syzbot

 sign-in | mailing list | source | docs
🐞 Open [1034] 🐞 Fixed [3441] 🐞 Invalid [6720]

KASAN: use-after-free Read in v4l2_fh_open
Status: upstream: reported C repro on 2021/02/15 15:18
Reported-by: syzbot+b2391895514ed9ef4a8e@syzkaller.appspotmail.com
First crash: 258d, last: 13d

Cause bisection: introduced by (bisect log) [ignored commit]:
commit f2c2e717642c66f7fe7e5dd69b2e8ff5849f4d10
Author: Andrey Konovalov <andreyknvl@google.com>
Date: Mon Feb 24 16:13:03 2020 +0000

  usb: gadget: add raw-gadget interface

Crash: KASAN: use-after-free Read in v4l2_fh_init (log)
Repro: C syz .config
Patch testing requests:
Created Duration User Patch Repo Result
2021/05/07 18:26 12m igormtorrente@gmail.com https://github.com/Igortorrente/linux.git v4l2-open-use-after-free error
2021/05/03 14:57 33m igormtorrente@gmail.com https://github.com/Igortorrente/linux.git v4l2-open-use-after-free error
2021/04/07 17:19 35m igormtorrente@gmail.com https://github.com/Igortorrente/linux.git v4l2-open-use-after-free OK
2021/03/19 22:13 36m igormtorrente@gmail.com https://github.com/Igortorrente/linux.git v4l2-open-use-after-free report log
2021/03/19 13:20 16m igormtorrente@gmail.com https://github.com/Igortorrente/linux.git v4l2-open-use-after-free report log
2021/03/10 14:17 12m igormtorrente@gmail.com https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/ master report log

Sample crash report:

Fix bisection attempts:
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kasan-gce-smack-root 2021/10/14 15:35 upstream 26d657410983 1ba81399 .config log report syz C
ci-upstream-kasan-gce-smack-root 2021/09/14 14:17 upstream d0ee23f9d78b 1ba81399 .config log report syz C
ci-upstream-kasan-gce-smack-root 2021/08/15 13:42 upstream 0aa78d17099b 1ba81399 .config log report syz C
ci-upstream-kasan-gce-smack-root 2021/07/14 07:32 upstream 40226a3d96ef 1ba81399 .config log report syz C
ci-upstream-kasan-gce-smack-root 2021/05/13 04:36 upstream c06a2ba62fc4 a52ee10a .config log report syz C
ci-upstream-kasan-gce-smack-root 2021/04/12 15:55 upstream d434405aaab7 a52ee10a .config log report syz C
ci-upstream-kasan-gce-smack-root 2021/03/13 15:32 upstream f296bfd5cd04 a52ee10a .config log report syz C
Crashes (3):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kasan-gce-smack-root 2021/06/14 07:09 upstream e4e453434a19 1ba81399 .config log report syz C KASAN: use-after-free Read in v4l2_fh_open
ci-upstream-kasan-gce-smack-root 2021/06/04 08:21 upstream f88cd3fb9df2 0740de69 .config log report syz C KASAN: use-after-free Read in v4l2_fh_open
ci-upstream-kasan-gce-smack-root 2021/02/11 15:12 upstream 291009f656e8 a52ee10a .config log report syz C KASAN: use-after-free Read in v4l2_fh_open