syzbot

 sign-in | mailing list | source | docs
🐞 Open [1418]
Subsystems
🐞 Fixed [5828]
🐞 Invalid [14219]
Missing Backports [92]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

general protection fault in selinux_socket_sendmsg (2)

Status: closed as dup on 2019/11/25 22:04
Subsystems: selinux
[Documentation on labels]
Reported-by: syzbot+314db21f0d5c1f53856c@syzkaller.appspotmail.com
First crash: 1824d, last: 1351d
Duplicate of
Title Repro Cause bisect Fix bisect Count Last Reported
KMSAN: use-after-free in rxrpc_send_keepalive afs net syz 2 1868d 1840d
Discussions (1)
Title Replies (including bot) Last reply
general protection fault in selinux_socket_sendmsg (2) 1 (2) 2019/11/25 22:03
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream general protection fault in selinux_socket_sendmsg selinux 5 1881d 1918d 0/28 closed as dup on 2019/08/22 13:35
linux-4.19 general protection fault in selinux_socket_sendmsg C done 36 1730d 1911d 1/1 fixed on 2020/03/27 08:38
linux-4.14 general protection fault in selinux_socket_sendmsg C done 3 1337d 1510d 1/1 fixed on 2021/04/25 07:03

Sample crash report:
kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] PREEMPT SMP KASAN
CPU: 1 PID: 9348 Comm: kworker/1:3 Not tainted 5.4.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: krxrpcd rxrpc_peer_keepalive_worker
RIP: 0010:selinux_socket_sendmsg+0x22/0x40 security/selinux/hooks.c:4828
Code: c3 e8 12 41 ac fe eb e8 55 48 89 e5 53 48 89 fb e8 93 d5 70 fe 48 8d 7b 18 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 11 48 8b 7b 18 be 04 00 00 00 e8 fa fb ff ff 5b 5d
RSP: 0018:ffff88808230f9f0 EFLAGS: 00010206
RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff83427e75
RDX: 0000000000000003 RSI: ffffffff8302818d RDI: 0000000000000018
RBP: ffff88808230f9f8 R08: ffff8880907ce700 R09: fffffbfff14f0151
R10: fffffbfff14f0150 R11: ffffffff8a780a87 R12: dffffc0000000000
R13: ffff88808230fb20 R14: ffff88808230fb20 R15: 000000000000001d
FS:  0000000000000000(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020000046 CR3: 00000000a4f93000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 security_socket_sendmsg+0x77/0xc0 security/security.c:2013
 sock_sendmsg+0x45/0x130 net/socket.c:655
 kernel_sendmsg+0x44/0x50 net/socket.c:678
 rxrpc_send_keepalive+0x1ff/0x940 net/rxrpc/output.c:655
 rxrpc_peer_keepalive_dispatch net/rxrpc/peer_event.c:376 [inline]
 rxrpc_peer_keepalive_worker+0x7be/0xd02 net/rxrpc/peer_event.c:437
 process_one_work+0x9af/0x1740 kernel/workqueue.c:2269
 worker_thread+0x98/0xe40 kernel/workqueue.c:2415
 kthread+0x361/0x430 kernel/kthread.c:255
 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:352
Modules linked in:
---[ end trace bf8f7b5ddf35d773 ]---
RIP: 0010:selinux_socket_sendmsg+0x22/0x40 security/selinux/hooks.c:4828
Code: c3 e8 12 41 ac fe eb e8 55 48 89 e5 53 48 89 fb e8 93 d5 70 fe 48 8d 7b 18 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 11 48 8b 7b 18 be 04 00 00 00 e8 fa fb ff ff 5b 5d
RSP: 0018:ffff88808230f9f0 EFLAGS: 00010206
RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff83427e75
RDX: 0000000000000003 RSI: ffffffff8302818d RDI: 0000000000000018
RBP: ffff88808230f9f8 R08: ffff8880907ce700 R09: fffffbfff14f0151
R10: fffffbfff14f0150 R11: ffffffff8a780a87 R12: dffffc0000000000
R13: ffff88808230fb20 R14: ffff88808230fb20 R15: 000000000000001d
FS:  0000000000000000(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f826fd44e78 CR3: 00000000a4b0f000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400

Crashes (183):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2019/11/26 13:34 upstream 0be0ee71816b f746151a .config console log report syz C ci-upstream-kasan-gce-selinux-root
2021/03/10 21:22 upstream 280d542f6ffa 764067f3 .config console log report info ci-qemu-upstream general protection fault in selinux_socket_sendmsg
2020/01/31 17:09 upstream 6ba3d7066c71 5ed23f9a .config console log report ci-qemu-upstream
2020/01/31 05:05 upstream 6ba3d7066c71 5ed23f9a .config console log report ci-qemu-upstream
2020/01/30 18:59 upstream 6ba3d7066c71 5ed23f9a .config console log report ci-qemu-upstream
2020/01/30 17:07 upstream 6ba3d7066c71 5ed23f9a .config console log report ci-qemu-upstream
2020/01/30 06:22 upstream 6ba3d7066c71 5ed23f9a .config console log report ci-qemu-upstream
2020/01/29 18:51 upstream 6ba3d7066c71 5ed23f9a .config console log report ci-qemu-upstream
2020/01/29 07:34 upstream c677124e631d c8e81ce4 .config console log report ci-qemu-upstream
2020/01/28 22:15 upstream c677124e631d c8e81ce4 .config console log report ci-qemu-upstream
2020/01/28 13:42 upstream b0be0eff1a5a 56cd6c9b .config console log report ci-qemu-upstream
2020/01/28 08:27 upstream b0be0eff1a5a 56cd6c9b .config console log report ci-qemu-upstream
2020/01/27 22:00 upstream d5226fa6dbae 56cd6c9b .config console log report ci-qemu-upstream
2020/01/27 19:28 upstream d5226fa6dbae 56cd6c9b .config console log report ci-qemu-upstream
2020/01/27 16:37 upstream d5226fa6dbae 56cd6c9b .config console log report ci-qemu-upstream
2020/01/27 11:59 upstream d5226fa6dbae dd56146d .config console log report ci-qemu-upstream
2020/01/27 03:58 upstream a45ea48e2bcd dd56146d .config console log report ci-qemu-upstream
2020/01/27 03:33 upstream a45ea48e2bcd dd56146d .config console log report ci-qemu-upstream
2020/01/26 22:35 upstream a45ea48e2bcd dd56146d .config console log report ci-qemu-upstream
2020/01/24 04:54 upstream 131701c697e8 2e95ab33 .config console log report ci-qemu-upstream
2020/01/23 20:47 upstream 131701c697e8 2e95ab33 .config console log report ci-qemu-upstream
2020/01/17 11:17 upstream f4353c3e2aaf 3de7aabb .config console log report ci-qemu-upstream
2020/01/17 06:31 upstream f4353c3e2aaf 3de7aabb .config console log report ci-qemu-upstream
2020/01/17 04:19 upstream f4353c3e2aaf 3de7aabb .config console log report ci-qemu-upstream
2020/01/17 03:14 upstream f4353c3e2aaf 3de7aabb .config console log report ci-qemu-upstream
2020/01/16 20:49 upstream f5ae2ea6347a 3de7aabb .config console log report ci-qemu-upstream
2020/01/16 02:27 upstream 51d69817519f f9b69507 .config console log report ci-qemu-upstream
2020/01/15 22:04 upstream 51d69817519f f9b69507 .config console log report ci-qemu-upstream
2020/01/12 10:29 upstream 6327edceb62b 4c04afaa .config console log report ci-qemu-upstream
2020/01/12 07:48 upstream 6327edceb62b 4c04afaa .config console log report ci-qemu-upstream
2020/01/11 23:07 upstream ac61145a725a 4c04afaa .config console log report ci-qemu-upstream
2020/01/11 19:38 upstream ac61145a725a 4c04afaa .config console log report ci-qemu-upstream
2020/01/11 16:50 upstream ac61145a725a 4c04afaa .config console log report ci-qemu-upstream
2020/01/11 01:29 upstream bef1d88263ff 532ec44e .config console log report ci-qemu-upstream
2020/01/10 22:41 upstream bef1d88263ff 532ec44e .config console log report ci-qemu-upstream
2020/01/10 21:35 upstream bef1d88263ff 532ec44e .config console log report ci-qemu-upstream
2020/01/06 17:16 upstream c79f46a28239 438e1227 .config console log report ci-qemu-upstream
2020/01/06 14:37 upstream c79f46a28239 438e1227 .config console log report ci-qemu-upstream
2020/01/06 12:57 upstream c79f46a28239 438e1227 .config console log report ci-qemu-upstream
2020/01/05 21:34 upstream 36487907f341 d646e21f .config console log report ci-qemu-upstream
2020/01/05 04:45 upstream 5613970af3f5 68256974 .config console log report ci-qemu-upstream
2020/01/04 23:00 upstream 5613970af3f5 68256974 .config console log report ci-qemu-upstream
2020/01/04 06:30 upstream 3a562aee727a 68256974 .config console log report ci-qemu-upstream
2019/12/24 21:29 upstream 46cf053efec6 be5c2c81 .config console log report ci-upstream-kasan-gce-selinux-root
2019/11/24 12:51 upstream 6b8a79467876 598ca6c8 .config console log report ci-upstream-kasan-gce-selinux-root
* Struck through repros no longer work on HEAD.