Received: by 2002:ac0:a5a6:0:0:0:0:0 with SMTP id m35-v6csp31072imm; Thu, 27 Sep 2018 15:23:36 -0700 (PDT) X-Google-Smtp-Source: ACcGV62AwfzJJLo3W2Xr4P2j7KaOnZWFGGdusWQXBaJqCx3j4AyPRSYevLwLlH3QeCpASpmoKeVf X-Received: by 2002:a17:902:3041:: with SMTP id u59-v6mr12807327plb.99.1538087016264; Thu, 27 Sep 2018 15:23:36 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1538087016; cv=none; d=google.com; s=arc-20160816; b=nkUWkseiz76tfeh9Uxlu3VnQSDURltUOQRMFZuEGuGeflP1b8QSOuJW7im1c2/7W4w ymYip53yB4Lpl9jRaM89k5/rl1u9zQHgntxX/efy32zlYLZEvAGYArICdNep8T/p0w+M MES5wPRX27x0M+Bf3ckbsEs6tHS9PDbSs7EGRcOSFtGuiOuQHh/nQCsUngzXiNcoOiRa OonYI99sTOGY6pRdNFbjx396NhgKT2S3AQszDPLALt7FWfOJrPjU1JUojdc+5AR5Zt/h O97k+08KlWB7JGaMyHR2bkNrknscD99jw/vzF4fNJuVEnqj+hkwGj28KcqIt8pRpUrT9 Ijtg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=83CocJOACgKGJl1oYACEpsBwRqW42LwLyQzp39xcIvE=; b=SDvzm0W06MtdsZtX8C4XLfwsP/E1CWAk0sx/6H+0mtXq3D0R/2ZSNXuYuyVzNgUwo9 8czQ7OC/sDvj8Bqg0iEeU7cAWIxWN0WvMX8vWBeX+VQVZpliZkoLm2IvKRphcOmy2OD0 GtqgU0dj+fvnb7UOvzt7akO+WS7zjn0ChxmVK5sj8IphenT21HjJmRozn4HFnubign3G ytDfpkZqZ43g6Hc2y/6XkZS2N9PzhJ1zLjCuU7uVOPSDWp6OkyRt1Ee2EVggPZzFJEFt 6kqStSyxj77AgM50eygyF70RK7im9bCjPyvI07aQ7eT8TxqBv4WKJjUeVSRd2WnV3dUK /L+w== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=pzUCk7V5; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id u197-v6si3320953pgb.286.2018.09.27.15.23.18; Thu, 27 Sep 2018 15:23:36 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=pzUCk7V5; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726665AbeI1Enm (ORCPT + 99 others); Fri, 28 Sep 2018 00:43:42 -0400 Received: from mail-it1-f194.google.com ([209.85.166.194]:53235 "EHLO mail-it1-f194.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1725906AbeI1Enm (ORCPT ); Fri, 28 Sep 2018 00:43:42 -0400 Received: by mail-it1-f194.google.com with SMTP id 134-v6so467230itz.2 for ; Thu, 27 Sep 2018 15:23:13 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=83CocJOACgKGJl1oYACEpsBwRqW42LwLyQzp39xcIvE=; b=pzUCk7V5vnZjx2NYB21VURKdiF+KXldKInbRsOYnNW/NGLx6/dA6tV6xaATEb9/tJL 6+4QBoDAhmAY2Xfao1r0m+09jtXQ/26ctceTr9UKDrVkf1QbqIpD3cG62/RcxXpXyLIz bw9mBj/k/6om+Vv3qH2LKwqhgupKeXirqlp6wAQdZuJm6JTwVf/XM72PKjhgoGNWkRMX RuXdQUnF75iw2EkcrSyxgnF+i9jzLfVQTZMqXt7LDMfy4Dzo2WnV7kmG54Prk9A9BNvT KCIuZyNZG+pDGqTtUN9IAnUa9SwASjEgV/zg3e2zmdlry4ePvLo4qpMyXmwKaX+6afL7 fFwA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=83CocJOACgKGJl1oYACEpsBwRqW42LwLyQzp39xcIvE=; b=Pxa6xCy/+nwsnc6eafkKjVTbJ8sdriSMfuixtxpNl8p0cgAMuG52vk753iXyfbb993 1b+cREnEJVLYXlAQPc9Sf7seRYJKK5qbk3rlK8rKVrZiwFoV8AeuzD3LvrixnlY31cgi 26suh9BIGsejiUSgmL3fUcMn8K2au9yVidvOxBGqz7YENyyE9YA1LP8dIeaSNLjuZ7Lk bA9hrEFyadVj8Kuh/msb2pg/li3Rke8GeoxRN4Idsb/zPilYiADAf7bc1Vk5yEfVBy8P b11Ig47OI8PQ9tlTq3b+vg/M3Wxkmkumbpiidy+PZCWGUXAsaWbPr+QuYBiHu/iDwYtp 0s/Q== X-Gm-Message-State: ABuFfohVJ7AqnqQYTv9ZXza28mmHwSeYcz524zo5xyhz9zuTxT2YZOEu nOTcyq/0PJd1WaSST6VKkL0iW1MQdp+V4jw/DbvxKA== X-Received: by 2002:a02:4142:: with SMTP id x63-v6mr11564139jaa.55.1538086992214; Thu, 27 Sep 2018 15:23:12 -0700 (PDT) MIME-Version: 1.0 References: <0000000000005e2e530576c6f9ce@google.com> <20180927213026.16863-1-vdronov@redhat.com> In-Reply-To: <20180927213026.16863-1-vdronov@redhat.com> From: Eric Dumazet Date: Thu, 27 Sep 2018 15:22:59 -0700 Message-ID: Subject: Re: KMSAN: uninit-value in __dev_mc_add To: vdronov@redhat.com Cc: syzbot+001516d86dbe88862cec@syzkaller.appspotmail.com, David Miller , netdev , LKML , syzkaller-bugs@googlegroups.com Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Thu, Sep 27, 2018 at 2:30 PM Vladis Dronov wrote: > > Hello, > > This report is actually for the same bug which was reported in: > > https://syzkaller.appspot.com/bug?id=088efeac32fdde781038a777a63e436c0d4d7036 > > The note there that the bug was fixed by "Commits: net: fix uninit-value in > __hw_addr_add_ex()" is wrong. A C-reproducer from the 2nd syzkaller report > can trigger the bug from this one. > > I've researched this and a result is a proposed patch, the problem is the tun > device code allowing to set an arbitrary link type. > > https://lkml.org/lkml/2018/9/26/416 > https://lore.kernel.org/lkml/20180926093018.6646-1-vdronov@redhat.com/T/#u > https://marc.info/?l=linux-netdev&m=153795423320016&w=2 > I dunno, your patch looks quite not the right fix. If TUN is able to change dev->type, how comes it does not set the appropriate dev->addr_len at the same time ? Really the bug seems to be deeper, and without setting proper dev->addr_len, we'll need more 'fixes' like yours. Thanks.