syzbot

 sign-in | mailing list | source | docs
🐞 Open [712] 🐞 Fixed [297] 🐞 Invalid [838] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

general protection fault in syscall_trace_enter

Status: auto-closed as invalid on 2020/12/02 16:22
Reported-by: syzbot+74d8c863b6b621bf69c6@syzkaller.appspotmail.com
First crash: 1445d, last: 1358d

Sample crash report:
kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] PREEMPT SMP KASAN
CPU: 0 PID: 3718 Comm: systemd-udevd Not tainted 4.19.136-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:__read_once_size include/linux/compiler.h:193 [inline]
RIP: 0010:syscall_trace_enter+0xcf/0xd60 arch/x86/entry/common.c:80
Code: 47 2c 69 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <00> 00 00 00 00 85 fc 0a 00 00 4d 8b 6d 00 31 ff 45 89 ee 41 83 e6
RSP: 0018:ffff88808e2d7e30 EFLAGS: 00010a02
RAX: ffff88808e2cc1c0 RBX: ffff88808e2dd758 RCX: ffffffff810082ef
RDX: 1ffff11011c59838 RSI: ffffffff810082f9 RDI: 0000000000000005
RBP: 0000000040000002 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000005 R11: 0000000000000000 R12: 1ffff11011c5afca
R13: ffff88808e2cc1c0 R14: 0000000000000000 R15: 0000000000000000
FS:  00007fceb960e8c0(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020000280 CR3: 000000008e323000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 do_syscall_64+0x486/0x620 arch/x86/entry/common.c:283
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7fceb8481335
Code: 69 db 2b 00 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 f0 77 30 48 89 c7 48 89 d6 b8 06 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 03 f3 c3 90 48 8b 15 31 db 2b 00 f7 d8 64 89
RSP: 002b:00007ffd9ee22848 EFLAGS: 00000246 ORIG_RAX: 0000000000000006
RAX: ffffffffffffffda RBX: 000055c34d991940 RCX: 00007fceb8481335
RDX: 00007ffd9ee22880 RSI: 00007ffd9ee22880 RDI: 000055c34d990940
RBP: 00007ffd9ee22940 R08: 00007fceb8740178 R09: 0000000000001010
R10: 0000000000000020 R11: 0000000000000246 R12: 000055c34d990940
R13: 000055c34d990954 R14: 000055c34d9941bd R15: 000055c34d9941c4
Modules linked in:
---[ end trace bd62509d1a2df135 ]---
RIP: 0010:__read_once_size include/linux/compiler.h:193 [inline]
RIP: 0010:syscall_trace_enter+0xcf/0xd60 arch/x86/entry/common.c:80
Code: 47 2c 69 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <00> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
RSP: 0018:ffff88808e2d7e30 EFLAGS: 00010a02
RAX: ffff88808e2cc1c0 RBX: ffff88808e2dd758 RCX: ffffffff810082ef
RDX: 1ffff11011c59838 RSI: ffffffff810082f9 RDI: 0000000000000005
RBP: 0000000040000002 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000005 R11: 0000000000000000 R12: 1ffff11011c5afca
R13: ffff88808e2cc1c0 R14: 0000000000000000 R15: 0000000000000000
FS:  00007fceb960e8c0(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020000280 CR3: 000000008e323000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
kasan: CONFIG_KASAN_INLINE enabled
kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#2] PREEMPT SMP KASAN
CPU: 0 PID: 4380 Comm: syz-executor.1 Tainted: G      D           4.19.136-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:arch_local_irq_disable arch/x86/include/asm/paravirt.h:794 [inline]
RIP: 0010:exit_to_usermode_loop+0x192/0x2a0 arch/x86/entry/common.c:175
Code: 34 69 00 81 e3 00 08 00 00 31 ff 89 de e8 b6 35 69 00 85 db 0f 85 87 00 00 00 e8 39 34 69 00 48 c7 c0 50 5b d2 88 48 c1 e8 03 <80> 3c 28 00 0f 85 cb 00 00 00 48 83 3d 2c e0 d1 07 00 0f 84 96 00
RSP: 0018:ffff888052437f20 EFLAGS: 00010806
RAX: 1ffffffff11a4b6a RBX: 0000000000000000 RCX: ffffffff81007afa
RDX: 0000000000000000 RSI: ffffffff81007b07 RDI: 0000000000000005
RBP: ffff888052437f58 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000002
R13: 0000000000000002 R14: 0000000000000000 R15: 0000000000000000
FS:  0000000001bd5940(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b2c623000 CR3: 00000000a792d000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x416801
Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
RSP: 002b:00007fff2382e080 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000416801
RDX: 0000001b2c620000 RSI: 000000000000173d RDI: 0000000000000003
RBP: 0000000000000001 R08: 00000000f6b17741 R09: 0000000000000000
R10: 00007fff2382e170 R11: 0000000000000293 R12: 00000000007905a0
R13: 000000000008736d R14: ffffffffffffffff R15: 000000000078bf0c
Modules linked in:
---[ end trace bd62509d1a2df136 ]---
RIP: 0010:__read_once_size include/linux/compiler.h:193 [inline]
RIP: 0010:syscall_trace_enter+0xcf/0xd60 arch/x86/entry/common.c:80
Code: 47 2c 69 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <00> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
general protection fault: 0000 [#3] PREEMPT SMP KASAN
RSP: 0018:ffff88808e2d7e30 EFLAGS: 00010a02
CPU: 1 PID: 4384 Comm: modprobe Tainted: G      D           4.19.136-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RAX: ffff88808e2cc1c0 RBX: ffff88808e2dd758 RCX: ffffffff810082ef
RIP: 0010:arch_local_irq_disable arch/x86/include/asm/paravirt.h:794 [inline]
RIP: 0010:exit_to_usermode_loop+0x192/0x2a0 arch/x86/entry/common.c:175
RDX: 1ffff11011c59838 RSI: ffffffff810082f9 RDI: 0000000000000005
Code: 34 69 00 81 e3 00 08 00 00 31 ff 89 de e8 b6 35 69 00 85 db 0f 85 87 00 00 00 e8 39 34 69 00 48 c7 c0 50 5b d2 88 48 c1 e8 03 <80> 3c 28 00 0f 85 cb 00 00 00 48 83 3d 2c e0 d1 07 00 0f 84 96 00
RBP: 0000000040000002 R08: 0000000000000000 R09: 0000000000000000
RSP: 0018:ffff888042307f28 EFLAGS: 00010806
R10: 0000000000000005 R11: 0000000000000000 R12: 1ffff11011c5afca
RAX: 1ffffffff11a4b6a RBX: 0000000000000000 RCX: ffffffff81007afa
R13: ffff88808e2cc1c0 R14: 0000000000000000 R15: 0000000000000000
RDX: 0000000000000000 RSI: ffffffff81007b07 RDI: 0000000000000005
FS:  0000000001bd5940(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
RBP: 0000000000000002 R08: 0000000000400000 R09: 0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
R10: 0000000000000005 R11: 000000006666abc2 R12: ffff888042307f58
CR2: 0000001b2c623000 CR3: 00000000a792d000 CR4: 00000000001406f0
R13: 0000000000000002 R14: 0000000000000000 R15: 0000000000000000
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
FS:  0000000000000000(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033

Crashes (2):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2020/08/04 16:21 linux-4.19.y 13af6c74b14a 80a06902 .config console log report ci2-linux-4-19
2020/05/10 02:44 linux-4.19.y 84920cc7fbe1 8742a2b9 .config console log report ci2-linux-4-19
* Struck through repros no longer work on HEAD.