syzbot


general protection fault in rxrpc_get_skb

Status: upstream: reported C repro on 2019/09/01 19:05
Reported-by: syzbot+f1df0947aed2a0500e3d@syzkaller.appspotmail.com
First crash: 1758d, last: 650d
Fix bisection: failed (error log, bisect log)
  
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream general protection fault in rxrpc_get_skb afs net 1 1486d 1482d 0/27 auto-closed as invalid on 2020/08/28 04:35

Sample crash report:
kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] PREEMPT SMP KASAN
Modules linked in:
CPU: 0 PID: 24 Comm: kworker/0:1 Not tainted 4.14.173-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: krxrpcd rxrpc_process_call
task: ffff8880a9a36640 task.stack: ffff8880a9a40000
RIP: 0010:__read_once_size include/linux/compiler.h:183 [inline]
RIP: 0010:atomic_read arch/x86/include/asm/atomic.h:27 [inline]
RIP: 0010:refcount_read include/linux/refcount.h:42 [inline]
RIP: 0010:rxrpc_get_skb+0x5e/0x350 net/rxrpc/skbuff.c:52
RSP: 0018:ffff8880a9a47c50 EFLAGS: 00010203
RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000
RDX: 000000000000001c RSI: 000000000000000a RDI: 00000000000000e4
RBP: 000000000000000a R08: 0000000000004897 R09: ffffffff8a07fd38
R10: ffff8880a9a36f10 R11: ffff8880a9a36640 R12: 0000000000000000
R13: ffff88808f2f1a50 R14: ffffffff8b04e520 R15: ffff88808f2f1918
FS:  0000000000000000(0000) GS:ffff8880aea00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000000 CR3: 000000009ea29000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 rxrpc_resend net/rxrpc/call_event.c:319 [inline]
 rxrpc_process_call+0x54f/0x1135 net/rxrpc/call_event.c:407
 process_one_work+0x813/0x1540 kernel/workqueue.c:2114
 worker_thread+0x5d1/0x1070 kernel/workqueue.c:2248
 kthread+0x30d/0x420 kernel/kthread.c:232
 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
Code: c0 e0 e4 04 8b 4c 0f 46 f0 e8 cf 8d 9d fb f0 45 0f c1 26 48 8d bb e4 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 
RIP: __read_once_size include/linux/compiler.h:183 [inline] RSP: ffff8880a9a47c50
RIP: atomic_read arch/x86/include/asm/atomic.h:27 [inline] RSP: ffff8880a9a47c50
RIP: refcount_read include/linux/refcount.h:42 [inline] RSP: ffff8880a9a47c50
RIP: rxrpc_get_skb+0x5e/0x350 net/rxrpc/skbuff.c:52 RSP: ffff8880a9a47c50
---[ end trace 204afccabccf6962 ]---

Crashes (21):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2020/03/17 11:34 linux-4.14.y 12cd844a39ed 749688d2 .config console log report syz C ci2-linux-4-14
2020/03/06 15:51 linux-4.14.y 78d697fc93f9 7fb694ef .config console log report syz ci2-linux-4-14
2020/02/22 05:39 linux-4.14.y 98db2bf27b9e 2ffa6679 .config console log report syz ci2-linux-4-14
2020/01/15 08:24 linux-4.14.y c04fc6fa5c96 fa12bd3c .config console log report syz ci2-linux-4-14
2019/12/02 22:56 linux-4.14.y fbc5fe7a54d0 ab342da3 .config console log report syz ci2-linux-4-14
2019/11/09 22:06 linux-4.14.y c9fda4f22428 1e35461e .config console log report syz ci2-linux-4-14
2019/09/01 18:04 linux-4.14.y 01fd1694b93c bad3cce2 .config console log report syz ci2-linux-4-14
2022/09/13 20:14 linux-4.14.y 65640c873dcf b884348d .config console log report info [disk image] [vmlinux] ci2-linux-4-14 general protection fault in rxrpc_get_skb
2022/09/05 10:07 linux-4.14.y 65640c873dcf 922294ab .config console log report info [disk image] [vmlinux] ci2-linux-4-14 general protection fault in rxrpc_get_skb
2022/07/21 20:47 linux-4.14.y 9c3bf9cf362f 5e6028b9 .config console log report info ci2-linux-4-14 general protection fault in rxrpc_get_skb
2022/01/17 21:14 linux-4.14.y 4ba8e26127c3 731a2d23 .config console log report info ci2-linux-4-14 general protection fault in rxrpc_get_skb
2022/01/15 02:49 linux-4.14.y 4ba8e26127c3 53e00b45 .config console log report info ci2-linux-4-14 general protection fault in rxrpc_get_skb
2020/05/25 01:11 linux-4.14.y a41ba30d9df2 11284182 .config console log report ci2-linux-4-14
2020/05/24 19:06 linux-4.14.y a41ba30d9df2 ce7ca010 .config console log report ci2-linux-4-14
2020/03/06 08:55 linux-4.14.y 78d697fc93f9 7fb694ef .config console log report ci2-linux-4-14
2020/01/15 05:26 linux-4.14.y c04fc6fa5c96 fa12bd3c .config console log report ci2-linux-4-14
2019/12/02 13:55 linux-4.14.y fbc5fe7a54d0 f879db37 .config console log report ci2-linux-4-14
2019/11/12 12:58 linux-4.14.y 4762bcd451a9 048f2d49 .config console log report ci2-linux-4-14
2019/11/09 21:22 linux-4.14.y c9fda4f22428 1e35461e .config console log report ci2-linux-4-14
2019/10/27 20:04 linux-4.14.y b98aebd29824 25bb509e .config console log report ci2-linux-4-14
2019/10/13 01:13 linux-4.14.y e132c8d7b58d 426631dd .config console log report ci2-linux-4-14
* Struck through repros no longer work on HEAD.