From nobody Sat Apr 2 21:28:51 2022 X-Original-To: dev-commits-src-main@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 8B27A1A57AD0; Sat, 2 Apr 2022 21:28:51 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4KW9C73Tlzz3NTP; Sat, 2 Apr 2022 21:28:51 +0000 (UTC) (envelope-from git@FreeBSD.org) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1648934931; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=Xm3mvAiFAsV3+f1n2CxSHbj1ObbZ7iWCUaH0LakU1R4=; b=gzEcssTY2YdsWd4JhHIpN5F3NK2eFeyYKzKFVpHLAs5XGLqRRviaVaW94J9TvqbYF7NzFU LuMr75aYns4Dag904mktvIA5e0+LmQ8qLhw3OI1XPZZO39H8zPpQjjOx+qBMfMKNxrzPZS DfAvczMq+v9bAQeMz7caa+qbBPIaFjcnDibFjWCTCdRTlNGQdH7PxZK2GcPkwwXVceSzLo 6YaHW3+zPJyM11Eu7rpC5DfZb+SzSmTJ2hCR6G6dl2yQXN5vZ6RTMb600EIKLhgf3VIhlL D5cPzm7vVB9D+0L5Nc/sYI6pPhM5ta2kf5ol6Lhxpg+PWequ05GX8WyKs6KS0w== Received: from gitrepo.freebsd.org (gitrepo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:5]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 53F3510AC4; Sat, 2 Apr 2022 21:28:51 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from gitrepo.freebsd.org ([127.0.1.44]) by gitrepo.freebsd.org (8.16.1/8.16.1) with ESMTP id 232LSpL1040226; Sat, 2 Apr 2022 21:28:51 GMT (envelope-from git@gitrepo.freebsd.org) Received: (from git@localhost) by gitrepo.freebsd.org (8.16.1/8.16.1/Submit) id 232LSpdF040225; Sat, 2 Apr 2022 21:28:51 GMT (envelope-from git) Date: Sat, 2 Apr 2022 21:28:51 GMT Message-Id: <202204022128.232LSpdF040225@gitrepo.freebsd.org> To: src-committers@FreeBSD.org, dev-commits-src-all@FreeBSD.org, dev-commits-src-main@FreeBSD.org From: Michael Tuexen Subject: git: 52106f072fd0 - main - sctp: don't refer to a potentially outdated stream List-Id: Commit messages for the main branch of the src repository List-Archive: https://lists.freebsd.org/archives/dev-commits-src-main List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-dev-commits-src-main@freebsd.org X-BeenThere: dev-commits-src-main@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Git-Committer: tuexen X-Git-Repository: src X-Git-Refname: refs/heads/main X-Git-Reftype: branch X-Git-Commit: 52106f072fd06890fd50ce1a232cbf522ae2155c Auto-Submitted: auto-generated ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1648934931; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=Xm3mvAiFAsV3+f1n2CxSHbj1ObbZ7iWCUaH0LakU1R4=; b=o4vfCk870RtmHXj5pdwuRR568i8cmmYpmqzIc70m8JNlUAbxsnM0xnNAPhN+wlnEsvDO88 gUXrTCD+xWmx100bKdfSA48DFdGwtRjx3naH4+JmuN7dKp7IgBppILi6vw7P41TMVm/y6k +vs2QcGYuTsSQLIRK5kBpgEwXjR5ufsUKVT0X66BcuXCmhRQOeIiaaXv377oVfjdzKXlK3 SBiF8FDL09x/BK/C/iUSF/akFYI0/wUT/uS93DTnp7CTOBLGxgiwOuQSlWvY9eDB8l0nn/ 1nCBN1/w3H4yImZyYd+ttQ8ubJChr1hmFBbNX+XoB2PGxRG3xyctObR/iflm5g== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1648934931; a=rsa-sha256; cv=none; b=xcqXejMk6EmiOVU9o+n1pefgCDf+EmEgCJujO3zIsrA+z2IIAI4udHDub5+qsOg2FtlWCl QSfN8kDGBpLKOew7aUwnQ+xgjOHJBxlRuspYqBC/pTsvq2NrvspSxrcDtAZmnDwT5BlP56 Gw4xdJ3TVEToIJLs186EUlBe8a+3pHFVfXBPTuLjUkXTetmjalgnPKy57h3CWJ529PngRF /Hvw8yLmU80XV9VToo9WW+KSrMy2zcynUIOSYVdKqqVtCU4HOsunub5JRfUAZF9SMLGRDk AP/vkFkgqLSbLxktxcKktKgYO4nY1Dm1P1BNEg7l2H1sMs1KmTecQE8c+chnvg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none X-ThisMailContainsUnwantedMimeParts: N The branch main has been updated by tuexen: URL: https://cgit.FreeBSD.org/src/commit/?id=52106f072fd06890fd50ce1a232cbf522ae2155c commit 52106f072fd06890fd50ce1a232cbf522ae2155c Author: Michael Tuexen AuthorDate: 2022-04-02 21:26:27 +0000 Commit: Michael Tuexen CommitDate: 2022-04-02 21:26:27 +0000 sctp: don't refer to a potentially outdated stream Reported by: syzbot+1593381019112e5bb35c@syzkaller.appspotmail.com MFC after: 3 days --- sys/netinet/sctp_output.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/sys/netinet/sctp_output.c b/sys/netinet/sctp_output.c index d1386eb767aa..9a8927160441 100644 --- a/sys/netinet/sctp_output.c +++ b/sys/netinet/sctp_output.c @@ -13401,6 +13401,8 @@ skip_preblock: KASSERT((asoc->state & SCTP_STATE_WAS_ABORTED) == 0, ("Association was aborted")); + /* The out streams might be reallocated. */ + strm = &asoc->strmout[srcv->sinfo_stream]; if (sp != NULL) { if (sp->msg_is_complete == 0) { strm->last_msg_incomplete = 1;