syzbot

 sign-in | mailing list | source | docs
🐞 Open [717]
🐞 Fixed [181]
🐞 Invalid [640]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

invalid opcode in do_syscall_64

Status: upstream: reported syz repro on 2020/09/28 17:19
Reported-by: syzbot+bbfc79b70a557b7743c5@syzkaller.appspotmail.com
First crash: 1528d, last: 1010d
Fix bisection: failed (error log, bisect log)
  
Similar bugs (2)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.19 invalid opcode in do_syscall_64 1 1547d 1547d 0/1 auto-closed as invalid on 2021/01/07 18:51
upstream invalid opcode in do_syscall_64 kernel 1 1818d 1817d 0/28 auto-closed as invalid on 2020/03/12 14:07
Last patch testing requests (4)
Created Duration User Patch Repo Result
2023/02/15 07:32 14m retest repro linux-4.14.y report log
2023/02/15 06:32 10m retest repro linux-4.14.y report log
2022/10/09 18:30 10m retest repro linux-4.14.y report log
2022/10/09 09:30 14m retest repro linux-4.14.y report log
Fix bisection attempts (18)
Created Duration User Patch Repo Result
2022/03/30 18:57 14m bisect fix linux-4.14.y error job log
2022/02/28 15:25 32m bisect fix linux-4.14.y OK (0) job log log
2022/01/29 14:53 31m bisect fix linux-4.14.y OK (0) job log log
2021/12/30 14:11 30m bisect fix linux-4.14.y OK (0) job log log
2021/11/30 13:42 27m bisect fix linux-4.14.y OK (0) job log log
2021/10/31 13:15 25m bisect fix linux-4.14.y OK (0) job log log
2021/09/23 17:20 27m bisect fix linux-4.14.y OK (0) job log log
2021/08/24 16:37 32m bisect fix linux-4.14.y OK (0) job log log
2021/07/25 15:03 27m bisect fix linux-4.14.y OK (0) job log log
2021/06/25 14:35 20m bisect fix linux-4.14.y OK (0) job log log
2021/05/26 14:06 29m bisect fix linux-4.14.y OK (0) job log log
2021/04/26 13:36 30m bisect fix linux-4.14.y OK (0) job log log
2021/03/27 07:14 21m bisect fix linux-4.14.y OK (0) job log log
2021/02/24 21:08 23m bisect fix linux-4.14.y OK (0) job log log
2021/02/06 15:58 0m bisect fix linux-4.14.y error job log
2021/01/07 14:04 23m bisect fix linux-4.14.y OK (0) job log log
2020/12/08 13:36 27m bisect fix linux-4.14.y OK (0) job log log
2020/11/08 13:13 23m bisect fix linux-4.14.y OK (0) job log log

Sample crash report:
wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
Bluetooth: hci0 command 0x0409 tx timeout
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
Modules linked in:
CPU: 1 PID: 6383 Comm: syz-executor.0 Not tainted 4.14.198-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
task: ffff88809accc080 task.stack: ffff888097a48000
RIP: 0010:arch_local_irq_enable arch/x86/include/asm/paravirt.h:789 [inline]
RIP: 0010:do_syscall_64+0x6f/0x640 arch/x86/entry/common.c:280
RSP: 0018:ffff888097a4ff00 EFLAGS: 00010082
RAX: dffffc0000000000 RBX: 00000000000000e4 RCX: 0000000000000000
RDX: 1ffffffff0fa2d23 RSI: 0000000000000001 RDI: ffff88809accc904
RBP: ffff888097a4ff58 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff87d16918
R13: ffff888097a4ffd0 R14: ffff88809accc080 R15: 0000000000000000
FS:  0000000002808940(0000) GS:ffff8880aeb00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000001188080 CR3: 000000009f8ec000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x460c8a
RSP: 002b:00007ffed64c7908 EFLAGS: 00000246 ORIG_RAX: 00000000000000e4
RAX: ffffffffffffffda RBX: 000000000003acd5 RCX: 0000000000460c8a
RDX: 0000000000000000 RSI: 00007ffed64c7910 RDI: 0000000000000001
RBP: 000000000000001c R08: 0000000000000000 R09: 0000000002808940
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000009
R13: 00007ffed64c7970 R14: 000000000003aca3 R15: 00007ffed64c7980
Code: 8b 5d 78 e8 34 8c 46 00 4c 89 e2 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 52 04 00 00 48 83 3d 19 fb d0 06 00 <0f> 00 70 07 77 00 e8 06 29 5b 00 fb 66 0f 1f 44 00 00 48 b8 00 
RIP: arch_local_irq_enable arch/x86/include/asm/paravirt.h:789 [inline] RSP: ffff888097a4ff00
RIP: do_syscall_64+0x6f/0x640 arch/x86/entry/common.c:280 RSP: ffff888097a4ff00
---[ end trace 3e38ba637253157a ]---

Crashes (3):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2020/10/09 13:08 linux-4.14.y cbfa1702aaf6 fa79ed2a .config console log report syz ci2-linux-4-14
2020/09/28 17:18 linux-4.14.y cbfa1702aaf6 6bfdbe89 .config console log report syz ci2-linux-4-14
2020/10/09 09:34 linux-4.14.y cbfa1702aaf6 fa79ed2a .config console log report info ci2-linux-4-14
* Struck through repros no longer work on HEAD.