On 6/18/18 6:24 AM, Eric Dumazet wrote:
> syzbot reported use after free that is caused by fib6_info being
> freed without a proper RCU grace period.
>
...
> Fixes: a64efe142f5e ("net/ipv6: introduce fib6_info struct and helpers")
> Signed-off-by: Eric Dumazet <eduma...@google.com>
> Cc: David Ahern <dsah...@gmail.com>
> Reported-by: syzbot+9e6d75e3edef427ee...@syzkaller.appspotmail.com
> ---
> include/net/ip6_fib.h | 5 +++--
> net/ipv6/ip6_fib.c | 5 +++--
> 2 files changed, 6 insertions(+), 4 deletions(-)
>
I wondered if that was needed when flipping to the new data struct.
Apparently so. Thanks for the patch,
Acked-by: David Ahern <dsah...@gmail.com>
Tested-by: David Ahern <dsah...@gmail.com>
