syzbot


kernel BUG at net/core/skbuff.c:LINE! (2)

Status: fixed on 2018/01/29 03:39
Subsystems: net
[Documentation on labels]
Reported-by: syzbot+ed0838d0fa4c4f2b528e20286e6dc63effc7c14d@syzkaller.appspotmail.com
Fix commit: 02612bb05e51 pppoe: take ->needed_headroom of lower device into account on xmit
First crash: 2342d, last: 2252d
Discussions (8)
Title Replies (including bot) Last reply
[PATCH 3.16 000/254] 3.16.55-rc1 review 261 (261) 2018/03/03 15:48
[PATCH 3.2 000/140] 3.2.100-rc1 review 142 (142) 2018/02/28 16:57
[PATCH 4.9 00/66] 4.9.79-stable review 72 (72) 2018/02/28 15:46
[PATCH 4.4 00/74] 4.4.114-stable review 90 (90) 2018/02/19 20:06
[PATCH 3.18 00/52] 3.18.93-stable review 62 (62) 2018/01/31 08:52
[PATCH 4.14 00/71] 4.14.16-stable review 77 (77) 2018/01/30 14:52
[PATCH net] pppoe: take ->needed_headroom of lower device into account on xmit 3 (3) 2018/01/24 00:46
kernel BUG at net/core/skbuff.c:LINE! (2) 14 (15) 2018/01/19 18:02
Similar bugs (16)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-44 kernel BUG at net/core/skbuff.c:LINE! C 79 1587d 1813d 0/2 public: reported C repro on 2019/04/11 08:44
linux-4.19 kernel BUG at net/core/skbuff.c:LINE! C unreliable 494 577d 1796d 0/1 upstream: reported C repro on 2019/04/27 20:12
android-54 kernel BUG in pfkey_send_acquire C 278 501d 1166d 0/2 auto-obsoleted due to no activity on 2023/04/19 14:24
android-5-10 kernel BUG in add_grec C error 83 731d 804d 2/2 fixed on 2022/03/29 10:01
android-54 kernel BUG at net/core/skbuff.c:LINE! C 267 317d 1537d 0/2 auto-obsoleted due to no activity on 2023/08/22 15:17
android-414 kernel BUG at net/core/skbuff.c:LINE! C 2743 1576d 1813d 0/1 public: reported C repro on 2019/04/11 00:00
android-5-10 kernel BUG in add_grec (2) C error inconclusive 1039 491d 491d 2/2 fixed on 2023/02/24 12:10
upstream kernel BUG in netem_enqueue net 9 469d 694d 22/26 fixed on 2023/02/24 13:50
android-5-10 kernel BUG in cdc_ncm_fill_tx_frame C error 40 823d 888d 1/2 fixed on 2021/12/29 12:20
upstream kernel BUG at net/core/skbuff.c:LINE! (3) C done 4399 1130d 2246d 19/26 fixed on 2021/03/10 01:48
upstream kernel BUG at net/core/skbuff.c:LINE! sctp 5 2347d 2417d 3/26 fixed on 2017/10/27 10:10
linux-4.19 kernel BUG in pfkey_send_acquire C done 56 1136d 1166d 1/1 fixed on 2021/03/18 08:30
linux-4.14 kernel BUG at net/core/skbuff.c:LINE! C 3066 392d 1812d 0/1 upstream: reported C repro on 2019/04/12 15:43
upstream kernel BUG in llc_sap_action_send_xid_c net C error 61 870d 1083d 20/26 fixed on 2021/11/10 00:50
upstream kernel BUG in pskb_expand_head net C done 1600 413d 864d 22/26 fixed on 2023/02/25 08:02
android-49 kernel BUG at net/core/skbuff.c:LINE! C 391 1576d 1812d 0/3 public: reported C repro on 2019/04/12 00:00

Sample crash report:
skbuff: skb_under_panic: text:000000000470095b len:82 put:24 head:00000000f453c8df data:000000007cc2256c tail:0x3a end:0xc0 dev:gre0
------------[ cut here ]------------
kernel BUG at net/core/skbuff.c:104!
invalid opcode: 0000 [#1] SMP KASAN
Dumping ftrace buffer:
   (ftrace buffer empty)
Modules linked in:
CPU: 0 PID: 3648 Comm: syzkaller888153 Not tainted 4.15.0-rc8+ #263
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:skb_panic+0x162/0x1f0 net/core/skbuff.c:100
RSP: 0018:ffff8801bc95f840 EFLAGS: 00010282
RAX: 0000000000000084 RBX: ffff8801d4c40800 RCX: 0000000000000000
RDX: 0000000000000084 RSI: 1ffff1003792bec8 RDI: ffffed003792befc
RBP: ffff8801bc95f8a8 R08: 1ffff1003792be8a R09: 0000000000000000
R10: 0000000000000008 R11: 0000000000000000 R12: ffffffff861f8fe0
R13: ffffffff84a31e3d R14: 0000000000000018 R15: ffff8801d31ae0c0
FS:  000000000251d880(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020fa3000 CR3: 00000001d94ef006 CR4: 00000000001606f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 skb_under_panic net/core/skbuff.c:114 [inline]
 skb_push+0xce/0xf0 net/core/skbuff.c:1714
 ipgre_header+0x6d/0x4e0 net/ipv4/ip_gre.c:877
 dev_hard_header include/linux/netdevice.h:2721 [inline]
 pppoe_sendmsg+0x58e/0x8b0 drivers/net/ppp/pppoe.c:890
 sock_sendmsg_nosec net/socket.c:638 [inline]
 sock_sendmsg+0xca/0x110 net/socket.c:648
 sock_write_iter+0x31a/0x5d0 net/socket.c:917
 call_write_iter include/linux/fs.h:1772 [inline]
 do_iter_readv_writev+0x525/0x7f0 fs/read_write.c:653
 do_iter_write+0x154/0x540 fs/read_write.c:932
 vfs_writev+0x18a/0x340 fs/read_write.c:977
 do_writev+0xfc/0x2a0 fs/read_write.c:1012
 SYSC_writev fs/read_write.c:1085 [inline]
 SyS_writev+0x27/0x30 fs/read_write.c:1082
 entry_SYSCALL_64_fastpath+0x29/0xa0
RIP: 0033:0x445109
RSP: 002b:00007fff3b81d8d8 EFLAGS: 00000217 ORIG_RAX: 0000000000000014
RAX: ffffffffffffffda RBX: 00000000004a6952 RCX: 0000000000445109
RDX: 0000000000000006 RSI: 0000000020935fa0 RDI: 0000000000000004
RBP: 00007fff3b81d9d8 R08: 0000000020ae0000 R09: 0000000020ae0000
R10: 0000000020ae0000 R11: 0000000000000217 R12: 00007fff3b81d9d8
R13: 0000000000402610 R14: 0000000000000000 R15: 0000000000000000
Code: 04 01 84 c0 74 04 3c 03 7e 23 8b 8b 80 00 00 00 41 57 48 c7 c7 a0 88 1f 86 52 56 4c 89 ea 41 50 4c 89 e6 45 89 f0 e8 b6 bd 28 fd <0f> 0b 4c 89 4d b8 4c 89 45 c0 48 89 75 c8 48 89 55 d0 e8 f7 09 
RIP: skb_panic+0x162/0x1f0 net/core/skbuff.c:100 RSP: ffff8801bc95f840
---[ end trace 0b1fd34e17500035 ]---

Crashes (562):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2018/01/15 21:32 upstream a8750ddca918 e17f4a5d .config console log report syz C ci-upstream-kasan-gce
2018/01/15 21:19 upstream a8750ddca918 e17f4a5d .config console log report syz C ci-upstream-kasan-gce
2018/01/15 20:39 upstream a8750ddca918 e17f4a5d .config console log report syz C ci-upstream-kasan-gce
2018/01/15 21:31 upstream a8750ddca918 e17f4a5d .config console log report syz C ci-upstream-kasan-gce-386
2018/01/15 21:17 upstream a8750ddca918 e17f4a5d .config console log report syz C ci-upstream-kasan-gce-386
2018/01/15 20:39 upstream a8750ddca918 e17f4a5d .config console log report syz C ci-upstream-kasan-gce-386
2018/01/15 21:31 net-next-old 594831a8aba3 e17f4a5d .config console log report syz C ci-upstream-net-kasan-gce
2018/01/15 21:04 net-next-old 594831a8aba3 e17f4a5d .config console log report syz C ci-upstream-net-kasan-gce
2018/01/15 20:49 net-next-old 594831a8aba3 e17f4a5d .config console log report syz C ci-upstream-net-kasan-gce
2018/01/15 22:06 mmots ce3c209f6733 e17f4a5d .config console log report syz C ci-upstream-mmots-kasan-gce
2018/01/15 21:55 mmots ce3c209f6733 e17f4a5d .config console log report syz C ci-upstream-mmots-kasan-gce
2018/01/15 21:35 linux-next b625c1ff8227 e17f4a5d .config console log report syz C ci-upstream-next-kasan-gce
2018/01/15 21:22 linux-next b625c1ff8227 e17f4a5d .config console log report syz C ci-upstream-next-kasan-gce
2018/01/15 20:39 mmots ce3c209f6733 e17f4a5d .config console log report syz C ci-upstream-mmots-kasan-gce
2018/01/15 20:21 linux-next b625c1ff8227 e17f4a5d .config console log report syz C ci-upstream-next-kasan-gce
2017/12/09 08:41 upstream 3625de4b2872 5ad0ce95 .config console log report syz ci-upstream-kasan-gce
2017/12/08 08:45 upstream 968edbd93c0c 5d643f8e .config console log report syz ci-upstream-kasan-gce-386
2017/12/08 08:42 net-next-old 66c5c5b56682 5d643f8e .config console log report syz ci-upstream-net-kasan-gce
2017/12/09 23:50 linux-next ad4dac17f9d5 5ad0ce95 .config console log report syz ci-upstream-next-kasan-gce
2017/12/08 08:15 mmots 82bcf1def3b5 5d643f8e .config console log report syz ci-upstream-mmots-kasan-gce
2018/01/24 00:25 upstream 1995266727fa a5b7566c .config console log report ci-upstream-kasan-gce
2018/01/23 22:46 upstream 1995266727fa a5b7566c .config console log report ci-upstream-kasan-gce
2018/01/23 13:22 upstream 1995266727fa a5b7566c .config console log report ci-upstream-kasan-gce
2018/01/23 04:21 upstream a0ec1ded22e6 228e3d95 .config console log report ci-upstream-kasan-gce
2018/01/21 22:55 upstream d517bb79f499 fbbdcd92 .config console log report ci-upstream-kasan-gce
2018/01/21 00:09 upstream 24b61240471a fbbdcd92 .config console log report ci-upstream-kasan-gce
2018/01/19 21:06 upstream ec835f8104a2 fbbdcd92 .config console log report ci-upstream-kasan-gce
2018/01/19 10:16 upstream dda3e15231b3 161c1d64 .config console log report ci-upstream-kasan-gce
2018/01/19 09:12 upstream dda3e15231b3 161c1d64 .config console log report ci-upstream-kasan-gce
2018/01/18 13:56 upstream 1d966eb4d632 56cc113a .config console log report ci-upstream-kasan-gce
2018/01/18 11:08 upstream 1d966eb4d632 56cc113a .config console log report ci-upstream-kasan-gce
2018/01/18 10:33 upstream 1d966eb4d632 56cc113a .config console log report ci-upstream-kasan-gce
2018/01/17 22:19 upstream 88dc7fca1800 b8970f31 .config console log report ci-upstream-kasan-gce
2018/01/17 12:33 upstream 8cbab92dff77 a46e5318 .config console log report ci-upstream-kasan-gce
2018/01/17 07:12 upstream 41aa5e5d712b a46e5318 .config console log report ci-upstream-kasan-gce
2018/01/17 03:01 upstream 41aa5e5d712b a46e5318 .config console log report ci-upstream-kasan-gce
2018/01/27 15:11 upstream c4e0ca7fa241 1d18b112 .config console log report ci-upstream-kasan-gce-386
2018/01/24 23:01 upstream 5132ede0fe80 866f1102 .config console log report ci-upstream-kasan-gce-386
2018/01/24 02:34 upstream 1f07476ec143 a5b7566c .config console log report ci-upstream-kasan-gce-386
2018/01/20 08:23 upstream ec835f8104a2 fbbdcd92 .config console log report ci-upstream-kasan-gce-386
2018/01/19 03:14 upstream dda3e15231b3 161c1d64 .config console log report ci-upstream-kasan-gce-386
2018/01/18 11:17 upstream 1d966eb4d632 56cc113a .config console log report ci-upstream-kasan-gce-386
2018/01/17 23:09 upstream 88dc7fca1800 b8970f31 .config console log report ci-upstream-kasan-gce-386
2018/01/17 04:52 upstream 41aa5e5d712b a46e5318 .config console log report ci-upstream-kasan-gce-386
2018/01/24 17:54 net-next-old 43df215d99e6 a5b7566c .config console log report ci-upstream-net-kasan-gce
2018/01/24 17:50 net-next-old 43df215d99e6 a5b7566c .config console log report ci-upstream-net-kasan-gce
2018/01/24 15:42 net-next-old 43df215d99e6 a5b7566c .config console log report ci-upstream-net-kasan-gce
2018/01/24 13:44 net-next-old 43df215d99e6 a5b7566c .config console log report ci-upstream-net-kasan-gce
2018/01/24 07:55 net-next-old 43df215d99e6 a5b7566c .config console log report ci-upstream-net-kasan-gce
2018/01/24 07:54 net-next-old 43df215d99e6 a5b7566c .config console log report ci-upstream-net-kasan-gce
2018/01/24 06:39 net-next-old 43df215d99e6 a5b7566c .config console log report ci-upstream-net-kasan-gce
2018/01/24 06:23 net-next-old 43df215d99e6 a5b7566c .config console log report ci-upstream-net-kasan-gce
2018/01/24 06:20 net-next-old 43df215d99e6 a5b7566c .config console log report ci-upstream-net-kasan-gce
2018/01/24 04:32 net-next-old e71494ae68d2 a5b7566c .config console log report ci-upstream-net-kasan-gce
2018/01/24 03:59 net-next-old e71494ae68d2 a5b7566c .config console log report ci-upstream-net-kasan-gce
2018/01/24 03:52 net-next-old e71494ae68d2 a5b7566c .config console log report ci-upstream-net-kasan-gce
2018/01/24 03:37 net-next-old e71494ae68d2 a5b7566c .config console log report ci-upstream-net-kasan-gce
2018/01/24 01:32 net-next-old e71494ae68d2 a5b7566c .config console log report ci-upstream-net-kasan-gce
2018/01/23 23:43 net-next-old e71494ae68d2 a5b7566c .config console log report ci-upstream-net-kasan-gce
2018/01/23 23:27 net-next-old e71494ae68d2 a5b7566c .config console log report ci-upstream-net-kasan-gce
* Struck through repros no longer work on HEAD.