Received: by 2002:a05:6358:7058:b0:131:369:b2a3 with SMTP id 24csp9567208rwp; Thu, 20 Jul 2023 06:52:59 -0700 (PDT) X-Received: by 2002:a17:906:7a4b:b0:992:58fc:bcb8 with SMTP id i11-20020a1709067a4b00b0099258fcbcb8mr4577047ejo.56.1689861179238; Thu, 20 Jul 2023 06:52:59 -0700 (PDT) X-Google-Smtp-Source: APBJJlGVC7oIoWpWCqcWV69OOumT8OZFh+Z0A/Pq8rh2E4n7k8ZKS1TXQBEe9/kkcup4YFZjMx3B X-Received: by 2002:a17:906:7a4b:b0:992:58fc:bcb8 with SMTP id i11-20020a1709067a4b00b0099258fcbcb8mr4576995ejo.56.1689861178101; Thu, 20 Jul 2023 06:52:58 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1689861178; cv=none; d=google.com; s=arc-20160816; b=cQnC4SujMdUmpwH6KgLEBMIBUXy+Yvy1P1BI8oaufxXmKExNS4TuemIrXAK1FqA0sy ZhC1KYr6WBP0/zZVt800zLOwhMBXFzOUEIbikAYnRBRCiw8DMixWxbZhIrqvHGI/baTs Y5z+SzwLxGW4976MWpSpqw0f2lchR+ScPrqGYqiC1z1XBNYAgt+iXh8T87NwLGf05hDv /1Qab1keD2k7DHo4TpDWCDfvvP27LLbReGJJbSRUAbuvSUofCxNoHfrteE8nN3lZpRwX l/8laGaJpp2LCfe2zKZdbnm5X1/qlcAfhQFEWKg40KkLEEy8fnd9ChnW1QyScil2AHmY ORXA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:content-disposition:mime-version :references:message-id:subject:cc:to:from:date:dkim-signature :dkim-filter; bh=yZMlngbh3YKbzLA0HIeJWnW6IMjTlDcM5F2W41AYGrI=; fh=ObMI8bW5exF/yxrqkPYYEA7MTTS7Ydvb6Q6+gwK+Wa0=; b=vkledGEHcDp6fWN1/yqihr60/PgHNhOArfEhnX3V5XcpJrf/Kdl/tmDnq68lrMVj2O yrimby5DNQ221KmyX0WrjzDOet27r3kyOU8bTeHFs0Wf5FhC6j4U7TPfb6GHpO7MXtbM iJwP77Pvm/9USLVLaSnt6s208UmFOicNTLoeVRX0Hqu7Wft+XgfBcy22G7KmMJ7uFUKo zwxqfFEAMpK6KVGSIXmzLKGwMA7hVLVaLRJzBG8INurMfOL4Zm0ZybcPG3+Q64yOEVBc AH+ymnd/7qlhFnOtOoZJuHvG5LBNgJvq65qWZtw+CzIV/IUUJjdhjebzgHcey8DZXQHT 2fyw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@ispras.ru header.s=default header.b=IUB6OW3M; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=ispras.ru Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id q8-20020a1709060e4800b00988c76f9d4bsi654112eji.347.2023.07.20.06.52.33; Thu, 20 Jul 2023 06:52:58 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@ispras.ru header.s=default header.b=IUB6OW3M; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=ispras.ru Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231959AbjGTN3e (ORCPT + 99 others); Thu, 20 Jul 2023 09:29:34 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:48324 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S231950AbjGTN3J (ORCPT ); Thu, 20 Jul 2023 09:29:09 -0400 Received: from mail.ispras.ru (mail.ispras.ru [83.149.199.84]) by lindbergh.monkeyblade.net (Postfix) with ESMTP id DD08D2701 for ; Thu, 20 Jul 2023 06:28:44 -0700 (PDT) Received: from localhost (unknown [10.10.165.16]) by mail.ispras.ru (Postfix) with ESMTPSA id 445A2407675E; Thu, 20 Jul 2023 13:22:35 +0000 (UTC) DKIM-Filter: OpenDKIM Filter v2.11.0 mail.ispras.ru 445A2407675E DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ispras.ru; s=default; t=1689859355; bh=yZMlngbh3YKbzLA0HIeJWnW6IMjTlDcM5F2W41AYGrI=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=IUB6OW3MSaCKf93RcbWVMQPkAVesm0BoP36zT9/9Rx5JcDN+3NQAC64L4Ay/67wiv TothD/T/TeyAo1G586LQW7skGrfPNrwmnAUYkRegS/aVi2IPl0s86BgpbSu6aMsjqO +0wKkltPmgpYXPWIO6dDHfawnu6e9NB4stmNdF2M= Date: Thu, 20 Jul 2023 16:22:34 +0300 From: Fedor Pchelkin To: syzbot Cc: kvalo@kernel.org, linux-kernel@vger.kernel.org, linux-wireless@vger.kernel.org, netdev@vger.kernel.org, syzkaller-bugs@googlegroups.com, toke@toke.dk, Alexey Khoroshilov , lvc-project@linuxtesting.org Subject: Re: [syzbot] [afs?] general protection fault in skb_queue_tail (3) Message-ID: <5tu3vxj3bs4crdypi75bv5e5a4wazsuwze5kas3yao2ng65gtd@6a7gfrtsyc6o> References: <0000000000000de35905ead6dcc1@google.com> <000000000000ea91fa0600816cb8@google.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <000000000000ea91fa0600816cb8@google.com> X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_BLOCKED, SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 23/07/15 12:22AM, syzbot wrote: > syzbot suspects this issue was fixed by commit: > > commit 061b0cb9327b80d7a0f63a33e7c3e2a91a71f142 > Author: Fedor Pchelkin > Date: Wed May 17 15:03:17 2023 +0000 > > wifi: ath9k: don't allow to overwrite ENDPOINT0 attributes > > bisection log: https://syzkaller.appspot.com/x/bisect.txt?x=12253b7ca80000 > start commit: 98555239e4c3 Merge tag 'arc-6.1-fixes' of git://git.kernel.. > git tree: upstream > kernel config: https://syzkaller.appspot.com/x/.config?x=701f2aae1cb0470e > dashboard link: https://syzkaller.appspot.com/bug?extid=160a7250e255d25725eb > syz repro: https://syzkaller.appspot.com/x/repro.syz?x=1482f0b6880000 > C reproducer: https://syzkaller.appspot.com/x/repro.c?x=119e4dce880000 > > If the result looks correct, please mark the issue as fixed by replying with: > > #syz fix: wifi: ath9k: don't allow to overwrite ENDPOINT0 attributes > > For information about bisection process see: https://goo.gl/tpsmEJ#bisection Seems reasonable since the reproducer here manages to modify ENDPOINT0 attrs and this leads to the invalid behaviour in different ways - the one is this bug and another is the one fixed by the commit which syzbot bisected. Those attempts to modify ENDPOINT0 are now prohibited with this commit. So I think the result is correct (apart from that this issue is not related to afs). #syz fix: wifi: ath9k: don't allow to overwrite ENDPOINT0 attributes