Re: net/tcp: null-ptr-deref in __inet_lookup_listener/inet_exact_dif_match

2016-11-02 Thread Andrey Konovalov
Hi David, I'm able to reproduce it, so I'd be happy to test your fix. Thanks! On Wed, Nov 2, 2016 at 7:31 PM, David Ahern wrote: > On 11/2/16 11:21 AM, Eric Dumazet wrote: >> Thanks for your report. >> >> David, please take a look. >> >> TCP MD5 can call

Re: net/tcp: null-ptr-deref in __inet_lookup_listener/inet_exact_dif_match

2016-11-02 Thread Andrey Konovalov
Hi David, I'm able to reproduce it, so I'd be happy to test your fix. Thanks! On Wed, Nov 2, 2016 at 7:31 PM, David Ahern wrote: > On 11/2/16 11:21 AM, Eric Dumazet wrote: >> Thanks for your report. >> >> David, please take a look. >> >> TCP MD5 can call __inet_lookup_listener() with a NULL

Re: net/tcp: null-ptr-deref in __inet_lookup_listener/inet_exact_dif_match

2016-11-02 Thread David Ahern
On 11/2/16 11:21 AM, Eric Dumazet wrote: > Thanks for your report. > > David, please take a look. > > TCP MD5 can call __inet_lookup_listener() with a NULL skb. interesting. I did not test md5 before sending, but doing so now I am not able to trigger the panic with any combination of passwords

Re: net/tcp: null-ptr-deref in __inet_lookup_listener/inet_exact_dif_match

2016-11-02 Thread David Ahern
On 11/2/16 11:21 AM, Eric Dumazet wrote: > Thanks for your report. > > David, please take a look. > > TCP MD5 can call __inet_lookup_listener() with a NULL skb. interesting. I did not test md5 before sending, but doing so now I am not able to trigger the panic with any combination of passwords

Re: net/tcp: null-ptr-deref in __inet_lookup_listener/inet_exact_dif_match

2016-11-02 Thread Eric Dumazet
On Wed, 2016-11-02 at 18:01 +0100, Andrey Konovalov wrote: > Hi, > > I've got the following error report while running the syzkaller fuzzer: > > general protection fault: [#1] SMP KASAN > Dumping ftrace buffer: >(ftrace buffer empty) > Modules linked in: > CPU: 0 PID: 648 Comm:

Re: net/tcp: null-ptr-deref in __inet_lookup_listener/inet_exact_dif_match

2016-11-02 Thread Eric Dumazet
On Wed, 2016-11-02 at 18:01 +0100, Andrey Konovalov wrote: > Hi, > > I've got the following error report while running the syzkaller fuzzer: > > general protection fault: [#1] SMP KASAN > Dumping ftrace buffer: >(ftrace buffer empty) > Modules linked in: > CPU: 0 PID: 648 Comm:

net/tcp: null-ptr-deref in __inet_lookup_listener/inet_exact_dif_match

2016-11-02 Thread Andrey Konovalov
Hi, I've got the following error report while running the syzkaller fuzzer: general protection fault: [#1] SMP KASAN Dumping ftrace buffer: (ftrace buffer empty) Modules linked in: CPU: 0 PID: 648 Comm: syz-executor Not tainted 4.9.0-rc3+ #333 Hardware name: QEMU Standard PC (i440FX +

net/tcp: null-ptr-deref in __inet_lookup_listener/inet_exact_dif_match

2016-11-02 Thread Andrey Konovalov
Hi, I've got the following error report while running the syzkaller fuzzer: general protection fault: [#1] SMP KASAN Dumping ftrace buffer: (ftrace buffer empty) Modules linked in: CPU: 0 PID: 648 Comm: syz-executor Not tainted 4.9.0-rc3+ #333 Hardware name: QEMU Standard PC (i440FX +