syzbot


kernel BUG at net/core/skbuff.c:LINE! (2)

Status: fixed on 2018/01/29 03:39
Reported-by: syzbot+ed0838d0fa4c4f2b528e20286e6dc63effc7c14d@syzkaller.appspotmail.com
Fix commit: 02612bb05e51 pppoe: take ->needed_headroom of lower device into account on xmit
First crash: 1706d, last: 1616d
similar bugs (16):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-44 kernel BUG at net/core/skbuff.c:LINE! C 79 952d 1177d 0/2 public: reported C repro on 2019/04/11 08:44
linux-4.19 kernel BUG at net/core/skbuff.c:LINE! C unreliable 493 17d 1161d 0/1 upstream: reported C repro on 2019/04/27 20:12
android-54 kernel BUG in pfkey_send_acquire syz 32 503d 530d 0/2 upstream: reported syz repro on 2021/01/17 15:19
android-5-10 kernel BUG in add_grec C error 83 95d 169d 2/3 fixed on 2022/03/29 10:01
android-54 kernel BUG at net/core/skbuff.c:LINE! C 199 7d20h 901d 0/2 upstream: reported C repro on 2020/01/12 09:43
android-414 kernel BUG at net/core/skbuff.c:LINE! C 2743 940d 1178d 0/1 public: reported C repro on 2019/04/11 00:00
android-5-10 kernel BUG in add_grec (2) 359 4h02m 94d 0/3 premoderation: reported on 2022/03/29 11:58
upstream kernel BUG in netem_enqueue 2 22d 58d 21/22 internal: reported on 2022/05/04 17:12
android-5-10 kernel BUG in cdc_ncm_fill_tx_frame C error 40 188d 253d 1/3 fixed on 2021/12/29 12:20
upstream kernel BUG at net/core/skbuff.c:LINE! (3) C done 4399 494d 1611d 21/22 fixed on 2021/03/10 01:48
upstream kernel BUG at net/core/skbuff.c:LINE! 5 1711d 1782d 3/22 fixed on 2017/10/27 10:10
linux-4.19 kernel BUG in pfkey_send_acquire C done 56 501d 530d 1/1 fixed on 2021/03/18 08:30
linux-4.14 kernel BUG at net/core/skbuff.c:LINE! C 2871 3h08m 1176d 0/1 upstream: reported C repro on 2019/04/12 15:43
upstream kernel BUG in llc_sap_action_send_xid_c C error 61 234d 448d 22/22 fixed on 2021/11/10 00:50
upstream kernel BUG in pskb_expand_head C done 249 20m 228d 21/22 upstream: reported C repro on 2021/11/15 08:38
android-49 kernel BUG at net/core/skbuff.c:LINE! C 391 941d 1177d 0/3 public: reported C repro on 2019/04/12 00:00

Sample crash report:
skbuff: skb_under_panic: text:000000000470095b len:82 put:24 head:00000000f453c8df data:000000007cc2256c tail:0x3a end:0xc0 dev:gre0
------------[ cut here ]------------
kernel BUG at net/core/skbuff.c:104!
invalid opcode: 0000 [#1] SMP KASAN
Dumping ftrace buffer:
   (ftrace buffer empty)
Modules linked in:
CPU: 0 PID: 3648 Comm: syzkaller888153 Not tainted 4.15.0-rc8+ #263
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:skb_panic+0x162/0x1f0 net/core/skbuff.c:100
RSP: 0018:ffff8801bc95f840 EFLAGS: 00010282
RAX: 0000000000000084 RBX: ffff8801d4c40800 RCX: 0000000000000000
RDX: 0000000000000084 RSI: 1ffff1003792bec8 RDI: ffffed003792befc
RBP: ffff8801bc95f8a8 R08: 1ffff1003792be8a R09: 0000000000000000
R10: 0000000000000008 R11: 0000000000000000 R12: ffffffff861f8fe0
R13: ffffffff84a31e3d R14: 0000000000000018 R15: ffff8801d31ae0c0
FS:  000000000251d880(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020fa3000 CR3: 00000001d94ef006 CR4: 00000000001606f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 skb_under_panic net/core/skbuff.c:114 [inline]
 skb_push+0xce/0xf0 net/core/skbuff.c:1714
 ipgre_header+0x6d/0x4e0 net/ipv4/ip_gre.c:877
 dev_hard_header include/linux/netdevice.h:2721 [inline]
 pppoe_sendmsg+0x58e/0x8b0 drivers/net/ppp/pppoe.c:890
 sock_sendmsg_nosec net/socket.c:638 [inline]
 sock_sendmsg+0xca/0x110 net/socket.c:648
 sock_write_iter+0x31a/0x5d0 net/socket.c:917
 call_write_iter include/linux/fs.h:1772 [inline]
 do_iter_readv_writev+0x525/0x7f0 fs/read_write.c:653
 do_iter_write+0x154/0x540 fs/read_write.c:932
 vfs_writev+0x18a/0x340 fs/read_write.c:977
 do_writev+0xfc/0x2a0 fs/read_write.c:1012
 SYSC_writev fs/read_write.c:1085 [inline]
 SyS_writev+0x27/0x30 fs/read_write.c:1082
 entry_SYSCALL_64_fastpath+0x29/0xa0
RIP: 0033:0x445109
RSP: 002b:00007fff3b81d8d8 EFLAGS: 00000217 ORIG_RAX: 0000000000000014
RAX: ffffffffffffffda RBX: 00000000004a6952 RCX: 0000000000445109
RDX: 0000000000000006 RSI: 0000000020935fa0 RDI: 0000000000000004
RBP: 00007fff3b81d9d8 R08: 0000000020ae0000 R09: 0000000020ae0000
R10: 0000000020ae0000 R11: 0000000000000217 R12: 00007fff3b81d9d8
R13: 0000000000402610 R14: 0000000000000000 R15: 0000000000000000
Code: 04 01 84 c0 74 04 3c 03 7e 23 8b 8b 80 00 00 00 41 57 48 c7 c7 a0 88 1f 86 52 56 4c 89 ea 41 50 4c 89 e6 45 89 f0 e8 b6 bd 28 fd <0f> 0b 4c 89 4d b8 4c 89 45 c0 48 89 75 c8 48 89 55 d0 e8 f7 09 
RIP: skb_panic+0x162/0x1f0 net/core/skbuff.c:100 RSP: ffff8801bc95f840
---[ end trace 0b1fd34e17500035 ]---

Crashes (562):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kasan-gce 2018/01/15 21:32 upstream a8750ddca918 e17f4a5d .config log report syz C
ci-upstream-kasan-gce 2018/01/15 21:19 upstream a8750ddca918 e17f4a5d .config log report syz C
ci-upstream-kasan-gce 2018/01/15 20:39 upstream a8750ddca918 e17f4a5d .config log report syz C
ci-upstream-kasan-gce-386 2018/01/15 21:31 upstream a8750ddca918 e17f4a5d .config log report syz C
ci-upstream-kasan-gce-386 2018/01/15 21:17 upstream a8750ddca918 e17f4a5d .config log report syz C
ci-upstream-kasan-gce-386 2018/01/15 20:39 upstream a8750ddca918 e17f4a5d .config log report syz C
ci-upstream-net-kasan-gce 2018/01/15 21:31 net-next 594831a8aba3 e17f4a5d .config log report syz C
ci-upstream-net-kasan-gce 2018/01/15 21:04 net-next 594831a8aba3 e17f4a5d .config log report syz C
ci-upstream-net-kasan-gce 2018/01/15 20:49 net-next 594831a8aba3 e17f4a5d .config log report syz C
ci-upstream-mmots-kasan-gce 2018/01/15 22:06 mmots ce3c209f6733 e17f4a5d .config log report syz C
ci-upstream-mmots-kasan-gce 2018/01/15 21:55 mmots ce3c209f6733 e17f4a5d .config log report syz C
ci-upstream-next-kasan-gce 2018/01/15 21:35 linux-next b625c1ff8227 e17f4a5d .config log report syz C
ci-upstream-next-kasan-gce 2018/01/15 21:22 linux-next b625c1ff8227 e17f4a5d .config log report syz C
ci-upstream-mmots-kasan-gce 2018/01/15 20:39 mmots ce3c209f6733 e17f4a5d .config log report syz C
ci-upstream-next-kasan-gce 2018/01/15 20:21 linux-next b625c1ff8227 e17f4a5d .config log report syz C
ci-upstream-kasan-gce 2017/12/09 08:41 upstream 3625de4b2872 5ad0ce95 .config log report syz
ci-upstream-kasan-gce-386 2017/12/08 08:45 upstream 968edbd93c0c 5d643f8e .config log report syz
ci-upstream-net-kasan-gce 2017/12/08 08:42 net-next 66c5c5b56682 5d643f8e .config log report syz
ci-upstream-next-kasan-gce 2017/12/09 23:50 linux-next ad4dac17f9d5 5ad0ce95 .config log report syz
ci-upstream-mmots-kasan-gce 2017/12/08 08:15 mmots 82bcf1def3b5 5d643f8e .config log report syz
ci-upstream-kasan-gce 2018/01/24 00:25 upstream 1995266727fa a5b7566c .config log report
ci-upstream-kasan-gce 2018/01/23 22:46 upstream 1995266727fa a5b7566c .config log report
ci-upstream-kasan-gce 2018/01/23 13:22 upstream 1995266727fa a5b7566c .config log report
ci-upstream-kasan-gce 2018/01/23 04:21 upstream a0ec1ded22e6 228e3d95 .config log report
ci-upstream-kasan-gce 2018/01/21 22:55 upstream d517bb79f499 fbbdcd92 .config log report
ci-upstream-kasan-gce 2018/01/21 00:09 upstream 24b61240471a fbbdcd92 .config log report
ci-upstream-kasan-gce 2018/01/19 21:06 upstream ec835f8104a2 fbbdcd92 .config log report
ci-upstream-kasan-gce 2018/01/19 10:16 upstream dda3e15231b3 161c1d64 .config log report
ci-upstream-kasan-gce 2018/01/19 09:12 upstream dda3e15231b3 161c1d64 .config log report
ci-upstream-kasan-gce 2018/01/18 13:56 upstream 1d966eb4d632 56cc113a .config log report
ci-upstream-kasan-gce 2018/01/18 11:08 upstream 1d966eb4d632 56cc113a .config log report
ci-upstream-kasan-gce 2018/01/18 10:33 upstream 1d966eb4d632 56cc113a .config log report
ci-upstream-kasan-gce 2018/01/17 22:19 upstream 88dc7fca1800 b8970f31 .config log report
ci-upstream-kasan-gce 2018/01/17 12:33 upstream 8cbab92dff77 a46e5318 .config log report
ci-upstream-kasan-gce 2018/01/17 07:12 upstream 41aa5e5d712b a46e5318 .config log report
ci-upstream-kasan-gce 2018/01/17 03:01 upstream 41aa5e5d712b a46e5318 .config log report
ci-upstream-kasan-gce-386 2018/01/27 15:11 upstream c4e0ca7fa241 1d18b112 .config log report
ci-upstream-kasan-gce-386 2018/01/24 23:01 upstream 5132ede0fe80 866f1102 .config log report
ci-upstream-kasan-gce-386 2018/01/24 02:34 upstream 1f07476ec143 a5b7566c .config log report
ci-upstream-kasan-gce-386 2018/01/20 08:23 upstream ec835f8104a2 fbbdcd92 .config log report
ci-upstream-kasan-gce-386 2018/01/19 03:14 upstream dda3e15231b3 161c1d64 .config log report
ci-upstream-kasan-gce-386 2018/01/18 11:17 upstream 1d966eb4d632 56cc113a .config log report
ci-upstream-kasan-gce-386 2018/01/17 23:09 upstream 88dc7fca1800 b8970f31 .config log report
ci-upstream-kasan-gce-386 2018/01/17 04:52 upstream 41aa5e5d712b a46e5318 .config log report
ci-upstream-net-kasan-gce 2018/01/24 17:54 net-next 43df215d99e6 a5b7566c .config log report
ci-upstream-net-kasan-gce 2018/01/24 17:50 net-next 43df215d99e6 a5b7566c .config log report
ci-upstream-net-kasan-gce 2018/01/24 15:42 net-next 43df215d99e6 a5b7566c .config log report
ci-upstream-net-kasan-gce 2018/01/24 13:44 net-next 43df215d99e6 a5b7566c .config log report
ci-upstream-net-kasan-gce 2018/01/24 07:55 net-next 43df215d99e6 a5b7566c .config log report
ci-upstream-net-kasan-gce 2018/01/24 07:54 net-next 43df215d99e6 a5b7566c .config log report
ci-upstream-net-kasan-gce 2018/01/24 06:39 net-next 43df215d99e6 a5b7566c .config log report
ci-upstream-net-kasan-gce 2018/01/24 06:23 net-next 43df215d99e6 a5b7566c .config log report
ci-upstream-net-kasan-gce 2018/01/24 06:20 net-next 43df215d99e6 a5b7566c .config log report
ci-upstream-net-kasan-gce 2018/01/24 04:32 net-next e71494ae68d2 a5b7566c .config log report
ci-upstream-net-kasan-gce 2018/01/24 03:59 net-next e71494ae68d2 a5b7566c .config log report
ci-upstream-net-kasan-gce 2018/01/24 03:52 net-next e71494ae68d2 a5b7566c .config log report
ci-upstream-net-kasan-gce 2018/01/24 03:37 net-next e71494ae68d2 a5b7566c .config log report
ci-upstream-net-kasan-gce 2018/01/24 01:32 net-next e71494ae68d2 a5b7566c .config log report
ci-upstream-net-kasan-gce 2018/01/23 23:43 net-next e71494ae68d2 a5b7566c .config log report
ci-upstream-net-kasan-gce 2018/01/23 23:27 net-next e71494ae68d2 a5b7566c .config log report