syzbot

 sign-in | mailing list | source | docs
🐞 Open [142]
🐞 Fixed [16]
🐞 Invalid [163]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

general protection fault in __list_del_entry

Status: public: reported C repro on 2019/04/12 00:00
Reported-by: syzbot+0c478104eb1792f665e8@syzkaller.appspotmail.com
First crash: 2539d, last: 2432d
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-49 general protection fault in __list_del_entry C 53 2438d 2591d 0/3 closed as invalid on 2019/01/08 21:30

Sample crash report:
random: sshd: uninitialized urandom read (32 bytes read, 115 bits of entropy available)
kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory accessgeneral protection fault: 0000 [#1] PREEMPT SMP KASAN
Dumping ftrace buffer:
   (ftrace buffer empty)
Modules linked in:
CPU: 0 PID: 3341 Comm: syzkaller877370 Not tainted 4.4.107-g610c835 #12
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
task: ffff8801cfc52f80 task.stack: ffff8801d1140000
RIP: 0010:[<ffffffff81d641d6>]  [<ffffffff81d641d6>] __list_del_entry+0x86/0x1d0 lib/list_debug.c:57
RSP: 0018:ffff8801d1147628  EFLAGS: 00010246
RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff8800b74f5a10
RDX: 0000000000000000 RSI: ffffffff851b2510 RDI: ffff8800b74f5a18
RBP: ffff8801d1147640 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000001 R11: 1ffff1003a228e94 R12: 0000000000000000
R13: ffff8800b74f59b9 R14: ffff8800b74f5a38 R15: 00000000ffffffde
FS:  00000000022e7880(0063) GS:ffff8801db200000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020239000 CR3: 00000001d05c4000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Stack:
 ffff8800b74f5a38 ffff8800b74f5a10 ffffffff846eb040 ffff8801d1147658
 ffffffff81d6432d ffff8800b74f5a10 ffff8801d1147678 ffffffff832b081e
 ffff8800b7032a80 ffff8800b74f5a10 ffff8801d1147698 ffffffff832cfd73
Call Trace:
 [<ffffffff81d6432d>] list_del+0xd/0x70 lib/list_debug.c:77
 [<ffffffff832b081e>] xfrm_state_walk_done+0x6e/0xa0 net/xfrm/xfrm_state.c:1675
 [<ffffffff832cfd73>] xfrm_dump_sa_done+0x73/0xa0 net/xfrm/xfrm_user.c:913
 [<ffffffff82f80f21>] netlink_dump+0x871/0xb40 net/netlink/af_netlink.c:2158
 [<ffffffff82f8570e>] __netlink_dump_start+0x52e/0x7c0 net/netlink/af_netlink.c:2223
 [<ffffffff832d035d>] netlink_dump_start include/linux/netlink.h:175 [inline]
 [<ffffffff832d035d>] xfrm_user_rcv_msg+0x5bd/0x6b0 net/xfrm/xfrm_user.c:2512
 [<ffffffff82f8adee>] netlink_rcv_skb+0x13e/0x370 net/netlink/af_netlink.c:2305
 [<ffffffff832cc6ef>] xfrm_netlink_rcv+0x6f/0x90 net/xfrm/xfrm_user.c:2533
 [<ffffffff82f89972>] netlink_unicast_kernel net/netlink/af_netlink.c:1223 [inline]
 [<ffffffff82f89972>] netlink_unicast+0x522/0x760 net/netlink/af_netlink.c:1249
 [<ffffffff82f8a498>] netlink_sendmsg+0x8e8/0xc50 net/netlink/af_netlink.c:1803
 [<ffffffff82dec59a>] sock_sendmsg_nosec net/socket.c:625 [inline]
 [<ffffffff82dec59a>] sock_sendmsg+0xca/0x110 net/socket.c:635
 [<ffffffff82dec806>] sock_write_iter+0x226/0x3b0 net/socket.c:834
 [<ffffffff8151b0ec>] new_sync_write fs/read_write.c:478 [inline]
 [<ffffffff8151b0ec>] __vfs_write+0x33c/0x450 fs/read_write.c:491
 [<ffffffff8151cd1a>] vfs_write+0x18a/0x530 fs/read_write.c:538
 [<ffffffff8151f409>] SYSC_write fs/read_write.c:585 [inline]
 [<ffffffff8151f409>] SyS_write+0xd9/0x1b0 fs/read_write.c:577
 [<ffffffff83773d36>] entry_SYSCALL_64_fastpath+0x16/0x76
Code: c4 0f 84 94 00 00 00 48 b8 00 02 00 00 00 00 ad de 48 39 c3 0f 84 a5 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 <80> 3c 02 00 0f 85 e8 00 00 00 4c 8b 03 49 39 c8 0f 85 9b 00 00 
RIP  [<ffffffff81d641d6>] __list_del_entry+0x86/0x1d0 lib/list_debug.c:57
 RSP <ffff8801d1147628>
---[ end trace 1a116fbea6ba355f ]---

Crashes (163):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2017/12/23 13:07 https://android.googlesource.com/kernel/common android-4.4 610c835673f3 73aba437 .config console log report syz C ci-android-44-kasan-gce
2017/12/10 02:27 https://android.googlesource.com/kernel/common android-4.4 ed884ebd80a9 5ad0ce95 .config console log report syz C ci-android-44-kasan-gce
2018/03/26 12:08 https://android.googlesource.com/kernel/common android-4.4 851fb4da321c e033c1f1 .config console log report ci-android-44-kasan-gce
2018/03/19 17:06 https://android.googlesource.com/kernel/common android-4.4 d63fdf61a4dc 7e7d7ed2 .config console log report ci-android-44-kasan-gce
2018/03/18 03:28 https://android.googlesource.com/kernel/common android-4.4 d63fdf61a4dc 08dacaa0 .config console log report ci-android-44-kasan-gce
2018/03/08 13:01 https://android.googlesource.com/kernel/common android-4.4 d63fdf61a4dc acd0caa5 .config console log report ci-android-44-kasan-gce
2018/02/27 11:27 https://android.googlesource.com/kernel/common android-4.4 239a415f39e0 05b5a32c .config console log report ci-android-44-kasan-gce
2018/02/20 19:03 https://android.googlesource.com/kernel/common android-4.4 20ddb25b3ebf 5abac192 .config console log report ci-android-44-kasan-gce
2018/02/19 21:26 https://android.googlesource.com/kernel/common android-4.4 55a366596215 c1f526e3 .config console log report ci-android-44-kasan-gce
2018/02/10 13:26 https://android.googlesource.com/kernel/common android-4.4 0e9bcc1e0a16 e67d44e0 .config console log report ci-android-44-kasan-gce
2018/02/09 19:25 https://android.googlesource.com/kernel/common android-4.4 0e9bcc1e0a16 033b610e .config console log report ci-android-44-kasan-gce
2018/02/01 17:09 https://android.googlesource.com/kernel/common android-4.4 fe09418d6f88 67bd3383 .config console log report ci-android-44-kasan-gce
2018/02/01 17:02 https://android.googlesource.com/kernel/common android-4.4 fe09418d6f88 67bd3383 .config console log report ci-android-44-kasan-gce
2018/02/01 16:32 https://android.googlesource.com/kernel/common android-4.4 fe09418d6f88 67bd3383 .config console log report ci-android-44-kasan-gce
2018/01/27 20:17 https://android.googlesource.com/kernel/common android-4.4 202e079275c6 08146b1a .config console log report ci-android-44-kasan-gce
2018/01/26 11:56 https://android.googlesource.com/kernel/common android-4.4 e70c132b2dac 1d18b112 .config console log report ci-android-44-kasan-gce
2018/01/26 11:55 https://android.googlesource.com/kernel/common android-4.4 e70c132b2dac 1d18b112 .config console log report ci-android-44-kasan-gce
2018/01/25 00:31 https://android.googlesource.com/kernel/common android-4.4 e70c132b2dac 866f1102 .config console log report ci-android-44-kasan-gce
2018/01/23 23:45 https://android.googlesource.com/kernel/common android-4.4 ef588ef53d3e a5b7566c .config console log report ci-android-44-kasan-gce
2018/01/15 07:15 https://android.googlesource.com/kernel/common android-4.4 1849cd3d301d 66d492a6 .config console log report ci-android-44-kasan-gce
2018/01/14 03:45 https://android.googlesource.com/kernel/common android-4.4 7902639f8133 c9e7aeae .config console log report ci-android-44-kasan-gce
2018/01/13 21:19 https://android.googlesource.com/kernel/common android-4.4 7902639f8133 c9e7aeae .config console log report ci-android-44-kasan-gce
2018/01/13 20:18 https://android.googlesource.com/kernel/common android-4.4 7902639f8133 c9e7aeae .config console log report ci-android-44-kasan-gce
2018/01/13 17:55 https://android.googlesource.com/kernel/common android-4.4 7902639f8133 c9e7aeae .config console log report ci-android-44-kasan-gce
2018/01/12 13:35 https://android.googlesource.com/kernel/common android-4.4 3301b5569f27 9dc808a6 .config console log report ci-android-44-kasan-gce
2018/01/11 12:20 https://android.googlesource.com/kernel/common android-4.4 f8518889ffe8 9dc808a6 .config console log report ci-android-44-kasan-gce
2018/01/11 12:07 https://android.googlesource.com/kernel/common android-4.4 f8518889ffe8 9dc808a6 .config console log report ci-android-44-kasan-gce
2018/01/09 22:29 https://android.googlesource.com/kernel/common android-4.4 618a5108ea9c 1f60c828 .config console log report ci-android-44-kasan-gce
2018/01/09 21:45 https://android.googlesource.com/kernel/common android-4.4 618a5108ea9c 1f60c828 .config console log report ci-android-44-kasan-gce
2017/12/31 14:17 https://android.googlesource.com/kernel/common android-4.4 610c835673f3 00193447 .config console log report ci-android-44-kasan-gce
2017/12/31 12:52 https://android.googlesource.com/kernel/common android-4.4 610c835673f3 00193447 .config console log report ci-android-44-kasan-gce
2017/12/26 12:52 https://android.googlesource.com/kernel/common android-4.4 610c835673f3 73aba437 .config console log report ci-android-44-kasan-gce
2017/12/19 14:49 https://android.googlesource.com/kernel/common android-4.4 170051828437 af9163c7 .config console log report ci-android-44-kasan-gce
2017/12/19 14:49 https://android.googlesource.com/kernel/common android-4.4 170051828437 af9163c7 .config console log report ci-android-44-kasan-gce
2017/12/19 14:37 https://android.googlesource.com/kernel/common android-4.4 170051828437 af9163c7 .config console log report ci-android-44-kasan-gce
2017/12/19 14:30 https://android.googlesource.com/kernel/common android-4.4 170051828437 af9163c7 .config console log report ci-android-44-kasan-gce
2017/12/19 14:28 https://android.googlesource.com/kernel/common android-4.4 170051828437 af9163c7 .config console log report ci-android-44-kasan-gce
2017/12/19 14:26 https://android.googlesource.com/kernel/common android-4.4 170051828437 af9163c7 .config console log report ci-android-44-kasan-gce
2017/12/19 14:20 https://android.googlesource.com/kernel/common android-4.4 170051828437 af9163c7 .config console log report ci-android-44-kasan-gce
2017/12/19 02:55 https://android.googlesource.com/kernel/common android-4.4 2fea0397a8e7 1c4160ef .config console log report ci-android-44-kasan-gce
2017/12/19 02:17 https://android.googlesource.com/kernel/common android-4.4 2fea0397a8e7 1c4160ef .config console log report ci-android-44-kasan-gce
2017/12/19 02:13 https://android.googlesource.com/kernel/common android-4.4 2fea0397a8e7 1c4160ef .config console log report ci-android-44-kasan-gce
2017/12/19 02:00 https://android.googlesource.com/kernel/common android-4.4 2fea0397a8e7 1c4160ef .config console log report ci-android-44-kasan-gce
2017/12/19 02:00 https://android.googlesource.com/kernel/common android-4.4 2fea0397a8e7 1c4160ef .config console log report ci-android-44-kasan-gce
2018/03/20 21:58 https://android.googlesource.com/kernel/common android-4.4 d63fdf61a4dc 72c33b66 .config console log report ci-android-44-kasan-gce-386
* Struck through repros no longer work on HEAD.