| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <aM0A0p4-3lwLeAWF@elver.google.com>
Date: Fri, 19 Sep 2025 09:05:54 +0200
From: Marco Elver <elver@...gle.com>
To: syzbot ci <syzbot+ciac51bb7578ba7c59@...kaller.appspotmail.com>
Cc: arnd@...db.de, boqun.feng@...il.com, bvanassche@....org, corbet@....net,
davem@...emloft.net, dvyukov@...gle.com, edumazet@...gle.com,
frederic@...nel.org, glider@...gle.com, gregkh@...uxfoundation.org,
hch@....de, herbert@...dor.apana.org.au, irogers@...gle.com,
jannh@...gle.com, joelagnelf@...dia.com, josh@...htriplett.org,
justinstitt@...gle.com, kasan-dev@...glegroups.com, kees@...nel.org,
linux-crypto@...r.kernel.org, linux-doc@...r.kernel.org,
linux-kbuild@...r.kernel.org, linux-kernel@...r.kernel.org,
linux-mm@...ck.org, linux-security-module@...r.kernel.org,
linux-sparse@...r.kernel.org, llvm@...ts.linux.dev,
longman@...hat.com, luc.vanoostenryck@...il.com,
lukas.bulwahn@...il.com, mark.rutland@....com,
mathieu.desnoyers@...icios.com, mingo@...nel.org, mingo@...hat.com,
morbo@...gle.com, nathan@...nel.org, neeraj.upadhyay@...nel.org,
nick.desaulniers@...il.com, ojeda@...nel.org, paulmck@...nel.org,
penguin-kernel@...ove.sakura.ne.jp, peterz@...radead.org,
rcu@...r.kernel.org, rostedt@...dmis.org, takedakn@...data.co.jp,
tglx@...utronix.de, tgraf@...g.ch, urezki@...il.com,
will@...nel.org, syzbot@...ts.linux.dev,
syzkaller-bugs@...glegroups.com
Subject: Re: [syzbot ci] Re: Compiler-Based Capability- and Locking-Analysis
On Thu, Sep 18, 2025 at 12:41PM -0700, syzbot ci wrote:
> syzbot ci has tested the following series
>
> [v3] Compiler-Based Capability- and Locking-Analysis
[...]
> and found the following issue:
> general protection fault in validate_page_before_insert
>
> Full report is available here:
> https://ci.syzbot.org/series/81182522-74c0-4494-bcf8-976133df7dc7
>
> ***
>
> general protection fault in validate_page_before_insert
Thanks, syzbot ci!
I messed up the type when moving kcov->area access inside the critical
section. This is the fix:
fixup! kcov: Enable capability analysis
diff --git a/kernel/kcov.c b/kernel/kcov.c
index 1897c8ca6209..e81e3c0d01c6 100644
--- a/kernel/kcov.c
+++ b/kernel/kcov.c
@@ -497,7 +497,7 @@ static int kcov_mmap(struct file *filep, struct vm_area_struct *vma)
unsigned long size, off;
struct page *page;
unsigned long flags;
- unsigned long *area;
+ void *area;
spin_lock_irqsave(&kcov->lock, flags);
size = kcov->size * sizeof(unsigned long);
Powered by blists - more mailing lists