syzbot


KASAN: use-after-free Read in corrupted

Status: upstream: reported syz repro on 2020/11/15 10:58
Reported-by: syzbot+3da5492d1fd6b9cb59e7@syzkaller.appspotmail.com
First crash: 1482d, last: 1012d
Fix bisection: failed (error log, bisect log)
  
Similar bugs (5)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KASAN: use-after-free Read in corrupted mm C 2 2397d 2399d 8/28 fixed on 2018/07/09 18:05
android-414 KASAN: use-after-free Read in corrupted C 2 1951d 1952d 0/1 public: reported C repro on 2019/08/03 12:36
upstream KASAN: use-after-free Read in corrupted (3) kernel syz done 1 1990d 1990d 12/28 fixed on 2019/08/27 17:15
upstream KASAN: use-after-free Read in corrupted (2) usb syz 1 2052d 2052d 0/28 closed as invalid on 2019/04/25 11:05
upstream KASAN: use-after-free Read in corrupted (4) C done error 13 23d 1578d 0/28 upstream: reported C repro on 2020/08/11 12:47
Last patch testing requests (2)
Created Duration User Patch Repo Result
2023/02/15 12:32 13m retest repro linux-4.14.y report log
2022/10/11 10:30 13m retest repro linux-4.14.y report log
Fix bisection attempts (17)
Created Duration User Patch Repo Result
2022/03/30 19:26 14m bisect fix linux-4.14.y error job log
2022/02/28 17:53 34m bisect fix linux-4.14.y OK (0) job log log
2022/01/29 16:43 31m bisect fix linux-4.14.y OK (0) job log log
2021/12/30 15:46 33m bisect fix linux-4.14.y OK (0) job log log
2021/11/30 15:13 31m bisect fix linux-4.14.y OK (0) job log log
2021/10/31 14:42 30m bisect fix linux-4.14.y OK (0) job log log
2021/09/24 03:10 32m bisect fix linux-4.14.y OK (0) job log log
2021/08/24 20:59 32m bisect fix linux-4.14.y OK (0) job log log
2021/07/25 20:21 29m bisect fix linux-4.14.y OK (0) job log log
2021/06/25 19:36 26m bisect fix linux-4.14.y OK (0) job log log
2021/05/26 15:45 29m bisect fix linux-4.14.y OK (0) job log log
2021/04/26 15:07 37m bisect fix linux-4.14.y OK (0) job log log
2021/03/27 09:44 31m bisect fix linux-4.14.y OK (0) job log log
2021/02/25 00:55 29m bisect fix linux-4.14.y OK (0) job log log
2021/02/13 17:17 1m bisect fix linux-4.14.y error job log
2021/01/14 16:23 34m bisect fix linux-4.14.y OK (0) job log log
2020/12/15 10:57 32m bisect fix linux-4.14.y OK (0) job log log

Sample crash report:
wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
==================================================================
BUG: KASAN: use-after-free in __lock_acquire+0x2c57/0x3f20 kernel/locking/lockdep.c:3369
Read of size 8 at addr ffff8880b4a85a68 by task loop4/11598

CPU: 0 PID: 11598 Comm: loop4 Not tainted 4.14.206-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0x1b2/0x283 lib/dump_stack.c:58
 print_address_description.cold+0x54/0x1d3 mm/kasan/report.c:252

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2020/11/15 10:57 linux-4.14.y 27ce4f2a6817 1bf9a662 .config console log report syz ci2-linux-4-14
* Struck through repros no longer work on HEAD.