syzbot

 sign-in | mailing list | source | docs
🐞 Open [196]
🐞 Fixed [42]
🐞 Invalid [470]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (11)

Status: closed as invalid on 2017/11/05 07:52
First crash: 2809d, last: 2808d
Similar bugs (11)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (10) 17 1 2810d 2810d 0/3 closed as invalid on 2017/11/03 07:08
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (4) 17 1 2821d 2821d 0/3 closed as invalid on 2017/10/22 18:19
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (7) 17 1 2819d 2819d 0/3 closed as invalid on 2017/10/25 06:19
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (12) 17 1 2792d 2792d 0/3 closed as invalid on 2017/11/21 08:19
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (3) 17 2 2822d 2824d 0/3 closed as invalid on 2017/10/22 12:19
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (6) 17 1 2819d 2819d 0/3 closed as invalid on 2017/10/24 19:19
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (9) 17 4 2814d 2816d 0/3 closed as invalid on 2017/10/30 13:35
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (8) 17 1 2818d 2818d 0/3 closed as invalid on 2017/10/26 15:19
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR 17 19 2826d 2845d 0/3 closed as invalid on 2017/10/18 09:51
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (2) 17 1 2824d 2824d 0/3 closed as invalid on 2017/10/19 10:51
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (5) 17 1 2820d 2820d 0/3 closed as invalid on 2017/10/24 05:19

Sample crash report:
   program syz-executor3 not setting count and/or reply_len properly
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=34067 sclass=netlink_route_socket pig=6802 comm=syz-executor0
==================================================================
BUG: KASAN: slab-out-of-bounds in __read_once_size include/linux/compiler.h:243 [inline] at addr ffff8801cf28afc0
BUG: KASAN: slab-out-of-bounds in list_empty include/linux/list.h:189 [inline] at addr ffff8801cf28afc0
BUG: KASAN: slab-out-of-bounds in sg_remove_request+0x103/0x120 drivers/scsi/sg.c:2120 at addr ffff8801cf28afc0

Crashes (2):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2017/11/04 12:02 https://android.googlesource.com/kernel/common android-4.9 dfe0a9bcfc3a d49979f7 .config console log report ci-android-49-kasan-gce
2017/11/03 19:54 https://android.googlesource.com/kernel/common android-4.9 dfe0a9bcfc3a d49979f7 .config console log report ci-android-49-kasan-gce
* Struck through repros no longer work on HEAD.