sys/fs/fuse/connections/$FUSE_DEV/abort". In my tests this works, so I'm not sure there's anything to fix here. Is there a real life situation where this occurs, or is this just triggered with fuzzing? I'm wondering why syzbot didn't try aborting using the "abort" file in sysfs, AFAICS it does know this trick. Thanks, Miklos
Powered by blists - more mailing lists