syzbot


KASAN: use-after-free Write in xfrm_hash_rebuild
Status: fixed on 2019/08/05 13:45
Reported-by: syzbot+0165480d4ef07360eeda@syzkaller.appspotmail.com
Fix commit: fd709721 xfrm: policy: fix bydst hlist corruption on hash rebuild
First crash: 130d, last: 76d
Bisection: introduced by (bisect log):

commit 1548bc4e0512700cf757192c106b3a20ab639223
Author: Florian Westphal <fw@strlen.de>
Date: Fri Jan 4 13:17:02 2019 +0000

  xfrm: policy: delete inexact policies from inexact list on hash rebuild

Tree: upstream
Crash: KASAN: use-after-free Write in xfrm_hash_rebuild (log)
Repro: syz .config

Sample crash report:

All crashes (8):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro Maintainers
ci-upstream-kasan-gce-smack-root 2019/06/27 03:58 upstream 249155c2 7509bf36 .config log report syz davem@davemloft.net, herbert@gondor.apana.org.au, linux-kernel@vger.kernel.org, netdev@vger.kernel.org, steffen.klassert@secunet.com
ci-upstream-kasan-gce-root 2019/06/27 06:42 upstream 249155c2 7509bf36 .config log report syz davem@davemloft.net, herbert@gondor.apana.org.au, linux-kernel@vger.kernel.org, netdev@vger.kernel.org, steffen.klassert@secunet.com
ci-upstream-kasan-gce-selinux-root 2019/06/27 06:25 upstream 249155c2 7509bf36 .config log report syz davem@davemloft.net, herbert@gondor.apana.org.au, linux-kernel@vger.kernel.org, netdev@vger.kernel.org, steffen.klassert@secunet.com
ci-upstream-kasan-gce 2019/06/27 04:27 upstream 249155c2 7509bf36 .config log report syz davem@davemloft.net, herbert@gondor.apana.org.au, linux-kernel@vger.kernel.org, netdev@vger.kernel.org, steffen.klassert@secunet.com
ci-upstream-net-this-kasan-gce 2019/06/27 04:27 net ee429742 7509bf36 .config log report syz davem@davemloft.net, herbert@gondor.apana.org.au, linux-kernel@vger.kernel.org, netdev@vger.kernel.org, steffen.klassert@secunet.com
ci-upstream-net-kasan-gce 2019/06/27 04:25 net-next 177d935a 7509bf36 .config log report syz davem@davemloft.net, herbert@gondor.apana.org.au, linux-kernel@vger.kernel.org, netdev@vger.kernel.org, steffen.klassert@secunet.com
ci-upstream-linux-next-kasan-gce-root 2019/07/03 14:46 linux-next f9ca7f5a 55565fa0 .config log report syz davem@davemloft.net, herbert@gondor.apana.org.au, linux-kernel@vger.kernel.org, netdev@vger.kernel.org, steffen.klassert@secunet.com
ci-upstream-net-kasan-gce 2019/05/10 06:53 net-next 601e6bcc 018207ef .config log report davem@davemloft.net, herbert@gondor.apana.org.au, linux-kernel@vger.kernel.org, netdev@vger.kernel.org, steffen.klassert@secunet.com