Received: by 2002:a05:7412:8d10:b0:f3:1519:9f41 with SMTP id bj16csp6000399rdb; Thu, 14 Dec 2023 05:59:14 -0800 (PST) X-Google-Smtp-Source: AGHT+IEAGLPXryS69SbiQQsPCtIlaL66qvrvFcinLb/oKvJPccvgZEgbrDNFMeyzU73L26IS+TiC X-Received: by 2002:a17:90a:1f82:b0:28a:eca8:2e4a with SMTP id x2-20020a17090a1f8200b0028aeca82e4amr1664985pja.43.1702562354324; Thu, 14 Dec 2023 05:59:14 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1702562354; cv=none; d=google.com; s=arc-20160816; b=mRdRt6di0BU3TbfuKo0Fw+12qj4rrFwspDtB8s6K25koCe510ebCCaAvq2CQU9danx n+2IOU/uddLlFAAGz9nmvij0huRVJ65wQoi8oz6XzUl128DrrwA2t/YPgRv5zjbr/9Rs Q4/X0Mkuhpi5iBnuceFNHP3oNCR4yuhIcPV5P5CYVcknWX2XMccu9LpI4xRQ1G7V9j+m yEoq5TeE0VANloCNOasLXjv4qsm5b5cZUmYITY4XWTX91wC9wVU5YgcBHeVN4qhIAhJK Ym4UVpej+XLCqsFY+303cIdT1C21H7rcC+N5wnUJLVC8RH5XvBj9ZFSPEa+xIB3SXXE9 qS/A== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:to:from:subject:message-id:in-reply-to:date :mime-version; bh=IJIfkhy3xTyFmXnex1Qu2IV36NPp4yjUqK+uClwqdRU=; fh=V9AeBafJgTW96HdC48wsxGAfd7Fe9P2uAL8tLCjpUN4=; b=Kf+0f32muU4A+XD5+8QM14IhFqngYS+GJLSn6QdCh1vpyZIXkjALl5M/xkFLwJpomw x+JVrZvldqbG7VMjvUpLTDEEK/hrHyBJJISAzbs9mQbu5kn2uKYfvgucuytQpwp9QpKN +qEfUpWh7/7mNTtE2se3evEpq0GZY6/hue55x2UANUnmc2tpKGwZLymAsHzFKL4Wd9eR QnpcwaanrhepHpIaGcuNPeqh31cFHeRREs6PU9VIjfHlVddY2ER84M5+2ogaUDG8Tg0h H1+Yc0jmZ3eIoXeO0LFH7AzWsGFUBKjwBfyAXDKM2epTTonylx1wg501XOgd/C9OOL3R H2pg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::3:4 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=appspotmail.com Return-Path: Received: from howler.vger.email (howler.vger.email. [2620:137:e000::3:4]) by mx.google.com with ESMTPS id x6-20020a17090a2b0600b0028669fbf7b6si12702410pjc.76.2023.12.14.05.59.13 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 14 Dec 2023 05:59:14 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::3:4 as permitted sender) client-ip=2620:137:e000::3:4; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::3:4 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=appspotmail.com Received: from out1.vger.email (depot.vger.email [IPv6:2620:137:e000::3:0]) by howler.vger.email (Postfix) with ESMTP id BA5048339656; Thu, 14 Dec 2023 05:59:11 -0800 (PST) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.103.11 at howler.vger.email Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1573277AbjLNN66 (ORCPT + 99 others); Thu, 14 Dec 2023 08:58:58 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:53900 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229933AbjLNN65 (ORCPT ); Thu, 14 Dec 2023 08:58:57 -0500 Received: from mail-pj1-f70.google.com (mail-pj1-f70.google.com [209.85.216.70]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 5FFDACF for ; Thu, 14 Dec 2023 05:59:04 -0800 (PST) Received: by mail-pj1-f70.google.com with SMTP id 98e67ed59e1d1-28ae5c1da14so1399255a91.0 for ; Thu, 14 Dec 2023 05:59:04 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1702562344; x=1703167144; h=to:from:subject:message-id:in-reply-to:date:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=IJIfkhy3xTyFmXnex1Qu2IV36NPp4yjUqK+uClwqdRU=; b=lXMX0GMOTyMgA6llPRTbSNsXQ/4bksBBf7tnmSdX8SnN5E0HA8dFOji0K3aY/F4MDz opgXVwV5Nc5tIDDR7KQgv0iiEV3O2wh0uySiobHAzXVvoq/vs1xR6A+WcPcPkGAB4ndr mvvNQ9GRaO6FkZKBwRFov+YQG+io1D4/PX619N+7Jds6nAKfx0buqCx2yDe5ZN4siSMh igO4Zww8pGP16LbEB86YyOFCPhMyncj3nzQZa1s7W8VkAAUr+3H7QfiH7Wr8VhDM99/0 nF77UX9VCcVsOSJm55RnAyzoBHm/SyENMThIOWS84ZuHaoBcBQWRlAVnUzJx8EiF1pM1 SjnQ== X-Gm-Message-State: AOJu0YweIwHB1erGRs0pqnMwJt8nF8DRHpZ1GfCXPjWL9kxeZGoi32i6 OzGKbaA+E1tRiSfv3dUWi22Kz9H7bILR9+yfJi1xab1t8c5Mk6g= MIME-Version: 1.0 X-Received: by 2002:a17:90a:4ca7:b0:286:9485:ec48 with SMTP id k36-20020a17090a4ca700b002869485ec48mr1052402pjh.8.1702562343999; Thu, 14 Dec 2023 05:59:03 -0800 (PST) Date: Thu, 14 Dec 2023 05:59:03 -0800 In-Reply-To: <0000000000009b39bc060c73e209@google.com> X-Google-Appengine-App-Id: s~syzkaller X-Google-Appengine-App-Id-Alias: syzkaller Message-ID: <000000000000b8e7bb060c78afcc@google.com> Subject: Re: [syzbot] [net?] KASAN: slab-out-of-bounds Read in dns_resolver_preparse From: syzbot To: linux-kernel@vger.kernel.org Content-Type: text/plain; charset="UTF-8" X-Spam-Status: No, score=-0.4 required=5.0 tests=FROM_LOCAL_HEX, HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,SPF_HELO_NONE, SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on howler.vger.email Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.6.4 (howler.vger.email [0.0.0.0]); Thu, 14 Dec 2023 05:59:12 -0800 (PST) For archival purposes, forwarding an incoming command email to linux-kernel@vger.kernel.org. *** Subject: [net?] KASAN: slab-out-of-bounds Read in dns_resolver_preparse Author: eadavis@qq.com please test slab-out-of-bounds Read in dns_resolver_preparse #syz test https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git 48e8992e33ab diff --git a/security/keys/keyctl.c b/security/keys/keyctl.c index 10ba439968f7..f28ba8a703fe 100644 --- a/security/keys/keyctl.c +++ b/security/keys/keyctl.c @@ -83,7 +83,7 @@ SYSCALL_DEFINE5(add_key, const char __user *, _type, long ret; ret = -EINVAL; - if (plen > 1024 * 1024 - 1) + if (plen > 1024 * 1024 - 1 || plen < 48) goto error; /* draw all the data into kernel space */