syzbot


kernel BUG at net/core/dev.c:LINE! (2)

Status: upstream: reported C repro on 2020/12/11 13:29
Reported-by: syzbot+f19cc331e8da500491d2@syzkaller.appspotmail.com
First crash: 560d, last: 7d12h

Fix bisection: failed (bisect log)
similar bugs (8):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.14 kernel BUG in validate_xmit_skb 1 499d 499d 0/1 auto-closed as invalid on 2021/06/10 04:03
upstream kernel BUG at net/core/dev.c:LINE! (4) C done done 432 191d 579d 22/22 fixed on 2022/03/08 16:11
upstream kernel BUG at net/core/dev.c:LINE! (2) syz 2 1353d 1353d 12/22 fixed on 2018/10/18 14:43
upstream kernel BUG in netem_enqueue 2 14d 51d 21/22 internal: reported on 2022/05/04 17:12
linux-4.19 kernel BUG at net/core/dev.c:LINE! 4 790d 792d 0/1 auto-closed as invalid on 2020/08/23 07:17
upstream kernel BUG at net/core/dev.c:LINE! C 5 1671d 1675d 3/22 fixed on 2017/12/08 02:32
linux-4.14 kernel BUG at net/core/dev.c:LINE! C inconclusive 3 542d 811d 1/1 fixed on 2021/01/17 13:53
upstream kernel BUG at net/core/dev.c:LINE! (3) C done 979 660d 804d 17/22 fixed on 2020/09/16 22:51

Sample crash report:
hsr_slave_0: hsr_addr_subst_dest: Unknown node
hsr_slave_1: hsr_addr_subst_dest: Unknown node
------------[ cut here ]------------
kernel BUG at net/core/dev.c:2917!
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
CPU: 0 PID: 8384 Comm: syz-executor151 Not tainted 4.19.211-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:skb_checksum_help+0x851/0x9c0 net/core/dev.c:2917
Code: 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 84 eb fb ff ff 48 8b 7c 24 20 e8 49 6a 23 fb e9 dc fb ff ff e8 4f 8d ed fa <0f> 0b 4c 89 ef e8 e5 67 23 fb e9 dc f7 ff ff 4c 89 e7 e8 98 69 23
RSP: 0018:ffff888094d56fe8 EFLAGS: 00010293
RAX: ffff8880ab604080 RBX: 00000000000003d2 RCX: ffffffff8674f377
RDX: 0000000000000000 RSI: ffffffff8674f821 RDI: 0000000000000006
RBP: ffff8880ab248180 R08: ffff888094d56f78 R09: 00000000000003d4
R10: 0000000000000006 R11: 0000000000000000 R12: ffff8880ab248204
R13: ffff8880ab248210 R14: 000000000000534d R15: 00000000000000e0
FS:  000055555621e300(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020002180 CR3: 000000009efea000 CR4: 00000000003406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 skb_csum_hwoffload_help+0x8b/0x130 net/core/dev.c:3306
 validate_xmit_skb+0x94a/0xd50 net/core/dev.c:3349
 __dev_queue_xmit+0x963/0x2e00 net/core/dev.c:3830
 neigh_hh_output include/net/neighbour.h:491 [inline]
 neigh_output include/net/neighbour.h:499 [inline]
 ip_finish_output2+0xb6d/0x15a0 net/ipv4/ip_output.c:230
 ip_finish_output+0xae9/0x10b0 net/ipv4/ip_output.c:318
 NF_HOOK_COND include/linux/netfilter.h:278 [inline]
 ip_output+0x203/0x5f0 net/ipv4/ip_output.c:406
 dst_output include/net/dst.h:455 [inline]
 ip_local_out+0xaf/0x170 net/ipv4/ip_output.c:125
 iptunnel_xmit+0x63b/0x9d0 net/ipv4/ip_tunnel_core.c:91
 geneve_xmit_skb drivers/net/geneve.c:867 [inline]
 geneve_xmit+0x120d/0x2e60 drivers/net/geneve.c:943
 __netdev_start_xmit include/linux/netdevice.h:4349 [inline]
 netdev_start_xmit include/linux/netdevice.h:4363 [inline]
 xmit_one net/core/dev.c:3256 [inline]
 dev_hard_start_xmit+0x1a8/0x920 net/core/dev.c:3272
 sch_direct_xmit+0x2d6/0xf70 net/sched/sch_generic.c:332
 qdisc_restart net/sched/sch_generic.c:395 [inline]
 __qdisc_run+0x4d0/0x1640 net/sched/sch_generic.c:403
 __dev_xmit_skb net/core/dev.c:3500 [inline]
 __dev_queue_xmit+0x1518/0x2e00 net/core/dev.c:3807
 packet_snd net/packet/af_packet.c:2988 [inline]
 packet_sendmsg+0x25ae/0x7720 net/packet/af_packet.c:3013
 sock_sendmsg_nosec net/socket.c:651 [inline]
 sock_sendmsg+0xc3/0x120 net/socket.c:661
 __sys_sendto+0x21a/0x320 net/socket.c:1899
 __do_sys_sendto net/socket.c:1911 [inline]
 __se_sys_sendto net/socket.c:1907 [inline]
 __x64_sys_sendto+0xdd/0x1b0 net/socket.c:1907
 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7f8287f54d69
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffc5df87108 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f8287f54d69
RDX: 0000000000003287 RSI: 0000000020000080 RDI: 0000000000000003
RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000002ff
R10: 0000000004000002 R11: 0000000000000246 R12: 00007ffc5df87130
R13: 00000000000f4240 R14: 000000000000887b R15: 00007ffc5df87124
Modules linked in:
---[ end trace 663d285e1399c85a ]---
RIP: 0010:skb_checksum_help+0x851/0x9c0 net/core/dev.c:2917
Code: 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 84 eb fb ff ff 48 8b 7c 24 20 e8 49 6a 23 fb e9 dc fb ff ff e8 4f 8d ed fa <0f> 0b 4c 89 ef e8 e5 67 23 fb e9 dc f7 ff ff 4c 89 e7 e8 98 69 23
RSP: 0018:ffff888094d56fe8 EFLAGS: 00010293
RAX: ffff8880ab604080 RBX: 00000000000003d2 RCX: ffffffff8674f377
RDX: 0000000000000000 RSI: ffffffff8674f821 RDI: 0000000000000006
RBP: ffff8880ab248180 R08: ffff888094d56f78 R09: 00000000000003d4
R10: 0000000000000006 R11: 0000000000000000 R12: ffff8880ab248204
R13: ffff8880ab248210 R14: 000000000000534d R15: 00000000000000e0
FS:  000055555621e300(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020002180 CR3: 000000009efea000 CR4: 00000000003406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400

Crashes (87):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci2-linux-4-19 2022/06/13 11:13 linux-4.19.y 3f8a27f9e27b 0d5abf15 .config log report syz C kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/09 09:33 linux-4.19.y 3f8a27f9e27b a4a2a501 .config log report syz C kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/08/27 12:06 linux-4.19.y e23d55af0e1f b318694d .config log report syz C kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/06/23 05:27 linux-4.19.y eb575cd5d7f6 aba2b2fb .config log report syz C kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/06/19 04:24 linux-4.19.y eb575cd5d7f6 aba2b2fb .config log report syz C kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/06/05 07:15 linux-4.19.y 1722257b8ece 500c2339 .config log report syz C kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/06/17 12:13 linux-4.19.y 3f8a27f9e27b cb58b3b2 .config log report info kernel BUG in netem_enqueue
ci2-linux-4-19 2022/06/13 08:47 linux-4.19.y 3f8a27f9e27b 0d5abf15 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/05/04 09:04 linux-4.19.y 3f8a27f9e27b dc9e5259 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/04/12 15:24 linux-4.19.y 3f8a27f9e27b af01ee7d .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/03/26 05:43 linux-4.19.y 3f8a27f9e27b 89bc8608 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/03/25 22:28 linux-4.19.y 3f8a27f9e27b 89bc8608 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/02/13 19:31 linux-4.19.y 3f8a27f9e27b 8b9ca619 .config log report info kernel BUG in netem_enqueue
ci2-linux-4-19 2022/02/01 13:23 linux-4.19.y 3f8a27f9e27b c1c1631d .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/01/22 12:09 linux-4.19.y 3f8a27f9e27b 214351e1 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/01/21 17:32 linux-4.19.y 3f8a27f9e27b 214351e1 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/01/19 21:56 linux-4.19.y 3f8a27f9e27b 5da9499f .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/01/19 16:22 linux-4.19.y 3f8a27f9e27b 0620189b .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/01/18 22:46 linux-4.19.y 3f8a27f9e27b 731a2d23 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/01/18 17:08 linux-4.19.y 3f8a27f9e27b 731a2d23 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/01/18 13:04 linux-4.19.y 3f8a27f9e27b 731a2d23 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/01/17 12:12 linux-4.19.y 3f8a27f9e27b 731a2d23 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/01/15 04:54 linux-4.19.y 3f8a27f9e27b 723cfaf0 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/01/14 13:37 linux-4.19.y 3f8a27f9e27b b8d780ab .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/01/11 18:21 linux-4.19.y 3f8a27f9e27b 1884f55a .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/01/04 22:40 linux-4.19.y 3f8a27f9e27b 0a2584dd .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/01/01 04:51 linux-4.19.y 3f8a27f9e27b e1768e9c .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2022/01/01 02:51 linux-4.19.y 3f8a27f9e27b e1768e9c .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/29 06:19 linux-4.19.y 3f8a27f9e27b 76c8cf06 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/19 01:46 linux-4.19.y 3f8a27f9e27b 44068e19 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/16 15:09 linux-4.19.y 3f8a27f9e27b 8dd6a5e3 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/14 13:47 linux-4.19.y 3f8a27f9e27b d018dd31 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/14 02:06 linux-4.19.y 3f8a27f9e27b 5d14b1ea .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/13 13:39 linux-4.19.y 3f8a27f9e27b 0304899b .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/09 21:44 linux-4.19.y 3f8a27f9e27b b54aa474 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/09 11:14 linux-4.19.y 3f8a27f9e27b a4a2a501 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/08 11:41 linux-4.19.y 3f8a27f9e27b a4a2a501 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/06 20:52 linux-4.19.y 3f8a27f9e27b 579a8754 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/06 07:06 linux-4.19.y 3f8a27f9e27b a617004c .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/05 18:28 linux-4.19.y 3f8a27f9e27b a617004c .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/05 15:54 linux-4.19.y 3f8a27f9e27b a617004c .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/05 11:22 linux-4.19.y 3f8a27f9e27b a617004c .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/12/01 15:58 linux-4.19.y 3f8a27f9e27b 5fa3eacc .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/11/29 05:08 linux-4.19.y 3f8a27f9e27b 63eeac02 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/11/28 20:00 linux-4.19.y 3f8a27f9e27b 63eeac02 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/11/28 10:05 linux-4.19.y 3f8a27f9e27b 63eeac02 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/11/28 00:23 linux-4.19.y 3f8a27f9e27b 63eeac02 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/11/27 10:07 linux-4.19.y 3f8a27f9e27b 63eeac02 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/11/25 14:58 linux-4.19.y 3f8a27f9e27b 545ab074 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/11/24 11:02 linux-4.19.y 3f8a27f9e27b 545ab074 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/11/23 06:46 linux-4.19.y 3f8a27f9e27b 545ab074 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/11/22 23:15 linux-4.19.y 3f8a27f9e27b 545ab074 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/11/15 17:27 linux-4.19.y 3f8a27f9e27b 75b04091 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/11/11 18:19 linux-4.19.y 3f8a27f9e27b 75b04091 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/06/29 05:32 linux-4.19.y eb575cd5d7f6 9d2ab5df .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/06/24 20:45 linux-4.19.y eb575cd5d7f6 0edbbe31 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/06/15 06:09 linux-4.19.y 9a2dc0e6c531 1ba81399 .config log report info kernel BUG in netdev_run_todo
ci2-linux-4-19 2021/06/11 02:08 linux-4.19.y 9a2dc0e6c531 1ba81399 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/06/06 02:22 linux-4.19.y 1722257b8ece 500c2339 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/06/05 06:48 linux-4.19.y 1722257b8ece 500c2339 .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/05/30 08:58 linux-4.19.y 6b7b0056defc 325a8dab .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/05/15 12:01 linux-4.19.y 3c8c23092588 93f844de .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/03/03 17:02 linux-4.19.y 2d19be4653f5 06ed56cd .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2021/02/23 15:02 linux-4.19.y 255b58a2b3af fcc6d71b .config log report info kernel BUG in validate_xmit_skb
ci2-linux-4-19 2020/12/28 23:30 linux-4.19.y 13d2ce42de8c 8259d56c .config log report info
ci2-linux-4-19 2020/12/11 13:28 linux-4.19.y 13d2ce42de8c ba24ffcd .config log report info