syzbot

 sign-in | mailing list | source | docs
🐞 Open [1163] 🐞 Fixed [4299] 🐞 Invalid [9644] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes

kernel panic: corrupted stack end in rtnl_newlink

Status: upstream: reported on 2022/03/14 08:17
Reported-by: syzbot+0600986d88e2d4d7ebb8@syzkaller.appspotmail.com
Fix commit: b81d591386c3 riscv: Increase stack size under KASAN
Patched on: [ci-qemu-upstream ci-qemu-upstream-386 ci-qemu2-arm32 ci-qemu2-arm64 ci-qemu2-arm64-compat ci-qemu2-arm64-mte ci-upstream-bpf-kasan-gce ci-upstream-bpf-next-kasan-gce ci-upstream-gce-arm64 ci-upstream-gce-leak ci-upstream-kasan-gce ci-upstream-kasan-gce-386 ci-upstream-kasan-gce-root ci-upstream-kasan-gce-selinux-root ci-upstream-kasan-gce-smack-root ci-upstream-kmsan-gce ci-upstream-kmsan-gce-386 ci-upstream-linux-next-kasan-gce-root ci-upstream-net-kasan-gce ci-upstream-net-this-kasan-gce ci2-upstream-fs ci2-upstream-kcsan-gce ci2-upstream-usb], missing on: [ci-qemu2-riscv64]
First crash: 324d, last: 3h32m
similar bugs (2):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.19 kernel panic: corrupted stack end in rtnl_newlink 1 552d 552d 0/1 auto-closed as invalid on 2021/11/21 12:28
upstream BUG: stack guard page was hit in rtnl_newlink 202 1d11h 559d 0/24 upstream: reported on 2021/07/17 13:42

Sample crash report:
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
Kernel panic - not syncing: corrupted stack end detected inside scheduler
CPU: 1 PID: 4101 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0
Hardware name: riscv-virtio,qemu (DT)
Call Trace:
[<ffffffff8000a228>] dump_backtrace+0x2e/0x3c arch/riscv/kernel/stacktrace.c:113
[<ffffffff831668cc>] show_stack+0x34/0x40 arch/riscv/kernel/stacktrace.c:119
[<ffffffff831756ba>] __dump_stack lib/dump_stack.c:88 [inline]
[<ffffffff831756ba>] dump_stack_lvl+0xe4/0x150 lib/dump_stack.c:106
[<ffffffff83175742>] dump_stack+0x1c/0x24 lib/dump_stack.c:113
[<ffffffff83166fa8>] panic+0x24a/0x634 kernel/panic.c:233
[<ffffffff831a688a>] schedule_debug kernel/sched/core.c:5541 [inline]
[<ffffffff831a688a>] schedule+0x0/0x14c kernel/sched/core.c:6187
[<ffffffff831a6b00>] preempt_schedule_common+0x4e/0xde kernel/sched/core.c:6462
[<ffffffff831a6bc4>] preempt_schedule+0x34/0x36 kernel/sched/core.c:6487
[<ffffffff80061140>] __local_bh_enable_ip+0x29e/0x2a4 kernel/softirq.c:390
[<ffffffff831afc6a>] __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline]
[<ffffffff831afc6a>] _raw_spin_unlock_bh+0x34/0x40 kernel/locking/spinlock.c:210
[<ffffffff82d7a604>] spin_unlock_bh include/linux/spinlock.h:394 [inline]
[<ffffffff82d7a604>] __fib6_clean_all+0xe2/0x266 net/ipv6/ip6_fib.c:2258
[<ffffffff82d821c8>] fib6_clean_all+0x2a/0x38 net/ipv6/ip6_fib.c:2267
[<ffffffff82d7442a>] rt6_sync_down_dev net/ipv6/route.c:4893 [inline]
[<ffffffff82d7442a>] rt6_disable_ip+0x7aa/0x7f6 net/ipv6/route.c:4898
[<ffffffff82d416a0>] addrconf_ifdown.isra.0+0xf6/0xe96 net/ipv6/addrconf.c:3726
[<ffffffff82d4dc68>] addrconf_notify+0xca/0x1360 net/ipv6/addrconf.c:3651
[<ffffffff800aac84>] notifier_call_chain+0xb8/0x188 kernel/notifier.c:84
[<ffffffff800aad7e>] raw_notifier_call_chain+0x2a/0x38 kernel/notifier.c:392
[<ffffffff8271d086>] call_netdevice_notifiers_info+0x9e/0x10c net/core/dev.c:1919
[<ffffffff82724afc>] call_netdevice_notifiers_extack net/core/dev.c:1931 [inline]
[<ffffffff82724afc>] call_netdevice_notifiers net/core/dev.c:1945 [inline]
[<ffffffff82724afc>] dev_close_many+0x228/0x340 net/core/dev.c:1520
[<ffffffff8272c8e2>] unregister_netdevice_many+0x328/0xf50 net/core/dev.c:10392
[<ffffffff8276abe2>] __rtnl_newlink+0xede/0xfa0 net/core/rtnetlink.c:3510
[<ffffffff8276ad04>] rtnl_newlink+0x60/0x8c net/core/rtnetlink.c:3527
[<ffffffff8276b46c>] rtnetlink_rcv_msg+0x338/0x9a0 net/core/rtnetlink.c:5592
[<ffffffff8296ded2>] netlink_rcv_skb+0xf8/0x2be net/netlink/af_netlink.c:2494
[<ffffffff827624f4>] rtnetlink_rcv+0x26/0x30 net/core/rtnetlink.c:5610
[<ffffffff8296cbcc>] netlink_unicast_kernel net/netlink/af_netlink.c:1317 [inline]
[<ffffffff8296cbcc>] netlink_unicast+0x40e/0x5fe net/netlink/af_netlink.c:1343
[<ffffffff8296d29c>] netlink_sendmsg+0x4e0/0x994 net/netlink/af_netlink.c:1919
[<ffffffff826d264e>] sock_sendmsg_nosec net/socket.c:705 [inline]
[<ffffffff826d264e>] sock_sendmsg+0xa0/0xc4 net/socket.c:725
[<ffffffff826d4dd4>] ____sys_sendmsg+0x46e/0x484 net/socket.c:2413
[<ffffffff826d8bca>] ___sys_sendmsg+0x16c/0x1f6 net/socket.c:2467
[<ffffffff826d8e78>] __sys_sendmsg+0xba/0x150 net/socket.c:2496
[<ffffffff826d8f3a>] __do_sys_sendmsg net/socket.c:2505 [inline]
[<ffffffff826d8f3a>] sys_sendmsg+0x2c/0x3a net/socket.c:2503
[<ffffffff80005716>] ret_from_syscall+0x0/0x2
SMP: stopping secondary CPUs
Rebooting in 86400 seconds..

Crashes (3183):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets Title
ci-qemu2-riscv64 2023/01/27 12:33 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/26 15:52 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/26 14:31 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/25 19:56 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/24 08:06 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/23 03:59 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/23 02:03 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/23 00:49 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/21 12:59 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/21 11:27 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/21 03:31 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/20 13:44 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/20 12:00 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/20 10:10 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/20 08:41 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/20 02:46 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/20 01:28 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/19 22:09 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/19 19:42 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/19 15:33 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/19 14:11 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/19 12:52 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 7374c4e5 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/19 10:27 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 66fca3ae .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/19 05:59 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 66fca3ae .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/19 03:31 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 66fca3ae .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/19 02:27 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 66fca3ae .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/19 01:24 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 66fca3ae .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/19 00:15 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 66fca3ae .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/18 15:53 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 4620c2d9 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/18 10:56 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 4620c2d9 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/18 06:59 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 42660d9e .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/18 05:53 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 42660d9e .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/18 03:52 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 42660d9e .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/18 02:38 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 42660d9e .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/18 01:35 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 42660d9e .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/18 00:17 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 42660d9e .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/17 21:54 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 42660d9e .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/17 20:45 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 42660d9e .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/17 17:40 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d aedf5331 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/17 11:29 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d aedf5331 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/16 20:21 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d a63719e7 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/15 15:33 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d a63719e7 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/15 06:39 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d a63719e7 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2023/01/15 02:11 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d a63719e7 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2022/03/14 07:10 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0966d385830d 9e8eaa75 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
ci-qemu2-riscv64 2022/03/08 16:34 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 74583f1b92cb 9e8eaa75 .config console log report info kernel panic: corrupted stack end in rtnl_newlink
* Struck through repros no longer work on HEAD.