Dmitry Vyukov wrote: > On Sun, May 13, 2018 at 12:20 PM, Tetsuo Handa > <penguin-kernel@xxxxxxxxxxxxxxxxxxx> wrote: > > Dmitry Vyukov wrote: > >> This looks very similar to "KASAN: use-after-free Read in fuse_kill_sb_blk": > >> https://groups.google.com/d/msg/syzkaller-bugs/4C4oiBX8vZ0/0NTQRcUYBgAJ > >> > >> which you fixed with "fuse: don't keep dead fuse_conn at fuse_fill_super().": > >> https://groups.google.com/d/msg/syzkaller-bugs/4C4oiBX8vZ0/W6pi8NdbBgAJ > >> > >> However, here we have use-after-free in fuse_kill_sb_anon instead of > >> use_kill_sb_blk. Do you think your patch will fix this as well? > > > > Yes, for fuse_kill_sb_anon() and fuse_kill_sb_blk() are symmetrical. > > I'm waiting for Miklos Szeredi to apply that patch. > > > Thanks for confirming. Let's do: > > #syz fix: fuse: don't keep dead fuse_conn at fuse_fill_super(). > Excuse me, but that patch is not yet applied to any git tree. Isn't the rule that If you forgot to add the Reported-by tag, once the fix for this bug is merged into any tree, please reply to this email with: #syz fix: exact-commit-title ? That's the reason I keep KASAN: use-after-free Read in fuse_kill_sb_blk https://syzkaller.appspot.com/bug?id=a07a680ed0a9290585ca424546860464dd9658db report "open()" table but I want keyword column available in the "open()" table so that we can announce that "patch is proposed and waiting for review" state.
