syzbot


BUG: corrupted list in kobject_add_internal (3)
Status: upstream: reported C repro on 2021/06/22 18:44
Reported-by: syzbot+66264bf2fd0476be7e6c@syzkaller.appspotmail.com
Fix commit: 92fe24a7db75 Bluetooth: skip invalid hci_sync_conn_complete_evt
Patched on: [ci-qemu2-arm64 ci-qemu2-arm64-compat ci-qemu2-arm64-mte ci-upstream-bpf-kasan-gce ci-upstream-bpf-next-kasan-gce ci-upstream-gce-leak ci-upstream-kasan-gce ci-upstream-kasan-gce-386 ci-upstream-kasan-gce-root ci-upstream-kasan-gce-selinux-root ci-upstream-kasan-gce-smack-root ci-upstream-linux-next-kasan-gce-root ci-upstream-net-kasan-gce ci-upstream-net-this-kasan-gce ci2-upstream-kcsan-gce ci2-upstream-usb], missing on: [ci-qemu-upstream ci-qemu-upstream-386 ci-qemu2-arm32 ci-qemu2-riscv64 ci-upstream-kmsan-gce ci-upstream-kmsan-gce-386]
First crash: 95d, last: 52d

Cause bisection: the issue happens on the oldest tested release (bisect log)
Crash: general protection fault in klist_next (log)
Repro: C syz .config
similar bugs (4):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream BUG: corrupted list in kobject_add_internal (2) 1 254d 250d 0/22 auto-closed as invalid on 2021/05/10 16:34
linux-4.19 BUG: corrupted list in kobject_add_internal C 2 22d 269d 0/1 upstream: reported C repro on 2020/12/26 09:29
linux-4.14 BUG: corrupted list in kobject_add_internal 1 323d 323d 0/1 auto-closed as invalid on 2021/03/02 15:06
upstream BUG: corrupted list in kobject_add_internal C done done 9 347d 410d 17/22 fixed on 2020/11/16 12:12
Patch testing requests:
Created Duration User Patch Repo Result
2021/08/04 04:45 18m desmondcheongzx@gmail.com patch git://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth-next.git master OK
2021/07/19 13:14 19m desmondcheongzx@gmail.com patch upstream OK
2021/07/19 11:14 0m desmondcheongzx@gmail.com patch upstream error
2021/06/24 12:58 10m desmondcheongzx@gmail.com patch upstream report log

Sample crash report:

Crashes (2):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-linux-next-kasan-gce-root 2021/06/18 18:37 linux-next a1f92694393a aba2b2fb .config log report syz C BUG: corrupted list in kobject_add_internal
ci-upstream-linux-next-kasan-gce-root 2021/07/31 18:51 linux-next 8d4b477da1a8 6c236867 .config log report info BUG: corrupted list in kobject_add_internal