| Kernel | Title | Repro | Cause bisect | Fix bisect | Count | Last | Reported | Patched | Status |
|---|---|---|---|---|---|---|---|---|---|
| linux-5.15 | kernel BUG in __nf_conntrack_confirm | 1 | 446d | 446d | 0/3 | auto-obsoleted due to no activity on 2024/05/10 11:41 |
syzbot |
sign-in | mailing list | source | docs |
------------[ cut here ]------------ kernel BUG at net/netfilter/nf_conntrack_core.c:570! invalid opcode: 0000 [#1] PREEMPT SMP KASAN CPU: 1 PID: 5704 Comm: syz.3.409 Not tainted 5.15.180-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 RIP: 0010:nf_ct_del_from_dying_or_unconfirmed_list net/netfilter/nf_conntrack_core.c:570 [inline] RIP: 0010:__nf_conntrack_confirm+0x10ea/0x10f0 net/netfilter/nf_conntrack_core.c:1207 Code: e9 b1 fc ff ff e8 f6 10 e5 f8 48 c7 c7 18 f1 05 8e 48 c7 c6 00 dd a3 8b 4c 89 ea e8 10 1c 96 fb e9 a5 f1 ff ff e8 d6 10 e5 f8 <0f> 0b 0f 1f 40 00 55 41 57 41 56 41 55 41 54 53 49 89 fc 49 bd 00 RSP: 0018:ffffc90000dd06d0 EFLAGS: 00010246 RAX: ffffffff889b316a RBX: 0000000000000000 RCX: ffff888025c83b80 RDX: 0000000000000100 RSI: 0000000000000004 RDI: ffffc90000dd0640 RBP: dffffc0000000000 R08: dffffc0000000000 R09: 0000000000000003 R10: ffffffffffffffff R11: dffffc0000000001 R12: ffffffff96e512c0 R13: ffffe8ffffc26f50 R14: ffff8880610edcd0 R15: 0000000000000000 FS: 0000555580077500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000000110c42822b CR3: 0000000053356000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: <IRQ> nf_conntrack_confirm include/net/netfilter/nf_conntrack_core.h:62 [inline] nf_confirm+0x308/0x420 net/netfilter/nf_conntrack_proto.c:154 nf_hook_entry_hookfn include/linux/netfilter.h:142 [inline] nf_hook_slow+0xae/0x1e0 net/netfilter/core.c:584 nf_hook include/linux/netfilter.h:257 [inline] NF_HOOK+0x26b/0x410 include/linux/netfilter.h:300 NF_HOOK+0x364/0x410 include/linux/netfilter.h:302 __netif_receive_skb_one_core net/core/dev.c:5524 [inline] __netif_receive_skb+0x1c6/0x530 net/core/dev.c:5638 process_backlog+0x363/0x7f0 net/core/dev.c:6515 __napi_poll+0xc7/0x440 net/core/dev.c:7074 napi_poll net/core/dev.c:7141 [inline] net_rx_action+0x617/0xda0 net/core/dev.c:7231 handle_softirqs+0x3a7/0x930 kernel/softirq.c:558 do_softirq+0x162/0x240 kernel/softirq.c:459 </IRQ> <TASK> __local_bh_enable_ip+0x1b1/0x1f0 kernel/softirq.c:383 rcu_read_unlock_bh include/linux/rcupdate.h:809 [inline] ip_finish_output2+0xdf1/0x11a0 net/ipv4/ip_output.c:229 dst_output include/net/dst.h:452 [inline] ip_local_out net/ipv4/ip_output.c:126 [inline] __ip_queue_xmit+0x11e7/0x1c30 net/ipv4/ip_output.c:532 __tcp_transmit_skb+0x1ee1/0x3810 net/ipv4/tcp_output.c:1404 tcp_fin+0x112/0x530 net/ipv4/tcp_input.c:4468 tcp_data_queue+0x856/0x6dd0 net/ipv4/tcp_input.c:5131 tcp_rcv_state_process+0x1b8c/0x4470 net/ipv4/tcp_input.c:6715 tcp_v4_do_rcv+0x64b/0x970 net/ipv4/tcp_ipv4.c:1753 sk_backlog_rcv include/net/sock.h:1061 [inline] __release_sock+0x198/0x4b0 net/core/sock.c:2727 __tcp_close+0x58a/0xee0 net/ipv4/tcp.c:2845 tcp_close+0x24/0x110 net/ipv4/tcp.c:2922 inet_release+0x174/0x1f0 net/ipv4/af_inet.c:432 __sock_release net/socket.c:649 [inline] sock_close+0xcd/0x230 net/socket.c:1336 __fput+0x3fe/0x8e0 fs/file_table.c:311 task_work_run+0x129/0x1a0 kernel/task_work.c:188 tracehook_notify_resume include/linux/tracehook.h:189 [inline] exit_to_user_mode_loop+0x106/0x130 kernel/entry/common.c:181 exit_to_user_mode_prepare+0xb1/0x140 kernel/entry/common.c:214 __syscall_exit_to_user_mode_work kernel/entry/common.c:296 [inline] syscall_exit_to_user_mode+0x5d/0x240 kernel/entry/common.c:307 do_syscall_64+0x47/0x80 arch/x86/entry/common.c:86 entry_SYSCALL_64_after_hwframe+0x66/0xd0 RIP: 0033:0x7f4879e8a169 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007ffe56cc3528 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 RAX: 0000000000000000 RBX: 00007f487a0b3ba0 RCX: 00007f4879e8a169 RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 RBP: 00007f487a0b3ba0 R08: 00000000000001f8 R09: 0000001c56cc381f R10: 00007f487a0b3ac0 R11: 0000000000000246 R12: 00000000000352b5 R13: 00007f487a0b2080 R14: ffffffffffffffff R15: 00007ffe56cc3640 </TASK> Modules linked in: ---[ end trace 03715d264cf8f24c ]--- RIP: 0010:nf_ct_del_from_dying_or_unconfirmed_list net/netfilter/nf_conntrack_core.c:570 [inline] RIP: 0010:__nf_conntrack_confirm+0x10ea/0x10f0 net/netfilter/nf_conntrack_core.c:1207 Code: e9 b1 fc ff ff e8 f6 10 e5 f8 48 c7 c7 18 f1 05 8e 48 c7 c6 00 dd a3 8b 4c 89 ea e8 10 1c 96 fb e9 a5 f1 ff ff e8 d6 10 e5 f8 <0f> 0b 0f 1f 40 00 55 41 57 41 56 41 55 41 54 53 49 89 fc 49 bd 00 RSP: 0018:ffffc90000dd06d0 EFLAGS: 00010246 RAX: ffffffff889b316a RBX: 0000000000000000 RCX: ffff888025c83b80 RDX: 0000000000000100 RSI: 0000000000000004 RDI: ffffc90000dd0640 RBP: dffffc0000000000 R08: dffffc0000000000 R09: 0000000000000003 R10: ffffffffffffffff R11: dffffc0000000001 R12: ffffffff96e512c0 R13: ffffe8ffffc26f50 R14: ffff8880610edcd0 R15: 0000000000000000 FS: 0000555580077500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000000110c42822b CR3: 0000000053356000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
| Time | Kernel | Commit | Syzkaller | Config | Log | Report | Syz repro | C repro | VM info | Assets (help?) | Manager | Title |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2025/04/19 16:25 | linux-5.15.y | f7347f400572 | 2a20f901 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-linux-5-15-kasan | kernel BUG in __nf_conntrack_confirm | ||
| 2025/02/20 20:01 | linux-5.15.y | c16c81c81336 | 0808a665 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-linux-5-15-kasan | kernel BUG in __nf_conntrack_confirm | ||
| 2025/02/14 14:55 | linux-5.15.y | c16c81c81336 | 1022af74 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-linux-5-15-kasan | kernel BUG in __nf_conntrack_confirm | ||
| 2025/02/18 23:45 | linux-5.15.y | c16c81c81336 | 9a14138f | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-linux-5-15-kasan-arm64 | kernel BUG in __nf_conntrack_confirm | ||
| 2025/02/18 23:43 | linux-5.15.y | c16c81c81336 | 9a14138f | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-linux-5-15-kasan-arm64 | kernel BUG in __nf_conntrack_confirm | ||
| 2025/01/26 16:05 | linux-5.15.y | 003148680b79 | 9fbd772e | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-linux-5-15-kasan-arm64 | kernel BUG in __nf_conntrack_confirm | ||
| 2024/12/16 03:47 | linux-5.15.y | 963e654022cc | 7cbfbb3a | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-linux-5-15-kasan-arm64 | kernel BUG in __nf_conntrack_confirm | ||
| 2024/11/24 21:06 | linux-5.15.y | 0a51d2d4527b | 68da6d95 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-linux-5-15-kasan-arm64 | kernel BUG in __nf_conntrack_confirm |