syzbot


general protection fault in nfc_alloc_send_skb
Status: upstream: reported C repro on 2022/01/05 14:25
Reported-by: syzbot+7f23bcddf626e0593a39@syzkaller.appspotmail.com
Fix commit: dded08927ca3 nfc: llcp: fix NULL error pointer dereference on sendmsg() after failed bind()
Patched on: [ci-qemu-upstream ci-qemu-upstream-386 ci-qemu2-arm32 ci-qemu2-arm64 ci-qemu2-arm64-compat ci-qemu2-arm64-mte ci-upstream-bpf-kasan-gce ci-upstream-gce-leak ci-upstream-kasan-gce ci-upstream-kasan-gce-386 ci-upstream-kasan-gce-root ci-upstream-kasan-gce-selinux-root ci-upstream-kasan-gce-smack-root ci-upstream-linux-next-kasan-gce-root ci-upstream-net-kasan-gce ci-upstream-net-this-kasan-gce ci2-upstream-kcsan-gce ci2-upstream-usb], missing on: [ci-qemu2-riscv64 ci-upstream-bpf-next-kasan-gce ci-upstream-kmsan-gce ci-upstream-kmsan-gce-386]
First crash: 25d, last: 25d

Cause bisection: introduced by (bisect log) :
commit c33b1cc62ac05c1dbb1cdafe2eb66da01c76ca8d
Author: Xiaoming Ni <nixiaoming@huawei.com>
Date: Thu Mar 25 03:51:10 2021 +0000

  nfc: fix refcount leak in llcp_sock_bind()

Crash: WARNING: refcount bug in nfc_llcp_local_put (log)
Repro: C syz .config
similar bugs (1):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.19 general protection fault in nfc_alloc_send_skb C 1 24d 24d 0/1 upstream: reported C repro on 2021/12/31 22:21
Patch testing requests:
Created Duration User Patch Repo Result
2022/01/16 11:42 11m hdanton@sina.com patch upstream OK
2022/01/15 11:54 11m krzysztof.kozlowski@canonical.com https://github.com/krzk/linux 0b15d8c51584646c5fcd3a58053f11ac3b5f2cda OK
2022/01/15 11:51 11m krzysztof.kozlowski@canonical.com https://github.com/krzk/linux 2e3adbe9c476cdfdc8da33ab83cf7a25715579f1 OK
2022/01/15 11:46 13m krzysztof.kozlowski@canonical.com https://github.com/krzk/linux 6dcaa73089529a86e92d901c5f740b6529531c33 OK
2022/01/07 13:07 9m krzysztof.kozlowski@canonical.com https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git ddec8ed2d4905d0967ce2ec432e440e582aa52c6 report log
2022/01/07 13:06 9m krzysztof.kozlowski@canonical.com https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git 3770333b3f8cb7c9110889853afaa49777c26ea7 report log

Sample crash report:

Crashes (2):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kasan-gce-selinux-root 2021/12/30 21:44 upstream eec4df26e24e 2e49f10d .config log report syz C general protection fault in nfc_alloc_send_skb
ci-upstream-kasan-gce-selinux-root 2021/12/30 19:41 upstream eec4df26e24e 2e49f10d .config log report info general protection fault in nfc_alloc_send_skb