API tools faq
paste
Guest User

Untitled

a guest
May 17th, 2018
253
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 9.54 KB | None | 0 0
raw download clone embed print report
  1. searching for fixing commit since 6304672b7f0a5c010002e63a075160856dc4f88d
  2. building syzkaller on a899be78f52e4111313fed259abc574fff85e7d7
  3. testing commit 6304672b7f0a5c010002e63a075160856dc4f88d with gcc (GCC) 8.1.0
  4. try #0: kernel crashed: inconsistent lock state in est_fetch_counters
  5. try #1: kernel crashed: inconsistent lock state in est_fetch_counters
  6. try #2: kernel crashed: inconsistent lock state in est_fetch_counters
  7. try #3: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  8. try #4: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  9. testing current HEAD 41e3e1082367221e99a59c8968a583706123ae04
  10. testing commit 41e3e1082367221e99a59c8968a583706123ae04 with gcc (GCC) 8.1.0
  11. try #0: OK
  12. try #1: OK
  13. try #2: OK
  14. try #3: OK
  15. try #4: OK
  16. # git bisect start 41e3e1082367221e99a59c8968a583706123ae04 6304672b7f0a5c010002e63a075160856dc4f88d
  17. Bisecting: 13579 revisions left to test after this (roughly 14 steps)
  18. [da2495fbcbf892d2ad1c6dcfcc9ffe89973b54f6] Merge remote-tracking branches 'asoc/topic/rt5670', 'asoc/topic/sgtl5000', 'asoc/topic/si476x' and 'asoc/topic/sirf' into asoc-next
  19. testing commit da2495fbcbf892d2ad1c6dcfcc9ffe89973b54f6 with gcc (GCC) 8.1.0
  20. try #0: OK
  21. try #1: OK
  22. try #2: OK
  23. try #3: OK
  24. try #4: OK
  25. # git bisect bad da2495fbcbf892d2ad1c6dcfcc9ffe89973b54f6
  26. Bisecting: 6845 revisions left to test after this (roughly 13 steps)
  27. [fe53d1443a146326b49d57fe6336b5c2a725223f] Merge tag 'armsoc-drivers' of git://git.kernel.org/pub/scm/linux/kernel/git/arm/arm-soc
  28. testing commit fe53d1443a146326b49d57fe6336b5c2a725223f with gcc (GCC) 8.1.0
  29. try #0: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  30. try #1: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  31. try #2: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  32. try #3: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  33. try #4: OK
  34. # git bisect good fe53d1443a146326b49d57fe6336b5c2a725223f
  35. Bisecting: 3420 revisions left to test after this (roughly 12 steps)
  36. [a2e5790d841658485d642196dbb0927303d6c22f] Merge branch 'akpm' (patches from Andrew)
  37. testing commit a2e5790d841658485d642196dbb0927303d6c22f with gcc (GCC) 8.1.0
  38. try #0: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  39. try #1: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  40. try #2: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  41. try #3: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  42. try #4: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  43. # git bisect good a2e5790d841658485d642196dbb0927303d6c22f
  44. Bisecting: 1710 revisions left to test after this (roughly 11 steps)
  45. [3be23274755ee85771270a23af7691dc9b3a95db] tpm: fix potential buffer overruns caused by bit glitches on the bus
  46. testing commit 3be23274755ee85771270a23af7691dc9b3a95db with gcc (GCC) 8.1.0
  47. try #0: OK
  48. try #1: OK
  49. try #2: OK
  50. try #3: OK
  51. try #4: OK
  52. # git bisect bad 3be23274755ee85771270a23af7691dc9b3a95db
  53. Bisecting: 808 revisions left to test after this (roughly 10 steps)
  54. [15303ba5d1cd9b28d03a980456c0978c0ea3b208] Merge tag 'kvm-4.16-1' of git://git.kernel.org/pub/scm/virt/kvm/kvm
  55. testing commit 15303ba5d1cd9b28d03a980456c0978c0ea3b208 with gcc (GCC) 8.1.0
  56. try #0: OK
  57. try #1: OK
  58. try #2: OK
  59. try #3: OK
  60. try #4: OK
  61. # git bisect bad 15303ba5d1cd9b28d03a980456c0978c0ea3b208
  62. Bisecting: 450 revisions left to test after this (roughly 9 steps)
  63. [f1517df8701c9f12dae9ce7f43a5d300a6917619] Merge tag 'nfsd-4.16' of git://linux-nfs.org/~bfields/linux
  64. testing commit f1517df8701c9f12dae9ce7f43a5d300a6917619 with gcc (GCC) 8.1.0
  65. try #0: kernel crashed: KASAN: use-after-free Write in xt_rateest_tg_checkentry
  66. try #1: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  67. try #2: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  68. try #3: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  69. try #4: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  70. # git bisect good f1517df8701c9f12dae9ce7f43a5d300a6917619
  71. Bisecting: 230 revisions left to test after this (roughly 8 steps)
  72. [7a501609c2cb73381e925827c504a4c2c2cb0817] mconsole_proc(): don't mess with file->f_pos
  73. testing commit 7a501609c2cb73381e925827c504a4c2c2cb0817 with gcc (GCC) 8.1.0
  74. try #0: OK
  75. try #1: OK
  76. try #2: OK
  77. try #3: OK
  78. try #4: OK
  79. # git bisect bad 7a501609c2cb73381e925827c504a4c2c2cb0817
  80. Bisecting: 106 revisions left to test after this (roughly 7 steps)
  81. [858f45bff3b8be61d91e87ef90dddd68433cbffa] Merge branch 'for-next' of git://git.kernel.org/pub/scm/linux/kernel/git/nab/target-pending
  82. testing commit 858f45bff3b8be61d91e87ef90dddd68433cbffa with gcc (GCC) 8.1.0
  83. try #0: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  84. try #1: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  85. try #2: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  86. try #3: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  87. try #4: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  88. # git bisect good 858f45bff3b8be61d91e87ef90dddd68433cbffa
  89. Bisecting: 49 revisions left to test after this (roughly 6 steps)
  90. [e0c42c8e3e94f6c478f8c96814d4a2d19d2204b2] Merge tag 'wireless-drivers-next-for-davem-2018-02-08' of git://git.kernel.org/pub/scm/linux/kernel/git/kvalo/wireless-drivers-next
  91. testing commit e0c42c8e3e94f6c478f8c96814d4a2d19d2204b2 with gcc (GCC) 8.1.0
  92. try #0: OK
  93. try #1: OK
  94. try #2: OK
  95. try #3: OK
  96. try #4: OK
  97. # git bisect bad e0c42c8e3e94f6c478f8c96814d4a2d19d2204b2
  98. Bisecting: 27 revisions left to test after this (roughly 5 steps)
  99. [c70255868148a498ba418bc6c2f9df212d30d393] Merge branch 'nfp-fix-disabling-TC-offloads-in-flower-max-TSO-segs-and-module-version'
  100. testing commit c70255868148a498ba418bc6c2f9df212d30d393 with gcc (GCC) 8.1.0
  101. try #0: OK
  102. try #1: OK
  103. try #2: OK
  104. try #3: OK
  105. try #4: OK
  106. # git bisect bad c70255868148a498ba418bc6c2f9df212d30d393
  107. Bisecting: 14 revisions left to test after this (roughly 4 steps)
  108. [17e9e23b130e4e269fa53c2370325249f3ba75dd] rxrpc: Fix received abort handling
  109. testing commit 17e9e23b130e4e269fa53c2370325249f3ba75dd with gcc (GCC) 8.1.0
  110. try #0: OK
  111. try #1: OK
  112. try #2: OK
  113. try #3: OK
  114. try #4: OK
  115. # git bisect bad 17e9e23b130e4e269fa53c2370325249f3ba75dd
  116. Bisecting: 6 revisions left to test after this (roughly 3 steps)
  117. [7dc68e98757a8eccf8ca7a53a29b896f1eef1f76] netfilter: xt_RATEEST: acquire xt_rateest_mutex for hash insert
  118. testing commit 7dc68e98757a8eccf8ca7a53a29b896f1eef1f76 with gcc (GCC) 8.1.0
  119. try #0: OK
  120. try #1: OK
  121. try #2: OK
  122. try #3: OK
  123. try #4: OK
  124. # git bisect bad 7dc68e98757a8eccf8ca7a53a29b896f1eef1f76
  125. Bisecting: 3 revisions left to test after this (roughly 2 steps)
  126. [6be3bcd75afb673a37a82e18ba46d50430f172c1] netfilter: flowtable infrastructure depends on NETFILTER_INGRESS
  127. testing commit 6be3bcd75afb673a37a82e18ba46d50430f172c1 with gcc (GCC) 8.1.0
  128. try #0: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  129. try #1: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  130. try #2: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  131. try #3: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  132. try #4: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  133. # git bisect good 6be3bcd75afb673a37a82e18ba46d50430f172c1
  134. Bisecting: 1 revision left to test after this (roughly 1 step)
  135. [c7f0030b5b67866c588845abde7bf011de25b98a] netfilter: nft_flow_offload: wait for garbage collector to run after cleanup
  136. testing commit c7f0030b5b67866c588845abde7bf011de25b98a with gcc (GCC) 8.1.0
  137. try #0: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  138. try #1: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  139. try #2: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  140. try #3: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  141. try #4: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  142. # git bisect good c7f0030b5b67866c588845abde7bf011de25b98a
  143. Bisecting: 0 revisions left to test after this (roughly 0 steps)
  144. [992cfc7c5d105094da7c21c9c74d97ac26bb1e56] netfilter: nft_flow_offload: no need to flush entries on module removal
  145. testing commit 992cfc7c5d105094da7c21c9c74d97ac26bb1e56 with gcc (GCC) 8.1.0
  146. try #0: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  147. try #1: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  148. try #2: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  149. try #3: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  150. try #4: kernel crashed: KASAN: use-after-free Write in xt_rateest_put
  151. # git bisect good 992cfc7c5d105094da7c21c9c74d97ac26bb1e56
  152. 7dc68e98757a8eccf8ca7a53a29b896f1eef1f76 is the first bad commit
  153. commit 7dc68e98757a8eccf8ca7a53a29b896f1eef1f76
  154. Author: Cong Wang <xiyou.wangcong@gmail.com>
  155. Date: Mon Feb 5 14:41:45 2018 -0800
  156.  
  157. netfilter: xt_RATEEST: acquire xt_rateest_mutex for hash insert
  158.  
  159. rateest_hash is supposed to be protected by xt_rateest_mutex,
  160. and, as suggested by Eric, lookup and insert should be atomic,
  161. so we should acquire the xt_rateest_mutex once for both.
  162.  
  163. So introduce a non-locking helper for internal use and keep the
  164. locking one for external.
  165.  
  166. Reported-by: <syzbot+5cb189720978275e4c75@syzkaller.appspotmail.com>
  167. Fixes: 5859034d7eb8 ("[NETFILTER]: x_tables: add RATEEST target")
  168. Signed-off-by: Cong Wang <xiyou.wangcong@gmail.com>
  169. Reviewed-by: Florian Westphal <fw@strlen.de>
  170. Reviewed-by: Eric Dumazet <edumazet@google.com>
  171. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
  172.  
  173. :040000 040000 3196d85a549f7dbb6c8c69c8f3082e458c80df6c 659be93247dd3e0da9365169bb4509732c147b6f M net
  174. revisions tested: 17, total time: 2h35m48.923999628s (build: 59m53.865935978s, test: 1h33m5.153718473s)
  175. first good commit: 7dc68e98757a8eccf8ca7a53a29b896f1eef1f76 netfilter: xt_RATEEST: acquire xt_rateest_mutex for hash insert
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!