syzbot

 sign-in | mailing list | source | docs
🐞 Open [1613]
Subsystems
🐞 Fixed [5937]
🐞 Invalid [14479]
Missing Backports [108]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

BUG: unable to handle kernel paging request in process_preds

Status: closed as dup on 2018/04/27 15:18
Subsystems: trace
[Documentation on labels]
Reported-by: syzbot+b76562b749bb67fca79f@syzkaller.appspotmail.com
First crash: 2445d, last: 2371d
Duplicate of
Title Repro Cause bisect Fix bisect Count Last Reported
KASAN: use-after-free Read in process_preds trace 2 2409d 2436d
Discussions (1)
Title Replies (including bot) Last reply
BUG: unable to handle kernel paging request in process_preds 1 (2) 2018/04/27 15:18

Sample crash report:
random: sshd: uninitialized urandom read (32 bytes read)
random: sshd: uninitialized urandom read (32 bytes read)
random: sshd: uninitialized urandom read (32 bytes read)
random: sshd: uninitialized urandom read (32 bytes read)
BUG: unable to handle kernel paging request at ffff87fe6ebd6c44
PGD 0 P4D 0 
Oops: 0000 [#1] SMP PTI
Dumping ftrace buffer:
   (ftrace buffer empty)
Modules linked in:
CPU: 1 PID: 4479 Comm: syz-executor447 Not tainted 4.17.0+ #8
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:predicate_parse kernel/trace/trace_events_filter.c:563 [inline]
RIP: 0010:process_preds+0x42ed/0x5060 kernel/trace/trace_events_filter.c:1508
RSP: 0018:ffff8801976ff8f0 EFLAGS: 00010246
RAX: ffff8801a4932e40 RBX: ffff87fe6ebd6c44 RCX: ffff880000000000
RDX: ffff8801a4934e24 RSI: aaaaaaaaaaaab000 RDI: ffffea0000000000
RBP: ffff8801976ffad0 R08: 0000000000000094 R09: 0000000000000002
R10: 0000000000000002 R11: 0000000000000000 R12: fffffffcca2a3e00
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
FS:  00000000006fb880(0000) GS:ffff88021fd00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffff87fe6ebd6c44 CR3: 000000019a286000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 create_filter kernel/trace/trace_events_filter.c:1716 [inline]
 ftrace_profile_set_filter+0x2aa/0x6a0 kernel/trace/trace_events_filter.c:2041
 perf_event_set_filter kernel/events/core.c:9079 [inline]
 _perf_ioctl kernel/events/core.c:5059 [inline]
 perf_ioctl+0x1ca8/0x5870 kernel/events/core.c:5110
 vfs_ioctl fs/ioctl.c:46 [inline]
 do_vfs_ioctl+0xcbd/0x24b0 fs/ioctl.c:686
 ksys_ioctl fs/ioctl.c:701 [inline]
 __do_sys_ioctl fs/ioctl.c:708 [inline]
 __se_sys_ioctl fs/ioctl.c:706 [inline]
 __x64_sys_ioctl+0x280/0x320 fs/ioctl.c:706
 do_syscall_64+0x15b/0x230 arch/x86/entry/common.c:287
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x43fdb9
RSP: 002b:00007ffcf45df3e8 EFLAGS: 00000213 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043fdb9
RDX: 0000000020000040 RSI: 0000000040082406 RDI: 0000000000000003
RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8
R10: 0000000000000000 R11: 0000000000000213 R12: 00000000004016e0
R13: 0000000000401770 R14: 0000000000000000 R15: 0000000000000000
Code: 2c 44 89 b4 24 b0 00 00 00 8b 02 89 44 24 08 49 c1 e4 04 4c 0b 6c 24 68 48 8b 84 24 88 00 00 00 4a 8d 5c 20 04 0f 85 a5 00 00 00 <44> 8b 33 48 89 df e8 e8 2c 4d 00 8b 00 41 09 c7 8b 5c 24 30 74 
RIP: predicate_parse kernel/trace/trace_events_filter.c:563 [inline] RSP: ffff8801976ff8f0
RIP: process_preds+0x42ed/0x5060 kernel/trace/trace_events_filter.c:1508 RSP: ffff8801976ff8f0
CR2: ffff87fe6ebd6c44
---[ end trace 51b1602f202978e7 ]---

Crashes (28):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2018/06/16 06:08 https://github.com/google/kmsan.git master 88e0e95b30f1 27c5f59f .config console log report syz C ci-upstream-kmsan-gce
2018/05/08 22:18 https://github.com/google/kmsan.git master 74ee2200b89f b88872ba .config console log report syz C ci-upstream-kmsan-gce
2018/06/22 12:15 bpf-next f0dc7f9c6dd9 095ef806 .config console log report ci-upstream-bpf-next-kasan-gce
2018/06/21 13:35 bpf-next f0dc7f9c6dd9 095ef806 .config console log report ci-upstream-bpf-next-kasan-gce
2018/06/20 23:23 bpf-next f0dc7f9c6dd9 095ef806 .config console log report ci-upstream-bpf-next-kasan-gce
2018/06/16 06:21 bpf-next f0dc7f9c6dd9 27c5f59f .config console log report ci-upstream-bpf-next-kasan-gce
2018/06/15 23:50 bpf-next f0dc7f9c6dd9 27c5f59f .config console log report ci-upstream-bpf-next-kasan-gce
2018/05/31 20:21 bpf-next bcece5dc40b9 2f93b54f .config console log report ci-upstream-bpf-next-kasan-gce
2018/05/30 20:37 bpf-next 13a370b9d275 2f93b54f .config console log report ci-upstream-bpf-next-kasan-gce
2018/05/29 14:34 bpf-next f198222f0567 e276de77 .config console log report ci-upstream-bpf-next-kasan-gce
2018/05/27 02:39 bpf-next 9c5904904b88 f48c20b8 .config console log report ci-upstream-bpf-next-kasan-gce
2018/05/03 07:25 bpf-next 6f96674dbd8c 9ce14f4b .config console log report ci-upstream-bpf-next-kasan-gce
2018/04/18 16:41 bpf-next 0c90f2243ec6 52643b44 .config console log report ci-upstream-bpf-next-kasan-gce
2018/07/01 08:21 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report ci-upstream-kmsan-gce
2018/07/01 03:54 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report ci-upstream-kmsan-gce
2018/06/27 03:33 https://github.com/google/kmsan.git master 123906095e30 b0294c53 .config console log report ci-upstream-kmsan-gce
2018/06/26 23:48 https://github.com/google/kmsan.git master 123906095e30 b0294c53 .config console log report ci-upstream-kmsan-gce
2018/06/24 08:09 https://github.com/google/kmsan.git master 123906095e30 2064fc5c .config console log report ci-upstream-kmsan-gce
2018/06/20 17:16 https://github.com/google/kmsan.git master 123906095e30 095ef806 .config console log report ci-upstream-kmsan-gce
2018/06/18 19:08 https://github.com/google/kmsan.git master 123906095e30 45c54f75 .config console log report ci-upstream-kmsan-gce
2018/06/03 06:31 https://github.com/google/kmsan.git master 8fc8ecd1c58a 2f93b54f .config console log report ci-upstream-kmsan-gce
2018/06/03 01:40 https://github.com/google/kmsan.git master 8fc8ecd1c58a 2f93b54f .config console log report ci-upstream-kmsan-gce
2018/05/30 08:46 https://github.com/google/kmsan.git master 1b9cd4eccac9 2f93b54f .config console log report ci-upstream-kmsan-gce
2018/05/27 05:15 https://github.com/google/kmsan.git master 1b9cd4eccac9 f48c20b8 .config console log report ci-upstream-kmsan-gce
2018/05/24 12:07 https://github.com/google/kmsan.git master 1b9cd4eccac9 f48c20b8 .config console log report ci-upstream-kmsan-gce
2018/05/19 04:49 https://github.com/google/kmsan.git master f6e2e65b4fff 849705db .config console log report ci-upstream-kmsan-gce
2018/05/11 00:40 https://github.com/google/kmsan.git master 74ee2200b89f 12c7428a .config console log report ci-upstream-kmsan-gce
2018/05/08 20:40 https://github.com/google/kmsan.git master 74ee2200b89f b88872ba .config console log report ci-upstream-kmsan-gce
* Struck through repros no longer work on HEAD.