Received: by 2002:a05:6a10:1a4d:0:0:0:0 with SMTP id nk13csp1549178pxb;
        Wed, 2 Feb 2022 07:26:33 -0800 (PST)
X-Google-Smtp-Source: ABdhPJwchsuRCM6o4TmOvX2ahlPqctJ8oTOEGh3OUChtGEBisw7bc3nPaApKSNO4psZtm4GbS1FR
X-Received: by 2002:a17:90a:7844:: with SMTP id y4mr8679151pjl.13.1643815593258;
        Wed, 02 Feb 2022 07:26:33 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1643815593; cv=none;
        d=google.com; s=arc-20160816;
        b=RfuPBWhg7Hbc2C1RS08sleAS0dGMggq+9VhMvTS9I6ruj5BuJku1hINynZ79G2qHBA
         Mb3mTgycJmVfEEsDyWoJOXeXGhVNArgohvRvnrgLt3RY6vv0+XPUHpf8ZEfC2DsEdS9Q
         HTxaLjPcGP0TAIznRdOpn+N4jwaR4oLDKklV01GtCly1sWWKgOayxzSh36c6shhxrec/
         MavVKebdn6BcDd94zaBYjzqvERpj++AFwz1cfPxpQaA4k2aqFAmQAvNqIfY6VzV4UMe5
         52ew91P+6U7Tg4+Pofum1fPdt1MvvunTczsHNXC/cCBJo+KQdO8wPh5JWxZJoSxHmhuN
         0w7Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to
         :references:mime-version:dkim-signature;
        bh=RqpgNSQqEtvHDhtnLQpmx4vhCkM9OOPAYGCYwN/UpUA=;
        b=t4r8Mc1LcSrfc3uphK3UitZGZxxT1dW2uOLNK/WcH34auOd5yvaed8ec2FnhzhkbmM
         uFZkUYFuFsDHLwh8OgquUNzlJJea8xVaMBlQ2QccSy6l4+a1tuU//mwxvxSMXDlgFoPj
         uPo6BTbLV3SOJEyWfj8WDkWjKkrwqrt/VYsfQqR73ASwVq+EDRA06f/8Vj27y8O+YRxU
         rCAOY+VeqPIA53sVu+fQ7tQiKUbxeP91XHjEiIEehoZvBIHEXKjSOVzubm1NgKJz3OeR
         H+bfxmVdMn3UCpdMn9PRwxrfKS2zJ25SSKCPjG/yhcdZ/1a2yqcxjwiSKj1CHssjI99p
         u1zw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@google.com header.s=20210112 header.b=ABpJD8Cl;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id 25si19224997pgm.381.2022.02.02.07.26.19;
        Wed, 02 Feb 2022 07:26:33 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@google.com header.s=20210112 header.b=ABpJD8Cl;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S244118AbiBBOtx (ORCPT <rfc822;xiejw.io@gmail.com> + 99 others);
        Wed, 2 Feb 2022 09:49:53 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:46582 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S242306AbiBBOtv (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 2 Feb 2022 09:49:51 -0500
Received: from mail-oi1-x235.google.com (mail-oi1-x235.google.com [IPv6:2607:f8b0:4864:20::235])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 470AEC061714
        for <linux-kernel@vger.kernel.org>; Wed,  2 Feb 2022 06:49:51 -0800 (PST)
Received: by mail-oi1-x235.google.com with SMTP id q8so25613126oiw.7
        for <linux-kernel@vger.kernel.org>; Wed, 02 Feb 2022 06:49:51 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20210112;
        h=mime-version:references:in-reply-to:from:date:message-id:subject:to
         :cc;
        bh=RqpgNSQqEtvHDhtnLQpmx4vhCkM9OOPAYGCYwN/UpUA=;
        b=ABpJD8ClxeKSd60j9HNanNhLdkhkcGR6JgMCxv9C9NF9SyXyOofNQr1kSDq2TBfkDz
         9BzwLvHlk0StPgaF7r5NYoVEg0/vgjoQZIA+zkhvgAcv4gxqER9nDaYjx37jFV8/dFBf
         zLC880EnBvtuSeH7MuN4QD8Bi5xHD7c3UKO0pNYoycyTJBRNU3NLxzPmk2zexOizaWus
         XP42NQJzMffcO62LtfYx017tx+hN31+VDJkdYDz9b85+iqTcsc2XXNBcwHrDx+OweCdW
         lGKajBieBwDhgx5WYARzW0WogpCcFSx+HByAUq5idX+pl3r+5aUTijvEdkk1h1WWYoPR
         xKSA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:cc;
        bh=RqpgNSQqEtvHDhtnLQpmx4vhCkM9OOPAYGCYwN/UpUA=;
        b=bvI5d0HPImmXtAmS9pY9HxagWwk3MxxkOfkCitkbIpQantVoiAjUCQLserGLI2hWSp
         mi++GVbPCgFZY2eUVZ4VKkMauI9f0R8ObOlJnOo4YjlJn5w35zwLprdv8BhsXk95T4/1
         BogT1slvygW50lug5JyL1HLqibnttpy7Rsf+5LUebfLMq31FuTQbitdwsalrwtYlh/Fn
         tHfTCOaSb4i9ZI8dVCJOwgMyb4/4fSiJS245s+sprfYCLr1jQYqL86qzwkT3byq2H1wN
         ZfyYoO3ypHwuIph+OrIoIGw0ZooLx52MJxU2UPCN9zdNhvJHqeqsi1Xlc9S5xBGM1W+h
         g52g==
X-Gm-Message-State: AOAM5327v1Rqw8UedbVb7gyH8xSFrhAhaw/EkuGNeqT5m1miojYoDcR8
        FuIOT9fLUG0Wjl/XjqWr2bxjy6hO/tkP71/+gzzEuQ==
X-Received: by 2002:a05:6808:1901:: with SMTP id bf1mr4642177oib.197.1643813390322;
 Wed, 02 Feb 2022 06:49:50 -0800 (PST)
MIME-Version: 1.0
References: <0000000000000a9b7d05d6ee565f@google.com> <0000000000004cc7f905d709f0f6@google.com>
In-Reply-To: <0000000000004cc7f905d709f0f6@google.com>
From:   Marco Elver <elver@google.com>
Date:   Wed, 2 Feb 2022 15:49:38 +0100
Message-ID: <CANpmjNPL-12uWHk+EDPdz=6rs2+n2zJWX1zMAbsfUm=dbZJ4qQ@mail.gmail.com>
Subject: Re: [syzbot] KASAN: vmalloc-out-of-bounds Write in ringbuf_map_alloc
To:     syzbot <syzbot+5ad567a418794b9b5983@syzkaller.appspotmail.com>
Cc:     akpm@linux-foundation.org, andreyknvl@google.com,
        andrii@kernel.org, ast@kernel.org, bpf@vger.kernel.org,
        daniel@iogearbox.net, davem@davemloft.net, glider@google.com,
        hotforest@gmail.com, houtao1@huawei.com, john.fastabend@gmail.com,
        kafai@fb.com, kpsingh@kernel.org, kuba@kernel.org,
        linux-kernel@vger.kernel.org, netdev@vger.kernel.org,
        sfr@canb.auug.org.au, songliubraving@fb.com,
        syzkaller-bugs@googlegroups.com, yhs@fb.com
Content-Type: text/plain; charset="UTF-8"
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Wed, 2 Feb 2022 at 15:36, syzbot
<syzbot+5ad567a418794b9b5983@syzkaller.appspotmail.com> wrote:
>
> syzbot has bisected this issue to:
>
> commit c34cdf846c1298de1c0f7fbe04820fe96c45068c
> Author: Andrey Konovalov <andreyknvl@google.com>
> Date:   Wed Feb 2 01:04:27 2022 +0000
>
>     kasan, vmalloc: unpoison VM_ALLOC pages after mapping

Is this a case of a new bug surfacing due to KASAN improvements? But
it's not quite clear to me why this commit.

Andrey, any thoughts?

> bisection log:  https://syzkaller.appspot.com/x/bisect.txt?x=128cb900700000
> start commit:   6abab1b81b65 Add linux-next specific files for 20220202
> git tree:       linux-next
> final oops:     https://syzkaller.appspot.com/x/report.txt?x=118cb900700000
> console output: https://syzkaller.appspot.com/x/log.txt?x=168cb900700000
> kernel config:  https://syzkaller.appspot.com/x/.config?x=b8d8750556896349
> dashboard link: https://syzkaller.appspot.com/bug?extid=5ad567a418794b9b5983
> syz repro:      https://syzkaller.appspot.com/x/repro.syz?x=1450d9f0700000
> C reproducer:   https://syzkaller.appspot.com/x/repro.c?x=130ef35bb00000
>
> Reported-by: syzbot+5ad567a418794b9b5983@syzkaller.appspotmail.com
> Fixes: c34cdf846c12 ("kasan, vmalloc: unpoison VM_ALLOC pages after mapping")
>
> For information about bisection process see: https://goo.gl/tpsmEJ#bisection