[PATCH] mac80211_hwsim: fixed use-after-free bug in hwsim_exit_net

case. Fixes: 100cb9ff40e0 ("mac80211_hwsim: Allow managing radios from non-initial namespaces") Reported-by: syzbot+70ce058e01259de7b...@syzkaller.appspotmail.com Signed-off-by: Benjamin Beichler --- drivers/net/wireless/mac80211_hwsim.c | 8 ++-- 1 file changed, 6 insertions(+), 2

Re: [PATCH net-next 1/2] mac80211_hwsim: Make hwsim_netgroup IDA

I think all this happens really rare and it's not worth the effort. >Thanks, >Kirill -- M.Sc. Benjamin Beichler Universität Rostock, Fakultät für Informatik und Elektrotechnik Institut für Angewandte Mikroelektronik und Datentechnik University of Rostock, Department of CS an

Re: KASAN: use-after-free Read in mac80211_hwsim_del_radio

need to be already gone. We could simply put a workqueue flush after the loop, but since we have no unbounded workqueue (which would also not be useful here I think), this only will delay things further. Therefore I will create a patch, which deletes synchronously here. -- M.Sc. Benjamin Beichler

Re: [PATCH net-next 1/2] mac80211_hwsim: Make hwsim_netgroup IDA

the parallel flag is not set), there could be no race condition. Maybe this should be documented somehow, especially if somebody got the idea to allow parallel callbacks :-) -- M.Sc. Benjamin Beichler Universität Rostock, Fakultät für Informatik und Elektrotechnik Institut für Angewandte Mikroel

Re: KASAN: use-after-free Read in mac80211_hwsim_del_radio

mac80211_hwsim_del_radio", but only your answer (without the logs) appears. I try to have a look then in the next few days. kind regards Benjamin -- M.Sc. Benjamin Beichler Universität Rostock, Fakultät für Informatik und Elektrotechnik Institut für Angewandte Mikroelektronik und Da