syzbot


KASAN: vmalloc-out-of-bounds Read in bpf_prog_put
Status: upstream: reported C repro on 2021/12/20 07:41
Reported-by: syzbot+bb73e71cf4b8fd376a4f@syzkaller.appspotmail.com
Fix commit: 218d747a4142 bpf, sockmap: Fix double bpf_prog_put on error case in map_link
Patched on: [ci-qemu-upstream ci-qemu-upstream-386 ci-qemu2-arm32 ci-qemu2-arm64 ci-qemu2-arm64-compat ci-qemu2-arm64-mte ci-upstream-bpf-kasan-gce ci-upstream-bpf-next-kasan-gce ci-upstream-gce-leak ci-upstream-kasan-gce ci-upstream-kasan-gce-386 ci-upstream-kasan-gce-root ci-upstream-kasan-gce-selinux-root ci-upstream-kasan-gce-smack-root ci-upstream-linux-next-kasan-gce-root ci-upstream-net-kasan-gce ci-upstream-net-this-kasan-gce ci2-upstream-kcsan-gce ci2-upstream-usb], missing on: [ci-qemu2-riscv64 ci-upstream-kmsan-gce ci-upstream-kmsan-gce-386]
First crash: 40d, last: 40d

Cause bisection: introduced by (bisect log) :
commit 38207a5e81230d6ffbdd51e5fa5681be5116dcae
Author: John Fastabend <john.fastabend@gmail.com>
Date: Fri Nov 19 18:14:17 2021 +0000

  bpf, sockmap: Attach map progs to psock early for feature probes

Crash: KASAN: vmalloc-out-of-bounds Read in __bpf_prog_put (log)
Repro: C syz .config
duplicates (1):
Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
KASAN: vmalloc-out-of-bounds Read in __bpf_prog_put C unreliable done 41 37d 54d 0/22 closed as dup on 2022/01/24 11:42
Patch testing requests:
Created Duration User Patch Repo Result
2022/01/04 21:16 12m john.fastabend@gmail.com patch bpf-next OK

Sample crash report:

Crashes (2):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kasan-gce-smack-root 2021/12/18 18:47 upstream 9eaa88c7036e 44068e19 .config log report syz C KASAN: vmalloc-out-of-bounds Read in bpf_prog_put
ci-upstream-kasan-gce-smack-root 2021/12/18 18:13 upstream 9eaa88c7036e 44068e19 .config log report info KASAN: vmalloc-out-of-bounds Read in bpf_prog_put