syzbot


corrupted report (2)

Status: auto-obsoleted due to no activity on 2024/03/01 04:17
Reported-by: syzbot+eaadd4071ab199b4a4fd@syzkaller.appspotmail.com
First crash: 374d, last: 374d
Similar bugs (18)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-5-10 corrupted report (2) 6 463d 541d 0/2 auto-obsoleted due to no activity on 2023/12/02 13:09
linux-4.19 corrupted report gfs2 sysv ext4 hfsplus 6619 644d 2070d 0/1 upstream: reported on 2019/04/11 04:14
android-414 corrupted report 5888 1835d 2070d 0/1 auto-closed as invalid on 2020/02/29 14:20
android-5-15 corrupted report 4 512d 594d 0/2 auto-obsoleted due to no activity on 2023/10/14 13:19
upstream corrupted report 29 2573d 2575d 0/28 closed as invalid on 2017/11/24 12:19
android-54 corrupted report 860856 133d 1765d 0/2 auto-obsoleted due to no activity on 2024/10/07 14:17
linux-4.4 corrupted report 12 1916d 2043d 0/1 auto-closed as invalid on 2020/01/10 12:28
linux-4.14 corrupted report cramfs 6026 644d 2068d 0/1 upstream: reported on 2019/04/12 21:21
android-6-1 corrupted report 106 34d 503d 0/2 premoderation: reported on 2023/07/25 23:06
android-5-15 corrupted report (3) 71 25d 251d 0/2 premoderation: reported on 2024/04/03 00:13
android-5-10 corrupted report 289 943d 1092d 0/2 auto-closed as invalid on 2022/07/11 05:59
android-49 corrupted report 567 2573d 2575d 0/3 closed as invalid on 2017/11/24 12:19
upstream corrupted report (2) mm net 777744 now 2435d 0/28 moderation: reported on 2018/04/11 09:52
linux-5.15 corrupted report 5680 3h13m 638d 0/3 upstream: reported on 2023/03/12 22:30
android-49 corrupted report (2) 19181 1833d 2067d 0/3 auto-closed as invalid on 2020/03/03 12:39
android-5-10 corrupted report (3) 42 6d22h 245d 0/2 premoderation: reported on 2024/04/08 19:56
linux-6.1 corrupted report 182211 1h59m 643d 0/3 upstream: reported on 2023/03/07 17:14
android-44 corrupted report 7075 1833d 2067d 0/2 auto-closed as invalid on 2020/03/02 23:26

Sample crash report:
general protection fault, probably for non-canonical address 0xdffffc0000000007: 0000 [#1] PREEMPT SMP KASAN
KASAN: null-ptr-deref in range [0x0000000000000038-0x000000000000003f]
CPU: 0 PID: 25607 Comm: syz-executor.0 Not tainted 5.15.138-syzkaller-00280-geb99a642b7e6 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023
RIP: 0010:do_rmdir+0x339/0x630 fs/namei.c:4131
Code: ff 4c 89 64 24 50 72 0d e8 a4 79 b2 ff 45 89 fc e9 99 00 00 00 49 8d 5f 30 48 89 d8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 08 48 89 df e8 c9 7e f4 ff 48 83 3b 00 74 5d e8 6e
RSP: 0018:ffffc90000bb7de0 EFLAGS: 00010202
RAX: 0000000000000007 RBX: 0000000000000038 RCX: dffffc0000000000
RDX: ffffc90000c09000 RSI: 00000000000001ce RDI: 00000000000001cf
RBP: ffffc90000bb7f08 R08: ffffffff81c01f70 R09: ffffed102fb4d560
R10: 0000000000000000 R11: dffffc0000000001 R12: ffff88817d
----------------
Code disassembly (best guess):
   0:	ff 4c 89 64          	decl   0x64(%rcx,%rcx,4)
   4:	24 50                	and    $0x50,%al
   6:	72 0d                	jb     0x15
   8:	e8 a4 79 b2 ff       	call   0xffb279b1
   d:	45 89 fc             	mov    %r15d,%r12d
  10:	e9 99 00 00 00       	jmp    0xae
  15:	49 8d 5f 30          	lea    0x30(%r15),%rbx
  19:	48 89 d8             	mov    %rbx,%rax
  1c:	48 c1 e8 03          	shr    $0x3,%rax
  20:	48 b9 00 00 00 00 00 	movabs $0xdffffc0000000000,%rcx
  27:	fc ff df
* 2a:	80 3c 08 00          	cmpb   $0x0,(%rax,%rcx,1) <-- trapping instruction
  2e:	74 08                	je     0x38
  30:	48 89 df             	mov    %rbx,%rdi
  33:	e8 c9 7e f4 ff       	call   0xfff47f01
  38:	48 83 3b 00          	cmpq   $0x0,(%rbx)
  3c:	74 5d                	je     0x9b
  3e:	e8                   	.byte 0xe8
  3f:	6e                   	outsb  %ds:(%rsi),(%dx)

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/12/02 04:09 android13-5.15-lts eb99a642b7e6 f819d6f7 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 corrupted report
* Struck through repros no longer work on HEAD.