syzbot


UBSAN: shift-out-of-bounds in cbq_dequeue
Status: fixed on 2021/03/10 01:48
Reported-by: syzbot+@syzkaller.appspotmail.com
Fix commit: e4bedf48aaa5 net_sched: reject silly cell_log in qdisc_get_rtab()
First crash: 366d, last: 322d

Cause bisection: introduced by (bisect log) [merge commit]:
commit 1c4c5e2528af0c803fb1171632074f4070229a75
Author: Linus Torvalds <torvalds@linux-foundation.org>
Date: Sat Sep 14 19:08:19 2019 +0000

  Merge tag 'mmc-v5.3-rc8' of git://git.kernel.org/pub/scm/linux/kernel/git/ulfh/mmc

Crash: general protection fault in batadv_iv_ogm_queue_add (log)
Repro: C syz .config

Sample crash report:

Crashes (27):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kasan-gce 2021/01/20 13:03 upstream 45dfb8a5659a d4f4eca5 .config log report syz C UBSAN: shift-out-of-bounds in cbq_dequeue
ci-upstream-linux-next-kasan-gce-root 2020/12/10 09:12 linux-next a9e26cb5f261 c090b4da .config log report syz C
ci-upstream-kasan-gce-selinux-root 2020/12/24 17:45 upstream 58cf05f597b0 c2c1d1dd .config log report info
ci-upstream-kasan-gce 2020/12/24 17:41 upstream 58cf05f597b0 c2c1d1dd .config log report info
ci-upstream-kasan-gce-selinux-root 2020/12/24 17:37 upstream 58cf05f597b0 c2c1d1dd .config log report info
ci-upstream-kasan-gce 2020/12/24 17:32 upstream 58cf05f597b0 c2c1d1dd .config log report info
ci-upstream-kasan-gce 2020/12/24 17:32 upstream 58cf05f597b0 c2c1d1dd .config log report info
ci-upstream-kasan-gce-selinux-root 2020/12/24 17:31 upstream 58cf05f597b0 c2c1d1dd .config log report info
ci-upstream-kasan-gce-selinux-root 2020/12/24 17:31 upstream 58cf05f597b0 c2c1d1dd .config log report info
ci-upstream-kasan-gce 2020/12/20 07:26 upstream 467f8165a2b0 04201c06 .config log report info
ci-upstream-kasan-gce-selinux-root 2020/12/20 07:25 upstream 467f8165a2b0 04201c06 .config log report info
ci-upstream-kasan-gce-386 2020/12/24 18:18 upstream 58cf05f597b0 c2c1d1dd .config log report info
ci-upstream-kasan-gce-386 2020/12/24 18:13 upstream 58cf05f597b0 c2c1d1dd .config log report info
ci-upstream-kasan-gce-386 2020/12/24 18:13 upstream 58cf05f597b0 c2c1d1dd .config log report info
ci-upstream-kasan-gce-386 2020/12/24 17:45 upstream 58cf05f597b0 c2c1d1dd .config log report info
ci-upstream-kasan-gce-386 2020/12/20 07:38 upstream 467f8165a2b0 04201c06 .config log report info
ci-upstream-net-this-kasan-gce 2020/12/24 17:32 net 1f45dc220667 c2c1d1dd .config log report info
ci-upstream-net-this-kasan-gce 2020/12/20 07:33 net fec6079b2eea 04201c06 .config log report info
ci-upstream-net-kasan-gce 2020/12/29 07:35 net-next 3db1a3fa9880 8259d56c .config log report info
ci-upstream-linux-next-kasan-gce-root 2020/12/20 07:25 linux-next 0d52778b8710 04201c06 .config log report info
ci-upstream-linux-next-kasan-gce-root 2020/12/14 05:40 linux-next 14240d4c5b25 b22a7ec3 .config log report info
ci-upstream-linux-next-kasan-gce-root 2020/12/12 18:15 linux-next 14240d4c5b25 bca53db9 .config log report info
ci-upstream-linux-next-kasan-gce-root 2020/12/12 18:15 linux-next 14240d4c5b25 bca53db9 .config log report info
ci-upstream-linux-next-kasan-gce-root 2020/12/11 07:57 linux-next 14240d4c5b25 f900b48c .config log report info
ci-upstream-linux-next-kasan-gce-root 2020/12/10 08:34 linux-next a9e26cb5f261 c090b4da .config log report info
ci-upstream-linux-next-kasan-gce-root 2020/12/07 15:39 linux-next 15ac8fdb7440 1190297f .config log report info
ci-upstream-linux-next-kasan-gce-root 2020/12/07 13:21 linux-next 15ac8fdb7440 1190297f .config log report info