Received: by 2002:ac0:a5a6:0:0:0:0:0 with SMTP id m35-v6csp6420020imm; Mon, 27 Aug 2018 15:49:44 -0700 (PDT) X-Google-Smtp-Source: ANB0Vdbg+kpwssfPA71jky74tcjLkGmFC1+S2zmSU8VIlKFDSKQzOBSM4v1vzoORgbAm7b8WB5Ls X-Received: by 2002:a17:902:aa46:: with SMTP id c6-v6mr6337496plr.244.1535410184482; Mon, 27 Aug 2018 15:49:44 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1535410184; cv=none; d=google.com; s=arc-20160816; b=EioqyeN7U8m+/EuBrPV3/czz6ovXVBsk7b5cdr6Ywk+9B6WnvL51gIRkBWG86gzTZi fkaVpJFkEX979Swt3Cx/VRcVDamDnivCRyR+rs+yLVhsGez9ZOBeXUAKhWQRmG7Nfj7D vPLNMOkQWXAydkaOkgTQ7HWjeZRO7S21lzLQuolTHSQPmSydd9Dsy51AjIRv+zQtMp7s jN/Uc8fEv7wRdoSuj3Ut9LdEPVpoOJF2ZAnfEsCxOiMtyTVd2EM/Ymq3PDP8fvOtjDaB woh0vOKSLnfVo2sl6Donn6caFRDi3Mw41BFtAh8m/k2dcltmxDM5XSh1QXn3EhScuTLP ydrQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding:mime-version :references:in-reply-to:date:cc:to:from:subject:message-id :arc-authentication-results; bh=MeRZvd7LLoft73pCHq7z/WAf7ItTpf6TCj0haZgcbZc=; b=aC953fyq4bBTuYaMjyASmnTcU+eiz6hIBy6XbLHuDPsece97QkMgAlAtYzHm7jEeMK LgaXjsp0uIfaNX8eGMOVRAPtlboj1DBSpN6JhSDc8rOJxgCAgrqvBmPHgZyqm72BK8Dg h0e93kVw16GrHe4spte5CkqJ6UD82uZlvZgp6yAZUFukZu9QSsCs6pgtuE+vzhWvfJFE WLgaIRTEpDQGMN5/yH9wFtf4xr8nT2ZuoaCNnVpMM216yCFqcjrtdmjY39nnP/pbBWFG YRQfnpRMWOCPvRefYt1EuFXQzS7n7Gt22kyFGLKumXcO7s8rvUp/peiXJ8nRCynN9lut V6+w== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id 35-v6si407923pla.453.2018.08.27.15.49.27; Mon, 27 Aug 2018 15:49:44 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727128AbeH1Cg7 (ORCPT + 99 others); Mon, 27 Aug 2018 22:36:59 -0400 Received: from mga18.intel.com ([134.134.136.126]:40140 "EHLO mga18.intel.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726994AbeH1Cg7 (ORCPT ); Mon, 27 Aug 2018 22:36:59 -0400 X-Amp-Result: SKIPPED(no attachment in message) X-Amp-File-Uploaded: False Received: from fmsmga002.fm.intel.com ([10.253.24.26]) by orsmga106.jf.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 27 Aug 2018 15:48:19 -0700 X-ExtLoop1: 1 X-IronPort-AV: E=Sophos;i="5.53,296,1531810800"; d="scan'208";a="80679725" Received: from megha-z97x-ud7-th.sc.intel.com (HELO [143.183.85.162]) ([143.183.85.162]) by fmsmga002.fm.intel.com with ESMTP; 27 Aug 2018 15:48:19 -0700 Message-ID: <1535411336.3516.2.camel@megha-Z97X-UD7-TH> Subject: Re: KASAN: use-after-free Read in sha512_ctx_mgr_resubmit From: Megha Dey To: Herbert Xu Cc: Ard Biesheuvel , Eric Biggers , Tim Chen , "David S. Miller" , syzbot , "open list:HARDWARE RANDOM NUMBER GENERATOR CORE" , Linux Kernel Mailing List , syzkaller-bugs , the arch/x86 maintainers Date: Mon, 27 Aug 2018 16:08:56 -0700 In-Reply-To: <20180822062036.mdq4q5o5zdzuxh7s@gondor.apana.org.au> References: <00000000000072d64d05737b6b8c@google.com> <20180820073119.GA14931@sol.localdomain> <20180822062036.mdq4q5o5zdzuxh7s@gondor.apana.org.au> Content-Type: text/plain; charset="UTF-8" X-Mailer: Evolution 3.10.4-0ubuntu2 Mime-Version: 1.0 Content-Transfer-Encoding: 7bit Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, 2018-08-22 at 14:20 +0800, Herbert Xu wrote: > On Tue, Aug 21, 2018 at 02:43:56PM +0200, Ard Biesheuvel wrote: > > > > I agree. The code is obviously broken in a way that would have been > > noticed if it were in wide use, and it is too complicated for mere > > mortals to fix or maintain. I suggest we simply remove it for now, and > > if anyone wants to reintroduce it, we can review the code *and* the > > justification for the approach from scratch (in which case we should > > consider factoring out the algo agnostics plumbing in a way that > > allows it to be reused by other architectures as well) > > I agree too. Could one of you guys send me a patch to remove > them? > Hi, We are working on a fix to solve these corner cases. -Megha > Thanks,