syzbot

 sign-in | mailing list | source | docs
🐞 Open [1050] Subsystems 🐞 Fixed [5296] 🐞 Invalid [12638] Missing Backports [92] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

general protection fault in ovs_ct_exit

Status: fixed on 2019/08/05 13:45
Fix commit: b272a0ad7301 netns: restore ops before calling ops_exit_list
First crash: 1793d, last: 1788d
Cause bisection: introduced by (bisect log) :
commit d7d99872c144a2c2f5d9c9d83627fa833836cba5
Author: Eric Dumazet <edumazet@google.com>
Date: Tue Jun 18 18:08:59 2019 +0000

  netns: add pre_exit method to struct pernet_operations

Crash: general protection fault in ovs_ct_exit (log)
Repro: C syz .config
  

Sample crash report:
IPVS: ftp: loaded support on port[0] = 21
kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] PREEMPT SMP KASAN
CPU: 1 PID: 9015 Comm: syz-executor853 Not tainted 5.2.0-rc5+ #41
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:ovs_ct_limit_exit net/openvswitch/conntrack.c:1856 [inline]
RIP: 0010:ovs_ct_exit+0x1ac/0x4ec net/openvswitch/conntrack.c:2261
Code: 01 00 00 00 48 c7 c7 00 37 da 88 e8 ce 65 44 fa 49 8d 44 24 50 48 89 c2 48 89 45 d0 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 ee 02 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b
RSP: 0018:ffff888080e67b10 EFLAGS: 00010206
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: 1ffff11013d605c6
RDX: 000000000000000a RSI: 1ffff11013d605cd RDI: 0000000000000286
RBP: ffff888080e67b50 R08: ffff88809eb025c0 R09: 0000000000000002
R10: ffffed1015d26c77 R11: ffff8880ae9363bb R12: 0000000000000000
R13: ffff8880999240c0 R14: ffff88809c1d6940 R15: dffffc0000000000
FS:  00007f1b9b0d4700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00000000004b4ca0 CR3: 000000008bc91000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 ovs_exit_net+0x1f8/0xc30 net/openvswitch/datapath.c:2371
 ops_exit_list.isra.0+0xaa/0x150 net/core/net_namespace.c:165
 setup_net+0x518/0x870 net/core/net_namespace.c:350
 copy_net_ns+0x1df/0x340 net/core/net_namespace.c:456
 create_new_namespaces+0x400/0x7b0 kernel/nsproxy.c:103
 unshare_nsproxy_namespaces+0xc2/0x200 kernel/nsproxy.c:202
 ksys_unshare+0x440/0x980 kernel/fork.c:2692
 __do_sys_unshare kernel/fork.c:2760 [inline]
 __se_sys_unshare kernel/fork.c:2758 [inline]
 __x64_sys_unshare+0x31/0x40 kernel/fork.c:2758
 do_syscall_64+0xfd/0x680 arch/x86/entry/common.c:301
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x4465f9
Code: e8 5c b3 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00
RSP: 002b:00007f1b9b0d3db8 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
RAX: ffffffffffffffda RBX: 00000000006dbc28 RCX: 00000000004465f9
RDX: 0000000000402634 RSI: 50a710924b3a1b31 RDI: 0000000060000000
RBP: 00000000006dbc20 R08: 00007f1b9b0d4700 R09: 0000000000000000
R10: 00007f1b9b0d4700 R11: 0000000000000246 R12: 00000000006dbc2c
R13: 00007ffd6fccae5f R14: 00007f1b9b0d49c0 R15: 0000000000000000
Modules linked in:
---[ end trace 68310ef9e5bb006f ]---
RIP: 0010:ovs_ct_limit_exit net/openvswitch/conntrack.c:1856 [inline]
RIP: 0010:ovs_ct_exit+0x1ac/0x4ec net/openvswitch/conntrack.c:2261
Code: 01 00 00 00 48 c7 c7 00 37 da 88 e8 ce 65 44 fa 49 8d 44 24 50 48 89 c2 48 89 45 d0 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 ee 02 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b
RSP: 0018:ffff888080e67b10 EFLAGS: 00010206
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: 1ffff11013d605c6
RDX: 000000000000000a RSI: 1ffff11013d605cd RDI: 0000000000000286
RBP: ffff888080e67b50 R08: ffff88809eb025c0 R09: 0000000000000002
R10: ffffed1015d26c77 R11: ffff8880ae9363bb R12: 0000000000000000
R13: ffff8880999240c0 R14: ffff88809c1d6940 R15: dffffc0000000000
FS:  00007f1b9b0d4700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00000000004b4ca0 CR3: 000000008bc91000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400

Crashes (9888):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2019/06/24 14:34 net-next-old 92ad6325cb89 472f0082 .config console log report syz C ci-upstream-net-kasan-gce
2019/06/24 07:21 net-next-old 92ad6325cb89 472f0082 .config console log report syz C ci-upstream-net-kasan-gce
2019/06/24 04:20 net-next-old 92ad6325cb89 472f0082 .config console log report syz C ci-upstream-net-kasan-gce
2019/06/23 20:35 net-next-old 92ad6325cb89 472f0082 .config console log report syz C ci-upstream-net-kasan-gce
2019/06/23 13:51 net-next-old 92ad6325cb89 3efccdd2 .config console log report syz C ci-upstream-net-kasan-gce
2019/06/23 06:19 net-next-old dca73a65a683 34bf9440 .config console log report syz C ci-upstream-net-kasan-gce
2019/06/23 03:20 net-next-old dca73a65a683 34bf9440 .config console log report syz C ci-upstream-net-kasan-gce
2019/06/22 21:34 net-next-old dca73a65a683 34bf9440 .config console log report syz C ci-upstream-net-kasan-gce
2019/06/22 17:52 net-next-old dca73a65a683 34bf9440 .config console log report syz C ci-upstream-net-kasan-gce
2019/06/21 04:11 net-next-old dca73a65a683 34bf9440 .config console log report syz C ci-upstream-net-kasan-gce
2019/06/19 23:04 net-next-old 6c9bef32c6e7 34bf9440 .config console log report syz C ci-upstream-net-kasan-gce
2019/06/24 19:53 linux-next e2d28c40292b 472f0082 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/24 09:53 linux-next e2d28c40292b 472f0082 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/24 06:19 linux-next e2d28c40292b 472f0082 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/24 04:21 linux-next e2d28c40292b 472f0082 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/24 01:23 linux-next e2d28c40292b 472f0082 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/23 23:52 linux-next e2d28c40292b 472f0082 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/23 23:36 linux-next e2d28c40292b 472f0082 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/23 23:06 linux-next e2d28c40292b 472f0082 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/23 17:31 linux-next e2d28c40292b 472f0082 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/23 01:10 linux-next dc636f5d78de 34bf9440 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/23 00:37 linux-next dc636f5d78de 34bf9440 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/23 00:20 linux-next dc636f5d78de 34bf9440 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/22 23:12 linux-next dc636f5d78de 34bf9440 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/22 21:16 linux-next dc636f5d78de 34bf9440 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/22 17:27 linux-next dc636f5d78de 34bf9440 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/22 07:42 linux-next dc636f5d78de 34bf9440 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/22 05:36 linux-next dc636f5d78de 34bf9440 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/21 12:12 linux-next dc636f5d78de 34bf9440 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/21 04:03 linux-next dc636f5d78de 34bf9440 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/21 00:55 linux-next dc636f5d78de 34bf9440 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/20 23:05 linux-next dc636f5d78de 34bf9440 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/06/24 21:19 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 21:07 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 20:54 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 20:41 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 20:16 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 20:03 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 19:39 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 19:14 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 18:56 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 18:33 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 18:24 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 17:58 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 17:47 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 17:34 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 17:12 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 17:01 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 16:50 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 16:26 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 16:14 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 16:02 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 15:51 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 15:38 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 15:23 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 15:13 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 15:00 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 14:45 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 14:33 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 14:14 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 13:56 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 13:37 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 13:20 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 12:56 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/24 12:43 net-next-old 92ad6325cb89 472f0082 .config console log report ci-upstream-net-kasan-gce
2019/06/19 20:15 net-next-old 6c9bef32c6e7 34bf9440 .config console log report ci-upstream-net-kasan-gce
2019/06/24 21:54 linux-next e2d28c40292b 472f0082 .config console log report ci-upstream-linux-next-kasan-gce-root
2019/06/24 20:29 linux-next e2d28c40292b 472f0082 .config console log report ci-upstream-linux-next-kasan-gce-root
2019/06/24 19:50 linux-next e2d28c40292b 472f0082 .config console log report ci-upstream-linux-next-kasan-gce-root
2019/06/24 19:26 linux-next e2d28c40292b 472f0082 .config console log report ci-upstream-linux-next-kasan-gce-root
2019/06/24 18:43 linux-next e2d28c40292b 472f0082 .config console log report ci-upstream-linux-next-kasan-gce-root
2019/06/24 18:10 linux-next e2d28c40292b 472f0082 .config console log report ci-upstream-linux-next-kasan-gce-root
2019/06/24 17:24 linux-next e2d28c40292b 472f0082 .config console log report ci-upstream-linux-next-kasan-gce-root
2019/06/24 16:38 linux-next e2d28c40292b 472f0082 .config console log report ci-upstream-linux-next-kasan-gce-root
2019/06/24 13:07 linux-next e2d28c40292b 472f0082 .config console log report ci-upstream-linux-next-kasan-gce-root
* Struck through repros no longer work on HEAD.