syzbot

 sign-in | mailing list | source | docs
🐞 Open [765]
🐞 Fixed [121]
🐞 Invalid [805]
Missing Backports [75]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

general protection fault in lock_sock_nested

Status: upstream: reported syz repro on 2024/04/14 08:46
Bug presence: origin:upstream
[Documentation on labels]
Reported-by: syzbot+8c1526bae66de4a558da@syzkaller.appspotmail.com
First crash: 456d, last: 8d23h
Bug presence (1)
Date Name Commit Repro Result
2024/11/09 upstream (ToT) da4373fbcf00 C [report] general protection fault in lock_sock_nested
Similar bugs (19)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-49 general protection fault in lock_sock_nested 2 1 2711d 2711d 0/3 auto-closed as invalid on 2019/02/22 12:39
linux-4.14 general protection fault in lock_sock_nested 2 4 1529d 1747d 0/1 auto-closed as invalid on 2021/09/04 19:35
upstream general protection fault in lock_sock_nested bluetooth 19 C done done 2955 4h19m 672d 0/29 upstream: reported C repro on 2023/09/11 07:52
linux-5.15 general protection fault in lock_sock_nested missing-backport origin:upstream 8 C error 128 1d10h 466d 0/3 upstream: reported C repro on 2024/04/04 13:25
linux-6.6 general protection fault in lock_sock_nested 2 5 5d14h 25d 0/2 upstream: reported on 2025/06/19 04:51
upstream BUG: unable to handle kernel paging request in lock_sock_nested bluetooth 17 43 1364d 1804d 0/29 auto-closed as invalid on 2022/02/16 22:16
linux-4.19 KASAN: wild-memory-access Write in lock_sock_nested 23 2 1628d 1697d 0/1 auto-closed as invalid on 2021/05/28 14:35
linux-6.1 BUG: sleeping function called from invalid context in lock_sock_nested (2) origin:upstream missing-backport 5 C error 5 80d 142d 0/3 upstream: reported C repro on 2025/02/23 00:56
linux-4.19 KASAN: use-after-free Read in lock_sock_nested 23 C 471 867d 2180d 0/1 upstream: reported C repro on 2019/07/26 21:27
linux-4.14 KASAN: use-after-free Read in lock_sock_nested 19 C inconclusive 331 907d 2273d 0/1 upstream: reported C repro on 2019/04/24 06:28
upstream KASAN: use-after-free Read in lock_sock_nested hams 19 C inconclusive done 1856 776d 2385d 0/29 auto-obsoleted due to no activity on 2023/08/23 09:06
linux-6.1 BUG: sleeping function called from invalid context in lock_sock_nested 5 7 359d 380d 0/3 auto-obsoleted due to no activity on 2024/10/28 05:57
linux-4.14 BUG: unable to handle kernel paging request in lock_sock_nested 8 4 1522d 1641d 0/1 auto-closed as invalid on 2021/09/11 11:51
upstream KASAN: slab-out-of-bounds Read in lock_sock_nested bluetooth 17 syz unreliable done 23 1358d 1798d 0/29 auto-obsoleted due to no activity on 2022/09/29 10:19
linux-4.19 KASAN: slab-out-of-bounds Read in lock_sock_nested 23 14 1041d 1705d 0/1 auto-obsoleted due to no activity on 2023/01/05 15:59
upstream BUG: sleeping function called from invalid context in lock_sock_nested (3) bluetooth 19 C inconclusive error 144 7d00h 427d 0/29 upstream: reported C repro on 2024/05/13 12:58
linux-5.15 BUG: sleeping function called from invalid context in lock_sock_nested missing-backport origin:upstream 19 C error 22 53d 380d 0/3 upstream: reported C repro on 2024/06/29 07:50
android-44 KASAN: use-after-free Read in lock_sock_nested 19 C 40 2516d 2286d 0/2 public: reported C repro on 2019/04/11 08:44
android-49 KASAN: use-after-free Read in lock_sock_nested 19 C 39 2518d 2711d 0/3 closed as invalid on 2019/03/07 05:41

Sample crash report:
general protection fault, probably for non-canonical address 0xdffffc0000000026: 0000 [#1] PREEMPT SMP KASAN
KASAN: null-ptr-deref in range [0x0000000000000130-0x0000000000000137]
CPU: 1 PID: 3638 Comm: kworker/1:3 Not tainted 6.1.129-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
Workqueue: events l2cap_info_timeout
RIP: 0010:__lock_acquire+0x69/0x1f80 kernel/locking/lockdep.c:4919
Code: df 0f b6 04 10 84 c0 0f 85 fb 15 00 00 83 3d a1 29 36 0d 00 0f 84 a8 14 00 00 83 3d c0 15 b5 0b 00 74 2b 4c 89 f0 48 c1 e8 03 <80> 3c 10 00 74 12 4c 89 f7 e8 99 44 77 00 48 ba 00 00 00 00 00 fc
RSP: 0018:ffffc90003187800 EFLAGS: 00010002
RAX: 0000000000000026 RBX: 0000000000000000 RCX: 0000000000000000
RDX: dffffc0000000000 RSI: 0000000000000000 RDI: 0000000000000130
RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
R13: ffff88807c3f9dc0 R14: 0000000000000130 R15: 0000000000000001
FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c003374000 CR3: 00000000742be000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 lock_acquire+0x1f8/0x5a0 kernel/locking/lockdep.c:5662
 lock_sock_nested+0x44/0x100 net/core/sock.c:3488
 lock_sock include/net/sock.h:1756 [inline]
 l2cap_sock_ready_cb+0x43/0x130 net/bluetooth/l2cap_sock.c:1694
 l2cap_chan_ready net/bluetooth/l2cap_core.c:1409 [inline]
 l2cap_conn_start+0x8c9/0x10a0 net/bluetooth/l2cap_core.c:1667
 process_one_work+0x917/0x1260 kernel/workqueue.c:2292
 worker_thread+0xa47/0x1200 kernel/workqueue.c:2439
 kthread+0x28d/0x320 kernel/kthread.c:376
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:__lock_acquire+0x69/0x1f80 kernel/locking/lockdep.c:4919
Code: df 0f b6 04 10 84 c0 0f 85 fb 15 00 00 83 3d a1 29 36 0d 00 0f 84 a8 14 00 00 83 3d c0 15 b5 0b 00 74 2b 4c 89 f0 48 c1 e8 03 <80> 3c 10 00 74 12 4c 89 f7 e8 99 44 77 00 48 ba 00 00 00 00 00 fc
RSP: 0018:ffffc90003187800 EFLAGS: 00010002
RAX: 0000000000000026 RBX: 0000000000000000 RCX: 0000000000000000
RDX: dffffc0000000000 RSI: 0000000000000000 RDI: 0000000000000130
RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
R13: ffff88807c3f9dc0 R14: 0000000000000130 R15: 0000000000000001
FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c003374000 CR3: 00000000742be000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
----------------
Code disassembly (best guess):
   0:	df 0f                	fisttps (%rdi)
   2:	b6 04                	mov    $0x4,%dh
   4:	10 84 c0 0f 85 fb 15 	adc    %al,0x15fb850f(%rax,%rax,8)
   b:	00 00                	add    %al,(%rax)
   d:	83 3d a1 29 36 0d 00 	cmpl   $0x0,0xd3629a1(%rip)        # 0xd3629b5
  14:	0f 84 a8 14 00 00    	je     0x14c2
  1a:	83 3d c0 15 b5 0b 00 	cmpl   $0x0,0xbb515c0(%rip)        # 0xbb515e1
  21:	74 2b                	je     0x4e
  23:	4c 89 f0             	mov    %r14,%rax
  26:	48 c1 e8 03          	shr    $0x3,%rax
* 2a:	80 3c 10 00          	cmpb   $0x0,(%rax,%rdx,1) <-- trapping instruction
  2e:	74 12                	je     0x42
  30:	4c 89 f7             	mov    %r14,%rdi
  33:	e8 99 44 77 00       	call   0x7744d1
  38:	48                   	rex.W
  39:	ba 00 00 00 00       	mov    $0x0,%edx
  3e:	00 fc                	add    %bh,%ah

Crashes (142):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/02/24 19:50 linux-6.1.y 3a8358583626 d34966d1 .config console log report syz / log [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2024/12/07 13:14 linux-6.1.y e4d90d63d385 9ac0fdc6 .config console log report syz / log [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2024/11/09 12:52 linux-6.1.y d7039b844a1c 6b856513 .config console log report syz / log [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2025/05/26 14:36 linux-6.1.y da3c5173c55f 2d4582d0 .config console log report syz / log [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/05/24 17:32 linux-6.1.y da3c5173c55f ed351ea7 .config console log report syz / log [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/04/16 16:50 linux-6.1.y 420102835862 a95239b1 .config console log report syz / log [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/03/03 14:40 linux-6.1.y 3a8358583626 c3901742 .config console log report syz / log [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/03/01 05:01 linux-6.1.y 3a8358583626 67cf5345 .config console log report syz / log [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/02/05 13:15 linux-6.1.y 0cbb5f65e52f 5896748e .config console log report syz / log [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/01/30 13:28 linux-6.1.y 75cefdf153f5 afe4eff5 .config console log report syz / log [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/06/18 08:54 linux-6.1.y 58485ff1a74f e77fae15 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2025/06/01 22:04 linux-6.1.y da3c5173c55f 3d2f584d .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2025/05/26 11:40 linux-6.1.y da3c5173c55f 2d4582d0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2025/05/23 20:50 linux-6.1.y da3c5173c55f f8cc0c83 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2025/04/25 16:52 linux-6.1.y 535ec20c5027 e3715315 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2025/04/14 13:16 linux-6.1.y 420102835862 0bd6db41 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2025/03/04 10:45 linux-6.1.y 3a8358583626 c3901742 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2025/02/25 00:32 linux-6.1.y 3a8358583626 d34966d1 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2025/02/16 16:33 linux-6.1.y 0cbb5f65e52f 40a34ec9 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2025/02/09 18:14 linux-6.1.y 0cbb5f65e52f ef44b750 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2025/01/25 03:00 linux-6.1.y 75cefdf153f5 1293872d .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2025/01/16 01:02 linux-6.1.y c63962be84ef 968edaf4 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2024/04/14 08:45 linux-6.1.y cd5d98c0556c c8349e48 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan general protection fault in lock_sock_nested
2024/07/23 14:36 linux-6.1.y 9b3f9a5b12dc e50e8da5 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan KASAN: use-after-free Read in lock_sock_nested
2025/07/06 03:12 linux-6.1.y 7e69c33e4858 4f67c4ae .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/06/16 20:24 linux-6.1.y 58485ff1a74f d1716036 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/06/10 15:03 linux-6.1.y 58485ff1a74f 4826c28e .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/05/31 13:47 linux-6.1.y da3c5173c55f 3d2f584d .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/05/28 21:08 linux-6.1.y da3c5173c55f 3d2f584d .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/05/24 08:16 linux-6.1.y da3c5173c55f ed351ea7 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/05/22 07:40 linux-6.1.y 325285d9fc86 0919b50b .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/05/21 19:01 linux-6.1.y 325285d9fc86 dc5d3808 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/05/14 18:09 linux-6.1.y 02b72ccb5f9d a4fa04ef .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/05/14 10:56 linux-6.1.y 02b72ccb5f9d 7344edeb .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/05/07 08:21 linux-6.1.y ac7079a42ea5 350f4ffc .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/04/30 02:23 linux-6.1.y 535ec20c5027 85a5a23f .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/04/26 15:31 linux-6.1.y 535ec20c5027 c6b4fb39 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/04/16 22:04 linux-6.1.y 420102835862 a95239b1 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/04/03 04:55 linux-6.1.y 8e60a714ba3b c799dfdd .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/03/24 20:19 linux-6.1.y 344a09659766 875573af .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/03/21 16:00 linux-6.1.y 344a09659766 62330552 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/03/19 20:01 linux-6.1.y 344a09659766 e20d7b13 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/03/18 03:34 linux-6.1.y 344a09659766 ce3352cd .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/03/14 15:37 linux-6.1.y 344a09659766 e2826670 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/03/03 06:17 linux-6.1.y 3a8358583626 c3901742 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/02/26 14:24 linux-6.1.y 3a8358583626 d34966d1 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/02/19 03:47 linux-6.1.y 0cbb5f65e52f 9a14138f .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/02/14 17:07 linux-6.1.y 0cbb5f65e52f 1022af74 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/02/13 16:04 linux-6.1.y 0cbb5f65e52f a98a8417 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/02/13 16:04 linux-6.1.y 0cbb5f65e52f a98a8417 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/02/13 08:38 linux-6.1.y 0cbb5f65e52f b27c2402 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/02/10 11:23 linux-6.1.y 0cbb5f65e52f ef44b750 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/02/07 06:25 linux-6.1.y 0cbb5f65e52f 8002dd28 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/02/04 03:22 linux-6.1.y 0cbb5f65e52f 8f267cef .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/01/25 18:33 linux-6.1.y 75cefdf153f5 9fbd772e .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/01/25 07:59 linux-6.1.y 75cefdf153f5 9fbd772e .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
2025/01/25 01:05 linux-6.1.y 75cefdf153f5 1293872d .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: unable to handle kernel paging request in lock_sock_nested
* Struck through repros no longer work on HEAD.