Re: panic in skb_push via sctp

2014-12-01 Thread Daniel Borkmann
On 12/01/2014 08:17 PM, Robert Święcki wrote: Not sure, but I run it inside a pid/ipc/uts/etc/user-namespaces where it operates with a full set of capabilities, so most of the SOCK_RAW and tunnel-like-creating calls succeed, so maybe.. Ok thanks, can you post your .config? http://alt.swiecki

Re: panic in skb_push via sctp

2014-12-01 Thread Robert Święcki
>> Not sure, but I run it inside a pid/ipc/uts/etc/user-namespaces where >> it operates with a full set of capabilities, so most of the SOCK_RAW >> and tunnel-like-creating calls succeed, so maybe.. > > > Ok thanks, can you post your .config? Hi, http://alt.swiecki.net/.ksan/.config-sctp -- Rob

Re: panic in skb_push via sctp

2014-12-01 Thread Daniel Borkmann
On 12/01/2014 08:00 PM, Robert Święcki wrote: 2014-12-01 19:08 GMT+01:00 Daniel Borkmann : Thanks for looking into it. I can try with your patch, but no guarantees that the fuzzer will hit the same condition in some reasonable time-frame. Will get back in some time with results. Ok, thanks!

Re: panic in skb_push via sctp

2014-12-01 Thread Robert Święcki
2014-12-01 19:08 GMT+01:00 Daniel Borkmann : > >> Thanks for looking into it. I can try with your patch, but no >> guarantees that the fuzzer will hit the same condition in some >> reasonable time-frame. Will get back in some time with results. > > > Ok, thanks! > >> PS. If you think it's possible

Re: panic in skb_push via sctp

2014-12-01 Thread Daniel Borkmann
On 12/01/2014 07:02 PM, Robert Święcki wrote: Thanks for looking into it. I can try with your patch, but no guarantees that the fuzzer will hit the same condition in some reasonable time-frame. Will get back in some time with results. Ok, thanks! PS. If you think it's possible to create a rep

Re: panic in skb_push via sctp

2014-12-01 Thread Robert Święcki
Thanks for looking into it. I can try with your patch, but no guarantees that the fuzzer will hit the same condition in some reasonable time-frame. Will get back in some time with results. PS. If you think it's possible to create a repro (userland code) which can trigger this, I can give it a try.

Re: panic in skb_push via sctp

2014-12-01 Thread Daniel Borkmann
On 12/01/2014 05:49 PM, Robert Święcki wrote: I don't have much more, cause my kernel is kASLRNized and gdb cannot handle that, but pasting output from kdb. Maybe somebody will be able to see something obvious. <0>[93699.703244] skbuff: skb_under_panic: text:83cff03e len:104 put:56 hea