syzbot

 sign-in | mailing list | source | docs
🐞 Open [980] Subsystems 🐞 Fixed [5216] 🐞 Invalid [12473] Missing Backports [82] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

general protection fault in string (2)

Status: fixed on 2018/08/28 17:48
Subsystems: net
[Documentation on labels]
Fix commit: a6bcfc89694e net: check extack._msg before print
First crash: 2086d, last: 2086d
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream general protection fault in string fs C 40 2311d 2330d 0/26 closed as dup on 2017/12/11 23:11

Sample crash report:
 ip6_append_data+0x1b4/0x2d0 net/ipv6/ip6_output.c:1589
 rawv6_sendmsg+0x11cb/0x4720 net/ipv6/raw.c:926
kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] SMP KASAN
CPU: 1 PID: 26383 Comm: syz-executor5 Not tainted 4.18.0-rc7+ #167
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:string+0x118/0x2d0 lib/vsprintf.c:604
Code: 89 fe e8 bb e0 cf fa 4d 85 ff 0f 84 83 01 00 00 e8 7d df cf fa 4c 89 f2 49 8d 5e 01 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <0f> b6 04 02 4c 89 f2 83 e2 07 38 d0 7f 08 84 c0 0f 85 90 01 00 00 
RSP: 0018:ffff88019d40f3b8 EFLAGS: 00010006
RAX: dffffc0000000000 RBX: 0000000000040001 RCX: ffffc9000905d000
RDX: 0000000000008000 RSI: ffffffff86ac3663 RDI: 0000000000000007
RBP: ffff88019d40f458 R08: ffff8801c961c540 R09: fffffbfff1315d70
R10: fffffbfff1315d71 R11: ffffffff898aeb88 R12: ffffffff898aeb89
R13: fffffffffffffffe R14: 0000000000040000 R15: ffffffffffffffff
FS:  00007fae1cf1a700(0000) GS:ffff8801db100000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fe1fb7777d0 CR3: 00000001c7a85000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 vsnprintf+0x48f/0x1b60 lib/vsprintf.c:2267
 vscnprintf+0x2d/0x80 lib/vsprintf.c:2370
 vprintk_emit+0x1ab/0xdf0 kernel/printk/printk.c:1853
 vprintk_default+0x28/0x30 kernel/printk/printk.c:1948
 vprintk_func+0x7a/0xe7 kernel/printk/printk_safe.c:382
 printk+0xa7/0xcf kernel/printk/printk.c:1981
 dev_set_mtu.cold.173+0x29/0x38 net/core/dev.c:7588
 dev_ifsioc+0x932/0xae0 net/core/dev_ioctl.c:244
 dev_ioctl+0x1b5/0xcc0 net/core/dev_ioctl.c:488
 sock_do_ioctl+0x1d3/0x3e0 net/socket.c:991
 sock_ioctl+0x30d/0x680 net/socket.c:1092
 vfs_ioctl fs/ioctl.c:46 [inline]
 file_ioctl fs/ioctl.c:500 [inline]
 do_vfs_ioctl+0x1de/0x1720 fs/ioctl.c:684
 ksys_ioctl+0xa9/0xd0 fs/ioctl.c:701
 __do_sys_ioctl fs/ioctl.c:708 [inline]
 __se_sys_ioctl fs/ioctl.c:706 [inline]
 __x64_sys_ioctl+0x73/0xb0 fs/ioctl.c:706
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x456b29
Code: fd b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fae1cf19c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007fae1cf1a6d4 RCX: 0000000000456b29
RDX: 0000000020000000 RSI: 0000000000008922 RDI: 0000000000000013
RBP: 00000000009300a0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
R13: 00000000004cf258 R14: 00000000004c592c R15: 0000000000000000
Modules linked in:
Dumping ftrace buffer:
---------------------------------
syz-exec-23828   1...2 198960767us : 0: }D
syz-exec-23828   1...2 198960773us : 0: }D
syz-exec-23828   1...2 198960775us : 0: }D
syz-exec-23828   1...2 198960778us : 0: }D
syz-exec-23828   1...2 198960780us : 0: }D
syz-exec-23828   1...2 198960783us : 0: }D
syz-exec-23828   1...2 198960786us : 0: }D
syz-exec-23828   1...2 198960789us : 0: }D
syz-exec-23828   1...2 198960791us : 0: }D
syz-exec-23828   1...2 198960794us : 0: }D
syz-exec-23828   1...2 198960797us : 0: }D
syz-exec-23828   1...2 198960800us : 0: }D
syz-exec-23828   1...2 198960802us : 0: }D
syz-exec-23828   1...2 198960805us : 0: }D
syz-exec-23828   1...2 198960808us : 0: }D
syz-exec-23828   1...2 198960810us : 0: }D
syz-exec-23828   1...2 198960812us : 0: }D
syz-exec-23828   1...2 198960816us : 0: }D
syz-exec-23828   1...2 198960818us : 0: }D
syz-exec-23828   1...2 198960820us : 0: }D
syz-exec-23828   1...2 198960823us : 0: }D
syz-exec-23828   1...2 198960826us : 0: }D
syz-exec-23828   1...2 198960828us : 0: }D
syz-exec-23828   1...2 198960831us : 0: }D
syz-exec-23828   1...2 198960834us : 0: }D
syz-exec-23828   1...2 198960836us : 0: }D
syz-exec-23828   1...2 198960839us : 0: }D
syz-exec-23828   1...2 198960841us : 0: }D
syz-exec-23828   1...2 198960845us : 0: }D
syz-exec-23828   1...2 198960847us : 0: }D
syz-exec-23828   1...2 198960850us : 0: }D
syz-exec-23828   1...2 198960852us : 0: }D
syz-exec-23828   1...2 198960855us : 0: }D
syz-exec-23828   1...2 198960858us : 0: }D
syz-exec-23828   1...2 198960860us : 0: }D
syz-exec-23828   1...2 198960863us : 0: }D
syz-exec-23828   1...2 198960866us : 0: }D
syz-exec-23828   1...2 198960868us : 0: }D
syz-exec-23828   1...2 198960871us : 0: }D
syz-exec-23828   1...2 198960874us : 0: }D
syz-exec-23828   1...2 198960876us : 0: }D
syz-exec-23828   1...2 198960879us : 0: }D
syz-exec-23828   1...2 198960881us : 0: }D
syz-exec-23828   1...2 198960885us : 0: }D
syz-exec-23828   1...2 198960887us : 0: }D
syz-exec-23828   1...2 198960890us : 0: }D
syz-exec-23828   1...2 198960893us : 0: }D
syz-exec-23828   1...2 198960895us : 0: }D
syz-exec-23828   1...2 198960898us : 0: }D
syz-exec-23828   1...2 198960900us : 0: }D
syz-exec-23828   1...2 198960904us : 0: }D
syz-exec-23828   1...2 198960906us : 0: }D
syz-exec-23828   1...2 198960909us : 0: }D
syz-exec-23828   1...2 198960912us : 0: }D
syz-exec-23828   1...2 198960915us : 0: }D
syz-exec-23828   1...2 198960918us : 0: }D
syz-exec-23828   1...2 198960920us : 0: }D
syz-exec-23828   1...2 198960923us : 0: }D
syz-exec-23828   1...2 198960926us : 0: }D
syz-exec-23828   1...2 198960928us : 0: }D
syz-exec-23828   1...2 198960930us : 0: }D
syz-exec-23828   1...2 198960933us : 0: }D
syz-exec-23828   1...2 198960935us : 0: }D
syz-exec-23828   1...2 198960938us : 0: }D
syz-exec-23828   1...2 198960940us : 0: }D
syz-exec-23828   1...2 198960943us : 0: }D
syz-exec-23828   1...2 198960945us : 0: }D
syz-exec-23828   1...2 198960948us : 0: }D
syz-exec-23828   1...2 198960950us : 0: }D
syz-exec-23828   1...2 198960953us : 0: }D
syz-exec-23828   1...2 198960955us : 0: }D
syz-exec-23828   1...2 198960957us : 0: }D
syz-exec-23828   1...2 198960960us : 0: }D
syz-exec-23828   1...2 198960962us : 0: }D
syz-exec-23828   1...2 198960965us : 0: }D
syz-exec-23828   1...2 198960967us : 0: }D
syz-exec-23828   1...2 198960970us : 0: }D
syz-exec-23828   1...2 198960972us : 0: }D
syz-exec-23828   1...2 198960974us : 0: }D
syz-exec-23828   1...2 198960977us : 0: }D
syz-exec-23828   1...2 198960979us : 0: }D
syz-exec-23828   1...2 198960982us : 0: }D
syz-exec-23828   1...2 198960984us : 0: }D
syz-exec-23828   1...2 198960987us : 0: }D
syz-exec-23828   1...2 198960989us : 0: }D
syz-exec-23828   1...2 198960991us : 0: }D
sy
Lost 1279 message(s)!

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2018/08/03 01:18 net-next-old 89b1698c93a9 5b7e23bb .config console log report ci-upstream-net-kasan-gce
* Struck through repros no longer work on HEAD.