Re: [syzbot] Re: [syzbot] [kernel?] KMSAN: kernel-infoleak in vmci_host_unlocked_ioctl (3)

From: syzbot
Date: Sun Jun 22 2025 - 23:03:27 EST

Next message: Tzung-Bi Shih: "Re: [PATCH] pstore/ram: Validate ECC parameters against Reed-Solomon constraint"
Previous message: Willy Tarreau: "Re: [PATCH 4/4] tools/nolibc: add missing memchr() to string.h"
In reply to: syzbot: "Re: [syzbot] [kernel?] KMSAN: kernel-infoleak in vmci_host_unlocked_ioctl (3)"
Next in thread: syzbot: "Re: [syzbot] Re: [syzbot] [kernel?] KMSAN: kernel-infoleak in vmci_host_unlocked_ioctl (3)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

For archival purposes, forwarding an incoming command email to
linux-kernel@xxxxxxxxxxxxxxx.

***

Subject: Re: [syzbot] [kernel?] KMSAN: kernel-infoleak in vmci_host_unlocked_ioctl (3)
Author: lizhi.xu@xxxxxxxxxxxxx

#syz test

diff --git a/drivers/misc/vmw_vmci/vmci_host.c b/drivers/misc/vmw_vmci/vmci_host.c
index b64944367ac5..4804aa668e47 100644
--- a/drivers/misc/vmw_vmci/vmci_host.c
+++ b/drivers/misc/vmw_vmci/vmci_host.c
@@ -433,6 +433,9 @@ static int vmci_host_do_receive_datagram(struct vmci_host_dev *vmci_host_dev,
recv_info.result = vmci_ctx_dequeue_datagram(vmci_host_dev->context,
&size, &dg);

+ if (!vmci_host_code_active())
+ return VMCI_ERROR_UNAVAILABLE;
+
if (recv_info.result >= VMCI_SUCCESS) {
void __user *ubuf = (void __user *)(uintptr_t)recv_info.addr;
retval = copy_to_user(ubuf, dg, VMCI_DG_SIZE(dg));

Next message: Tzung-Bi Shih: "Re: [PATCH] pstore/ram: Validate ECC parameters against Reed-Solomon constraint"
Previous message: Willy Tarreau: "Re: [PATCH 4/4] tools/nolibc: add missing memchr() to string.h"
In reply to: syzbot: "Re: [syzbot] [kernel?] KMSAN: kernel-infoleak in vmci_host_unlocked_ioctl (3)"
Next in thread: syzbot: "Re: [syzbot] Re: [syzbot] [kernel?] KMSAN: kernel-infoleak in vmci_host_unlocked_ioctl (3)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]