Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from vger.kernel.org (vger.kernel.org [23.128.96.18]) by smtp.lore.kernel.org (Postfix) with ESMTP id 00FF1C64ED6 for ; Tue, 28 Feb 2023 11:30:09 +0000 (UTC) Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S229529AbjB1L3m (ORCPT ); Tue, 28 Feb 2023 06:29:42 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:53364 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S231655AbjB1L3g (ORCPT ); Tue, 28 Feb 2023 06:29:36 -0500 Received: from mail-ed1-x536.google.com (mail-ed1-x536.google.com [IPv6:2a00:1450:4864:20::536]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id BDAF1DBD1 for ; Tue, 28 Feb 2023 03:29:12 -0800 (PST) Received: by mail-ed1-x536.google.com with SMTP id ck15so38722456edb.0 for ; Tue, 28 Feb 2023 03:29:12 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tessares.net; s=google; h=content-transfer-encoding:in-reply-to:from:references:cc:to :content-language:subject:user-agent:mime-version:date:message-id :from:to:cc:subject:date:message-id:reply-to; bh=GBj/GGcssUIPclJb9OaTVZJj6GUgJJTT+lDCTo9rCgQ=; b=ev4Uj0zM8CDLMvFJ9N89gY8s6bTexBCziLfJ9y93h0GjAvOdGgRLYhyM7EWKpGSG/c uBBFYWpQ+ShDHjIhAMAbtmkRcPG4oU1w/LTk+Xr4H+V/ZfQfiOsJm6yk5r2BuJ15vlic wQiodG7MheSxV25r7YFRcY9iC1qE2jrqtB3l03dLuU8KG0QcEaJvbntY1ecSLelsUB6F Z7Q3nrhzvpDTr0apjMYNKcvvhwD+geZ8bmraNLTfVIY2NphLF5ntsu0sIRC+8QB7Z+nB fVaQ4mzqOaH5FDJQRt757SZpNXAlTZJ/iNhFbhpQbSdIJM0+QDLF5Ul/EQJq6KYRdE5h gOVw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=content-transfer-encoding:in-reply-to:from:references:cc:to :content-language:subject:user-agent:mime-version:date:message-id :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=GBj/GGcssUIPclJb9OaTVZJj6GUgJJTT+lDCTo9rCgQ=; b=H2av8SJyO4s6biYFe3f759fnq7uNriFJ7AVb6PDF92Fd+NCIkHnJF/+bsBaafbUAFf ebQtPSl2KHfHR0r3Ktqutrj8fTd5hkj/qvcIgGMrGVo5HhtmzwpF2fkRJm0FFpespsea L9ODKVbMxtSkGNKcj9E6YGBrPJMgJehDjWDOmwGhvrj8smgVY1Qav2kfk4AQvO727yCW Pc+61KGxk5wQspxLRnYx99nQlm6FPQeZ2Zl9ZhcG20reHV2WhkMVfi+ocjpqgweyCsUs 38x82/l/LnJUTVmaoPWlmfHPWuRWDTlUzKmm08kkpZZvxuAyIEGSK6qJS0w8bP5W9eVm g4xA== X-Gm-Message-State: AO0yUKV0jgu3UGFFV/ojHtre7IULXuBccJZtW4jOqvKSywz8Db39247U TqvUJvojzi3sYEqMlvnomYfR+w== X-Google-Smtp-Source: AK7set8RZDJ6WdOsfg3RtQ3zH7fB6FvZdtq4hk6RJEmyFYlX71IvTbbNpXsS2JtDUgI3CjxqD9hTNg== X-Received: by 2002:a17:907:ca14:b0:8b0:26b6:3f2b with SMTP id uk20-20020a170907ca1400b008b026b63f2bmr2016682ejc.53.1677583722973; Tue, 28 Feb 2023 03:28:42 -0800 (PST) Received: from ?IPV6:2a02:578:8593:1200:5848:64ae:8a99:312a? ([2a02:578:8593:1200:5848:64ae:8a99:312a]) by smtp.gmail.com with ESMTPSA id r22-20020a50aad6000000b004af6a7e9131sm4223979edc.64.2023.02.28.03.28.41 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Tue, 28 Feb 2023 03:28:42 -0800 (PST) Message-ID: Date: Tue, 28 Feb 2023 12:28:41 +0100 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.8.0 Subject: Re: [PATCH net 0/7] mptcp: fixes for 6.3 Content-Language: en-GB To: mptcp@lists.linux.dev, "David S. Miller" , Eric Dumazet , Jakub Kicinski , Paolo Abeni , Menglong Dong , Mengen Sun , Shuah Khan , Florian Westphal , Jiang Biao Cc: netdev@vger.kernel.org, linux-kernel@vger.kernel.org, linux-kselftest@vger.kernel.org, stable@vger.kernel.org, Christoph Paasch , Geliang Tang References: <20230227-upstream-net-20230227-mptcp-fixes-v1-0-070e30ae4a8e@tessares.net> From: Matthieu Baerts In-Reply-To: <20230227-upstream-net-20230227-mptcp-fixes-v1-0-070e30ae4a8e@tessares.net> Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Hello, On 27/02/2023 18:29, Matthieu Baerts wrote: > Patch 1 fixes a possible deadlock in subflow_error_report() reported by > lockdep. The report was in fact a false positive but the modification > makes sense and silences lockdep to allow syzkaller to find real issues. > The regression has been introduced in v5.12. > > Patch 2 is a refactoring needed to be able to fix the two next issues. > It improves the situation and can be backported up to v6.0. > > Patches 3 and 4 fix UaF reported by KASAN. It fixes issues potentially > visible since v5.7 and v5.19 but only reproducible until recently > (v6.0). These two patches depend on patch 2/7. > > Patch 5 fixes the order of the printed values: expected vs seen values. > The regression has been introduced recently: present in Linus' tree but > not in a tagged version yet. > > Patch 6 adds missing ro_after_init flags. A previous patch added them > for other functions but these two have been missed. This previous patch > has been backported to stable versions (up to v5.12) so probably better > to do the same here. > > Patch 7 fixes tcp_set_state() being called twice in a row since v5.10. I'm sorry to ask for that but is it possible not to apply these patches? > Signed-off-by: Matthieu Baerts > --- > Geliang Tang (1): > mptcp: add ro_after_init for tcp{,v6}_prot_override > > Matthieu Baerts (2): > selftests: mptcp: userspace pm: fix printed values > mptcp: avoid setting TCP_CLOSE state twice > > Paolo Abeni (4): > mptcp: fix possible deadlock in subflow_error_report > mptcp: refactor passive socket initialization > mptcp: use the workqueue to destroy unaccepted sockets After 3 weeks of validation, syzkaller found an issue with this patch: https://github.com/multipath-tcp/mptcp_net-next/issues/366 We then need to NAK this series. We will send a v2 with a fix for that. > mptcp: fix UaF in listener shutdown The other patches of the series are either not very important or are linked to the "faulty" one: they can all wait as well. Cheers, Matt -- Tessares | Belgium | Hybrid Access Solutions www.tessares.net