Received: by 2002:a05:6358:45e:b0:b5:b6eb:e1f9 with SMTP id 30csp119717rwe; Fri, 26 Aug 2022 01:43:43 -0700 (PDT) X-Google-Smtp-Source: AA6agR6on/No6g0f1/t5K1J+vrq1/4gWkcodZ1+aAdqNxjkApncL+hkfCoelIWrYYJ3o6H7GFD+X X-Received: by 2002:a05:6402:134e:b0:445:d389:266e with SMTP id y14-20020a056402134e00b00445d389266emr6117882edw.97.1661503423753; Fri, 26 Aug 2022 01:43:43 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1661503423; cv=none; d=google.com; s=arc-20160816; b=wIv4cVrc/Z0TEm5wT4A0Mi5QZAPQR7cPvBJPTk6jubep/wiR3hLE9hPHr3ncC5M3H0 c06iu8YEY8jiygnN2SORa8aCkt4DE5Qm6tGmoi8HN6bxHRY42v8BRSXLcLdRPiZlMDvl 4ojfD98ghTT3RX530w0rUep8cH+KtGLsKDlgmIyL7L0RzK9/vaN6UD4UhODn1vwq02aY ojz9/GaQORZaFX3xZGqg/knAwm7Htnm2ISVu23xu1f86h5MiKbxVqPanBBpijSyw2mSv 2lCp8Fvqa67GdPah9Ls4vNaG2z00h7XNT0jZ17zjG7WG9+mSbp8vK/FYSH1fgtBhix20 fSbQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version :dkim-signature; bh=Gbnh/nnDbuL5T5BvLNj3zwAmlE8d4k5PawHmbvFEFbk=; b=efzjf1xxiIG8r23PxZ3QBfVIppgWrrsZKApUoKLd1y8DiBP55+Ns9eW4yY/HN/7i0L lDGGRpC824zOACyDCUl3fgL/SYt1+UW/ZEvqlKKJC20GCZ7tsIS0uv5XXcqk0n69Str1 5o8fH8FOaKvXKX5RJxKC6FU6GJ4HD8R0Eynf/LUWZmrmiYQb3TKH9zkqC9cPtm60l6nP gWHOH6mks7BC2L82To5NQxaCEhs0eWa/Mea1+6ngZ3bvcK7zxC+Us6jOO37RCensNwHm ozqyyqAMeN8AGqbK+5S0eco7AE/gC6lvfh4QDODosZQUw8oE4SFGQ9DWAHzyrbPF9qUK RmrA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20210112 header.b=MNjXddBA; spf=pass (google.com: domain of linux-wireless-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-wireless-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id m14-20020a056402510e00b0043c891e0f0fsi1226879edd.356.2022.08.26.01.43.27; Fri, 26 Aug 2022 01:43:43 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-wireless-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20210112 header.b=MNjXddBA; spf=pass (google.com: domain of linux-wireless-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-wireless-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S245599AbiHZIkZ (ORCPT + 64 others); Fri, 26 Aug 2022 04:40:25 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:58082 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S245441AbiHZIkB (ORCPT ); Fri, 26 Aug 2022 04:40:01 -0400 Received: from mail-yw1-x1135.google.com (mail-yw1-x1135.google.com [IPv6:2607:f8b0:4864:20::1135]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id E692DD5E8D for ; Fri, 26 Aug 2022 01:39:08 -0700 (PDT) Received: by mail-yw1-x1135.google.com with SMTP id 00721157ae682-33dbbf69b3dso19404147b3.1 for ; Fri, 26 Aug 2022 01:39:08 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20210112; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc; bh=Gbnh/nnDbuL5T5BvLNj3zwAmlE8d4k5PawHmbvFEFbk=; b=MNjXddBAOd+w9wkV5muswSppV6x5Jv+YS9ecOjXsUWJBVbPQURDBrSTe3Rss2i0p/r Jhmif2aOct4FrfcfpD9SRO9RHxr4LmccGOUui2+rtO1i6NUewZYaWAF1Uj3qq59pfr91 VjwTW2OAdfNyC5ON+2WWx86GER7zk9LtKCZGNCcc/bhubscXBSXf0GihTtUlUsBLA3Xn vuWQ47vl8nc81EKOuzXoehfRScxfeaXU9CceWTlAIRodc4v7g6LuKc+2uSzDQqYIngTy F8vTYNtLOiuY3iezgI6TMtgUOBkC4/bd55SIlfcNGNOfJt1siO9gbTktwflBScPg/B+A IwQw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc; bh=Gbnh/nnDbuL5T5BvLNj3zwAmlE8d4k5PawHmbvFEFbk=; b=l/sm7s9SKqdjjtO3zHhfK8ufT5Ibrgnv72n8WDi3t+La4Z1JR5iuAZ1JvWBBM1nT0H K7gwT4BnudCpvW5BDX7B5CeNMtIwLg/icNab0FfJcugRjR/9XSoSHrAkDG6lLBS1RtA2 IkIQrPrOOm7KudNn+5yGc9LN2v5D14c+Mo2qkbOKq5qZYtiolEefA7p3jC09jwnNVzOT cT6B5228SXN6OpvKMp8YTJBzUUlAFTskuCsAXlLw+zIp4a0GtYz4SduPtWAZDG6247Qn 46ODAP+6nJjXwp/40PwpiJtwB5YJiGRlZv0F7M0xvB7Q+6TNR02gOB70G9sC0aUGmH5j TfdQ== X-Gm-Message-State: ACgBeo2JNmMsOcRA0waljKmza+BfqP2UJ32ix/6fQQhL/ycCQbxIjZ6+ qVIEpDh1U7/GBACwy7w0ZCDzxTp1a7niu46I28Wgjw== X-Received: by 2002:a81:10a:0:b0:333:618e:190b with SMTP id 10-20020a81010a000000b00333618e190bmr7063483ywb.10.1661503147204; Fri, 26 Aug 2022 01:39:07 -0700 (PDT) MIME-Version: 1.0 References: <000000000000c98a7f05ac744f53@google.com> <000000000000734fe705acb9f3a2@google.com> <1a0b4d24-6903-464f-7af0-65c9788545af@I-love.SAKURA.ne.jp> <46fee955-a5fa-fbd6-bcc4-d9344e6801d9@I-love.SAKURA.ne.jp> In-Reply-To: <46fee955-a5fa-fbd6-bcc4-d9344e6801d9@I-love.SAKURA.ne.jp> From: Alexander Potapenko Date: Fri, 26 Aug 2022 10:38:30 +0200 Message-ID: Subject: Re: KMSAN: uninit-value in ath9k_htc_rx_msg To: Tetsuo Handa Cc: ath9k-devel@qca.qualcomm.com, phil@philpotter.co.uk, David Miller , Jakub Kicinski , Kalle Valo , LKML , linux-wireless , Networking , syzkaller-bugs Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Spam-Status: No, score=-17.6 required=5.0 tests=BAYES_00,DKIMWL_WL_MED, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF, ENV_AND_HDR_SPF_MATCH,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS, T_SCC_BODY_TEXT_LINE,USER_IN_DEF_DKIM_WL,USER_IN_DEF_SPF_WL autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-wireless@vger.kernel.org On Fri, Aug 26, 2022 at 3:35 AM Tetsuo Handa wrote: > > On 2022/08/26 0:09, Alexander Potapenko wrote: > > On Thu, Aug 25, 2022 at 4:34 PM Tetsuo Handa > > wrote: > >> > >> Hello. > > Hi Tetsuo, > > > >> I found that your patch was applied. But since the reproducer tested o= nly 0 byte > >> case, I think that rejecting only less than sizeof(struct htc_frame_hd= r) bytes > >> is not sufficient. > >> > >> More complete patch with Ack from Toke is waiting at > >> https://lkml.kernel.org/r/7acfa1be-4b5c-b2ce-de43-95b0593fb3e5@I-love.= SAKURA.ne.jp . > > > > Thanks for letting me know! I just checked that your patch indeed > > fixes the issue I am facing. > > If it is more complete, I think we'd indeed better use yours. > > I recognized that "ath9k: fix an uninit value use in ath9k_htc_rx_msg()" = is > local to KMSAN tree. > https://github.com/google/kmsan/commit/d891e35583bf2e81ccc7a2ea548bf7cf47= 329f40 I actually did a rebase of KMSAN tree to v6.0-rc2 yesterday and dropped that patch (picked yours instead). Thanks for the heads-up! --=20 Alexander Potapenko Software Engineer Google Germany GmbH Erika-Mann-Stra=C3=9Fe, 33 80636 M=C3=BCnchen Gesch=C3=A4ftsf=C3=BChrer: Paul Manicle, Liana Sebastian Registergericht und -nummer: Hamburg, HRB 86891 Sitz der Gesellschaft: Hamburg