Hello:
This patch was applied to netdev/net.git (main) by Jakub Kicinski kuba@kernel.org:
On Thu, 3 Oct 2024 18:01:51 +0100 you wrote:
We have recently noticed the exact same KASAN splat as in commit 6cd4a78d962b ("net: do not leave a dangling sk pointer, when socket creation fails"). The problem is that commit did not fully address the problem, as some pf->create implementations do not use sk_common_release in their error paths.
For example, we can use the same reproducer as in the above commit, but changing ping to arping. arping uses AF_PACKET socket and if packet_create fails, it will just sk_free the allocated sk object.
[...]
Here is the summary with links: - net: explicitly clear the sk pointer, when pf->create fails https://git.kernel.org/netdev/net/c/631083143315
You are awesome, thank you!