syzbot


KASAN: use-after-free Read in ntfs_read_locked_inode
Status: upstream: reported C repro on 2018/04/05 04:02
Reported-by: syzbot+19b469021157c136116a@syzkaller.appspotmail.com
First crash: 1264d, last: 347d

Cause bisection: introduced by (bisect log) :
commit 910cd32e552ea09caa89cdbe328e468979b030dd
Author: Helge Deller <deller@gmx.de>
Date: Wed Mar 30 12:14:31 2016 +0000

  parisc: Fix and enable seccomp filter support

Crash: panic: runtime error: growslice: cap out of range (log)
Repro: C syz .config

Fix bisection: fixed by (bisect log) :
commit f7c6cb1d9728dea9d9f131ef57303d6821afb0f8
Author: Stanislav Fomichev <sdf@google.com>
Date: Wed Jul 29 00:31:03 2020 +0000

  bpf: Expose socket storage to BPF_PROG_TYPE_CGROUP_SOCK

similar bugs (2):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.19 KASAN: use-after-free Read in ntfs_read_locked_inode C done 2 210d 359d 1/1 fixed on 2021/03/24 11:10
linux-4.14 KASAN: use-after-free Read in ntfs_read_locked_inode C done 2 212d 364d 1/1 fixed on 2021/03/22 03:02
Patch testing requests:
Created Duration User Patch Repo Result
2021/03/21 16:53 4m alaaemadhossney.ae@gmail.com git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4 3e968c9f1401088abc9a19ae6ff571644d37a355 error

Sample crash report:

Crashes (4):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kasan-gce-selinux-root 2020/10/07 17:02 upstream c85fb28b6f99 1880b4a9 .config log report syz C
ci-upstream-kasan-gce-root 2020/10/04 22:28 upstream 22fbc037cd32 5ef9c291 .config log report syz C
ci-upstream-kasan-gce-smack-root 2020/09/26 12:48 upstream 7c7ec3226f5f 4a006f63 .config log report syz C
ci-upstream-kasan-gce-root 2018/04/05 01:42 upstream 3e968c9f1401 676bd07e .config log report syz C