syzbot

 sign-in | mailing list | source | docs
🐞 Open [142]
🐞 Fixed [16]
🐞 Invalid [163]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

WARNING in fib6_repair_tree

Status: public: reported C repro on 2019/04/14 00:00
Reported-by: syzbot+4280a1cb1963953f96b1@syzkaller.appspotmail.com
First crash: 2485d, last: 2485d
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-49 WARNING in fib6_repair_tree C 4 2468d 2048d 0/3 public: reported C repro on 2019/04/14 00:00

Sample crash report:
syzkaller130919 uses obsolete (PF_INET,SOCK_PACKET)
------------[ cut here ]------------
WARNING: CPU: 1 PID: 3866 at net/ipv6/ip6_fib.c:1315 fib6_repair_tree+0x558/0x790 net/ipv6/ip6_fib.c:1315()
Kernel panic - not syncing: panic_on_warn set ...

CPU: 1 PID: 3866 Comm: syzkaller130919 Not tainted 4.4.114-gfe09418 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 e3c323b17f31ccf1 ffff8801d999f2f0 ffffffff81d02e6d
 ffffffff83843a40 ffff8801d999f3c8 ffffffff83d10c80 0000000000000009
 0000000000000523 ffff8801d999f3b8 ffffffff8141a1da 0000000041b58ab3
Call Trace:
 [<ffffffff81d02e6d>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d02e6d>] dump_stack+0xc1/0x124 lib/dump_stack.c:51
 [<ffffffff8141a1da>] panic+0x1aa/0x388 kernel/panic.c:112
 [<ffffffff8112d8d5>] warn_slowpath_common+0x125/0x140 kernel/panic.c:455
 [<ffffffff8112db39>] warn_slowpath_null+0x29/0x30 kernel/panic.c:492
 [<ffffffff8334f488>] fib6_repair_tree+0x558/0x790 net/ipv6/ip6_fib.c:1315
 [<ffffffff83355acf>] fib6_del_route net/ipv6/ip6_fib.c:1454 [inline]
 [<ffffffff83355acf>] fib6_del+0x85f/0xa00 net/ipv6/ip6_fib.c:1500
 [<ffffffff83355faa>] fib6_clean_node+0x33a/0x4e0 net/ipv6/ip6_fib.c:1652
 [<ffffffff8334d3db>] fib6_walk_continue+0x39b/0x620 net/ipv6/ip6_fib.c:1578
 [<ffffffff8334d779>] fib6_walk+0x89/0xd0 net/ipv6/ip6_fib.c:1623
 [<ffffffff8334d8a2>] fib6_clean_tree+0xe2/0x130 net/ipv6/ip6_fib.c:1697
 [<ffffffff833509fe>] __fib6_clean_all+0xfe/0x230 net/ipv6/ip6_fib.c:1713
 [<ffffffff83356177>] fib6_clean_all+0x27/0x30 net/ipv6/ip6_fib.c:1724
 [<ffffffff8334bdd1>] rt6_ifdown+0xa1/0x850 net/ipv6/route.c:2630
 [<ffffffff83329245>] addrconf_ifdown+0x75/0xa00 net/ipv6/addrconf.c:3393
 [<ffffffff833301ea>] addrconf_notify+0x76a/0x1b80 net/ipv6/addrconf.c:3336
 [<ffffffff81194045>] notifier_call_chain+0x95/0x1b0 kernel/notifier.c:93
 [<ffffffff811941dd>] __raw_notifier_call_chain kernel/notifier.c:394 [inline]
 [<ffffffff811941dd>] raw_notifier_call_chain+0x2d/0x40 kernel/notifier.c:401
 [<ffffffff82e37ce1>] call_netdevice_notifiers_info+0x51/0x90 net/core/dev.c:1643
 [<ffffffff82e38076>] call_netdevice_notifiers net/core/dev.c:1659 [inline]
 [<ffffffff82e38076>] dev_set_mtu+0x216/0x3b0 net/core/dev.c:6130
 [<ffffffff82e99f30>] dev_ifsioc+0x450/0x800 net/core/dev_ioctl.c:262
 [<ffffffff82e9a643>] dev_ioctl+0x1c3/0xce0 net/core/dev_ioctl.c:533
 [<ffffffff82de4a34>] sock_do_ioctl+0x94/0xb0 net/socket.c:890
 [<ffffffff82de5400>] sock_ioctl+0x2e0/0x3d0 net/socket.c:969
 [<ffffffff81558f8a>] vfs_ioctl fs/ioctl.c:43 [inline]
 [<ffffffff81558f8a>] do_vfs_ioctl+0x7aa/0xee0 fs/ioctl.c:607
 [<ffffffff8155974f>] SYSC_ioctl fs/ioctl.c:622 [inline]
 [<ffffffff8155974f>] SyS_ioctl+0x8f/0xc0 fs/ioctl.c:613
 [<ffffffff8377341f>] entry_SYSCALL_64_fastpath+0x1c/0x98
Dumping ftrace buffer:
   (ftrace buffer empty)
Kernel Offset: disabled
Rebooting in 86400 seconds..

Crashes (2):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2018/01/31 23:03 https://android.googlesource.com/kernel/common android-4.4 fe09418d6f88 02553e22 .config console log report syz C ci-android-44-kasan-gce
2018/01/31 23:03 https://android.googlesource.com/kernel/common android-4.4 fe09418d6f88 02553e22 .config console log report syz C ci-android-44-kasan-gce-386
* Struck through repros no longer work on HEAD.