syzbot


KASAN: slab-out-of-bounds Read in squashfs_export_iget
Status: fixed on 2021/03/10 01:48
Reported-by: syzbot+04419e3ff19d2970ea28@syzkaller.appspotmail.com
Fix commit: eabac19e40c0 squashfs: add more sanity checks in inode lookup
First crash: 360d, last: 341d

Cause bisection: introduced by (bisect log) :
commit 555f63cd88404e122e8d31d0f925e430bd3f32d9
Author: Alexander Potapenko <glider@google.com>
Date: Fri Dec 4 03:19:29 2020 +0000

  mm, kfence: insert KFENCE hooks for SLUB

Crash: BUG: KFENCE: out-of-bounds in squashfs_export_iget (log)
Repro: C syz .config

Fix bisection: failed (bisect log)
similar bugs (2):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.19 KASAN: slab-out-of-bounds Read in squashfs_export_iget C done 5 307d 407d 1/1 fixed on 2021/03/02 19:53
linux-4.14 KASAN: slab-out-of-bounds Read in squashfs_export_iget C done 4 315d 419d 1/1 fixed on 2021/02/25 13:45

Sample crash report:

Crashes (3):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kasan-gce-root 2020/12/28 13:17 upstream 5c8fe583cce5 2242f77f .config log report syz C
ci-upstream-kasan-gce-selinux-root 2020/12/16 01:08 upstream 148842c98a24 97183ed7 .config log report syz C
ci-upstream-linux-next-kasan-gce-root 2020/12/09 02:35 linux-next a9e26cb5f261 a7f7f4a4 .config log report syz C