Received: by 2002:ac0:a5a6:0:0:0:0:0 with SMTP id m35-v6csp6420020imm;
        Mon, 27 Aug 2018 15:49:44 -0700 (PDT)
X-Google-Smtp-Source: ANB0Vdbg+kpwssfPA71jky74tcjLkGmFC1+S2zmSU8VIlKFDSKQzOBSM4v1vzoORgbAm7b8WB5Ls
X-Received: by 2002:a17:902:aa46:: with SMTP id c6-v6mr6337496plr.244.1535410184482;
        Mon, 27 Aug 2018 15:49:44 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1535410184; cv=none;
        d=google.com; s=arc-20160816;
        b=EioqyeN7U8m+/EuBrPV3/czz6ovXVBsk7b5cdr6Ywk+9B6WnvL51gIRkBWG86gzTZi
         fkaVpJFkEX979Swt3Cx/VRcVDamDnivCRyR+rs+yLVhsGez9ZOBeXUAKhWQRmG7Nfj7D
         vPLNMOkQWXAydkaOkgTQ7HWjeZRO7S21lzLQuolTHSQPmSydd9Dsy51AjIRv+zQtMp7s
         jN/Uc8fEv7wRdoSuj3Ut9LdEPVpoOJF2ZAnfEsCxOiMtyTVd2EM/Ymq3PDP8fvOtjDaB
         woh0vOKSLnfVo2sl6Donn6caFRDi3Mw41BFtAh8m/k2dcltmxDM5XSh1QXn3EhScuTLP
         ydrQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding:mime-version
         :references:in-reply-to:date:cc:to:from:subject:message-id
         :arc-authentication-results;
        bh=MeRZvd7LLoft73pCHq7z/WAf7ItTpf6TCj0haZgcbZc=;
        b=aC953fyq4bBTuYaMjyASmnTcU+eiz6hIBy6XbLHuDPsece97QkMgAlAtYzHm7jEeMK
         LgaXjsp0uIfaNX8eGMOVRAPtlboj1DBSpN6JhSDc8rOJxgCAgrqvBmPHgZyqm72BK8Dg
         h0e93kVw16GrHe4spte5CkqJ6UD82uZlvZgp6yAZUFukZu9QSsCs6pgtuE+vzhWvfJFE
         WLgaIRTEpDQGMN5/yH9wFtf4xr8nT2ZuoaCNnVpMM216yCFqcjrtdmjY39nnP/pbBWFG
         YRQfnpRMWOCPvRefYt1EuFXQzS7n7Gt22kyFGLKumXcO7s8rvUp/peiXJ8nRCynN9lut
         V6+w==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id 35-v6si407923pla.453.2018.08.27.15.49.27;
        Mon, 27 Aug 2018 15:49:44 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1727128AbeH1Cg7 (ORCPT <rfc822;lans.zhang2008@gmail.com>
        + 99 others); Mon, 27 Aug 2018 22:36:59 -0400
Received: from mga18.intel.com ([134.134.136.126]:40140 "EHLO mga18.intel.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1726994AbeH1Cg7 (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 27 Aug 2018 22:36:59 -0400
X-Amp-Result: SKIPPED(no attachment in message)
X-Amp-File-Uploaded: False
Received: from fmsmga002.fm.intel.com ([10.253.24.26])
  by orsmga106.jf.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 27 Aug 2018 15:48:19 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.53,296,1531810800"; 
   d="scan'208";a="80679725"
Received: from megha-z97x-ud7-th.sc.intel.com (HELO [143.183.85.162]) ([143.183.85.162])
  by fmsmga002.fm.intel.com with ESMTP; 27 Aug 2018 15:48:19 -0700
Message-ID: <1535411336.3516.2.camel@megha-Z97X-UD7-TH>
Subject: Re: KASAN: use-after-free Read in sha512_ctx_mgr_resubmit
From:   Megha Dey <megha.dey@linux.intel.com>
To:     Herbert Xu <herbert@gondor.apana.org.au>
Cc:     Ard Biesheuvel <ard.biesheuvel@linaro.org>,
        Eric Biggers <ebiggers@kernel.org>,
        Tim Chen <tim.c.chen@linux.intel.com>,
        "David S. Miller" <davem@davemloft.net>,
        syzbot <syzbot+d5455bac3ba1ee9114e5@syzkaller.appspotmail.com>,
        "open list:HARDWARE RANDOM NUMBER GENERATOR CORE" 
        <linux-crypto@vger.kernel.org>,
        Linux Kernel Mailing List <linux-kernel@vger.kernel.org>,
        syzkaller-bugs <syzkaller-bugs@googlegroups.com>,
        the arch/x86 maintainers <x86@kernel.org>
Date:   Mon, 27 Aug 2018 16:08:56 -0700
In-Reply-To: <20180822062036.mdq4q5o5zdzuxh7s@gondor.apana.org.au>
References: <00000000000072d64d05737b6b8c@google.com>
         <20180820073119.GA14931@sol.localdomain>
         <CAKv+Gu9Y0TLOuMba43HPihYqy-kk0nttBfPj1_UukiYy1cBcFw@mail.gmail.com>
         <20180822062036.mdq4q5o5zdzuxh7s@gondor.apana.org.au>
Content-Type: text/plain; charset="UTF-8"
X-Mailer: Evolution 3.10.4-0ubuntu2 
Mime-Version: 1.0
Content-Transfer-Encoding: 7bit
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Wed, 2018-08-22 at 14:20 +0800, Herbert Xu wrote:
> On Tue, Aug 21, 2018 at 02:43:56PM +0200, Ard Biesheuvel wrote:
> >
> > I agree. The code is obviously broken in a way that would have been
> > noticed if it were in wide use, and it is too complicated for mere
> > mortals to fix or maintain. I suggest we simply remove it for now, and
> > if anyone wants to reintroduce it, we can review the code *and* the
> > justification for the approach from scratch (in which case we should
> > consider factoring out the algo agnostics plumbing in a way that
> > allows it to be reused by other architectures as well)
> 
> I agree too.  Could one of you guys send me a patch to remove
> them?
> 

Hi,

We are working on a fix to solve these corner cases.

-Megha
> Thanks,