Received: by 2002:a25:b794:0:0:0:0:0 with SMTP id n20csp7499997ybh;
        Thu, 8 Aug 2019 17:22:18 -0700 (PDT)
X-Google-Smtp-Source: APXvYqwUUZbsthMSZ2bTDSfUALGa5u1IHX3u1O1exZKQ0TDNHrm63I0bPNX45lCU7Bt+YbeKCtqr
X-Received: by 2002:a65:5584:: with SMTP id j4mr14949959pgs.258.1565310138032;
        Thu, 08 Aug 2019 17:22:18 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1565310138; cv=none;
        d=google.com; s=arc-20160816;
        b=PMCYD9BOkMQehMZsGnjt66/A0iCOJ+f7y5fmSNWUCnyz+J5kaF+icgUNsTR1ayMqxu
         Zt6+gv4Mw8XB+HSMWc6/54333Q0uJwrvcLGiuro+oH4rROOUk7iZY/OVusQ3TkrqgaxW
         iD+A74+Al3mQez3Oaavwk2+kM9RVCZA94FtfxxyjgRXXac2Osy4xQsgMxQAMsaJTt1Qg
         r6Meai62oxfLjUQR5QhmeNOW05P0Sr3tMqWygUwFv/kc+qWMngSHPpdrWUPx4gPxVZk6
         f5sE+bOy5soDzQHulL0V1hGow4vuusAFCc6HXGv86PQlG4CxHc9u4S/2Sl1NcEkuyECz
         /BCg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding:mime-version
         :organization:references:in-reply-to:message-id:subject:cc:to:from
         :date:dkim-signature;
        bh=SrXlbID68lhPKrJjkmbTtajZDQHFU0j/ynkOO+lAohM=;
        b=EN2Ju4xqxyue9BqIADagngi349idZet/ZEtNoMTupEzEaFWVX0xd64M2k6FyVmzocn
         0nEXZYI4Ck57y2y5fFBcEEYBbt2oyMKptVBNZxC319cE2cbSd9fNO2YioSyGPAqplxfe
         VL8ixffKvTKDJ25Sgvbt3n+7xtqJZlgaA+Ad8MUR1yxt1zQXxKQhn5QlKLuB9DVWi532
         dGLyyrNFytYYOvuET4OpgM9tpRNckyl5WDUftPZ0+R5o6kCqmkgrZ5a3N25aGv2cS7bv
         S1KI0PI0P4WV4T8G7EHctqzcfWgS01nMfGpLH3Nisls2UIb4FvNCPDAq//PyKd08J9gG
         DY/Q==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@netronome-com.20150623.gappssmtp.com header.s=20150623 header.b=Yr5u2Vmo;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id d22si46518334pls.112.2019.08.08.17.22.02;
        Thu, 08 Aug 2019 17:22:18 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@netronome-com.20150623.gappssmtp.com header.s=20150623 header.b=Yr5u2Vmo;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S2405025AbfHIAUp (ORCPT <rfc822;414256we@gmail.com> + 99 others);
        Thu, 8 Aug 2019 20:20:45 -0400
Received: from mail-qt1-f194.google.com ([209.85.160.194]:43735 "EHLO
        mail-qt1-f194.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S2404428AbfHIAUp (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Thu, 8 Aug 2019 20:20:45 -0400
Received: by mail-qt1-f194.google.com with SMTP id w17so13550397qto.10
        for <linux-kernel@vger.kernel.org>; Thu, 08 Aug 2019 17:20:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=netronome-com.20150623.gappssmtp.com; s=20150623;
        h=date:from:to:cc:subject:message-id:in-reply-to:references
         :organization:mime-version:content-transfer-encoding;
        bh=SrXlbID68lhPKrJjkmbTtajZDQHFU0j/ynkOO+lAohM=;
        b=Yr5u2Vmo96zfWo39ki7h7j7HCO1EXUDceAcYfoQtM5RXkFFvJypKjsEjKiv8bUFEWd
         ndb3UqgQdVG5d7QyqSo97A3i3BPmPoiVELQKMA1Y2j3qmge4ZhPji+1S0lPqrtEUxiaC
         MbJEyrANZe7MemMD0mDcPUlws7G4xTK/eXmUhFky1OS2l8RttkA2unobufRTaXikM86m
         JjgluiH74qu/c0dBiWmCgueiRclbh5xeau3N0NtY+U7uiSmXweWXVGnCuN+OF9hJPCKc
         eD4NnaKttNVkM6x4t06CaMZP0P0/iCI3pMHsvmGwzS1YFDZ6jZEsfV2a11ncE5Ojd1jU
         fVqw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:date:from:to:cc:subject:message-id:in-reply-to
         :references:organization:mime-version:content-transfer-encoding;
        bh=SrXlbID68lhPKrJjkmbTtajZDQHFU0j/ynkOO+lAohM=;
        b=ZoxEAW4dDQaLhVP+FDr6xw0Qm+6WQMifbhbRrOcx/b5+0/kLmy7XJ12DP2mNFXP0m9
         RRTnrCgiwd4iB7lDP5QM1kMA5kT3M4AcSrB2wMDFygcjsSdsjzdryejAJNJl67f4+HMP
         dynHnGxF73d7nCWruRnki7zXaLCrcuqZiFeTuQEoS87lzRNk2ZIZs7cul7epHSIFQn9q
         b1r8Rt5iG/kYn0ZM/7333mWoUkjVybBk0ITK17bU96d1QbSFVaKZXWKwrRJsd+Nn+ooN
         TTdzTukHuCm26vMoaRYC9jZ65bJLWRkca1c3QrhfxnLwwGxdYPfQaALPHvZLmCixgehN
         dcLQ==
X-Gm-Message-State: APjAAAWONcb+8ts3tLdKJJ3zZPCifOOCMfVuu0QrZKYOmTF+Vjjca2xq
        t4vpvM7EQ3u5OyA4fk1D70E2pA==
X-Received: by 2002:a0c:8602:: with SMTP id p2mr15734769qva.111.1565310044622;
        Thu, 08 Aug 2019 17:20:44 -0700 (PDT)
Received: from cakuba.netronome.com ([66.60.152.14])
        by smtp.gmail.com with ESMTPSA id q17sm37509666qtl.13.2019.08.08.17.20.43
        (version=TLS1_3 cipher=AEAD-AES256-GCM-SHA384 bits=256/256);
        Thu, 08 Aug 2019 17:20:44 -0700 (PDT)
Date:   Thu, 8 Aug 2019 17:20:41 -0700
From:   Jakub Kicinski <jakub.kicinski@netronome.com>
To:     syzbot <syzbot+30c791a76814a3c6c9f9@syzkaller.appspotmail.com>
Cc:     ast@kernel.org, aviadye@mellanox.com, borisp@mellanox.com,
        bpf@vger.kernel.org, daniel@iogearbox.net, davejwatson@fb.com,
        davem@davemloft.net, john.fastabend@gmail.com, kafai@fb.com,
        linux-kernel@vger.kernel.org, netdev@vger.kernel.org,
        songliubraving@fb.com, syzkaller-bugs@googlegroups.com, yhs@fb.com
Subject: Re: KASAN: use-after-free Read in tls_wait_data
Message-ID: <20190808172041.282a755d@cakuba.netronome.com>
In-Reply-To: <000000000000262820058f9dc474@google.com>
References: <000000000000262820058f9dc474@google.com>
Organization: Netronome Systems, Ltd.
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Thu, 08 Aug 2019 09:44:07 -0700, syzbot wrote:
> Hello,
> 
> syzbot found the following crash on:
> 
> HEAD commit:    7b4980e0 Add linux-next specific files for 20190802
> git tree:       linux-next
> console output: https://syzkaller.appspot.com/x/log.txt?x=14a749b4600000
> kernel config:  https://syzkaller.appspot.com/x/.config?x=7e1348afd44b5e02
> dashboard link: https://syzkaller.appspot.com/bug?extid=30c791a76814a3c6c9f9
> compiler:       gcc (GCC) 9.0.0 20181231 (experimental)
> 
> Unfortunately, I don't have any reproducer for this crash yet.
> 
> IMPORTANT: if you fix the bug, please add the following tag to the commit:
> Reported-by: syzbot+30c791a76814a3c6c9f9@syzkaller.appspotmail.com

Also old tree, pretty confidently I can say:

#syz fix: net/tls: partially revert fix transition through disconnect with close