syzbot


INFO: trying to register non-static key in skb_queue_purge
Status: upstream: reported C repro on 2020/07/31 16:54
Reported-by: syzbot+99efc1c133eff186721a@syzkaller.appspotmail.com
First crash: 664d, last: 383d

Cause bisection: introduced by (bisect log) :
commit 65b27995a4ab8fc51b4adc6b4dcdca20f7a595bb
Author: Heiner Kallweit <hkallweit1@gmail.com>
Date: Mon Aug 12 21:52:19 2019 +0000

  net: phy: let phy_speed_down/up support speeds >1Gbps

Crash: KASAN: use-after-free Read in __queue_work (log)
Repro: C syz .config

Fix bisection: fixed by (bisect log) [no-op commit]:
commit 56a8d3fd1f342d10ee7b27e9ac0f4d00b5fbb91c
Author: Miquel Raynal <miquel.raynal@bootlin.com>
Date: Tue Apr 13 16:18:34 2021 +0000

  mtd: rawnand: cs553x: Fix external use of SW Hamming ECC helper


Sample crash report:
IPVS: ftp: loaded support on port[0] = 21
INFO: trying to register non-static key.
the code is fine but needs lockdep annotation.
turning off the locking correctness validator.
CPU: 1 PID: 6824 Comm: syz-executor971 Not tainted 5.9.0-rc4-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1d6/0x29e lib/dump_stack.c:118
 register_lock_class+0xf06/0x1520 kernel/locking/lockdep.c:893
 __lock_acquire+0xfd/0x2ae0 kernel/locking/lockdep.c:4305
 lock_acquire+0x140/0x6f0 kernel/locking/lockdep.c:5006
 __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]
 _raw_spin_lock_irqsave+0xaa/0xd0 kernel/locking/spinlock.c:159
 skb_dequeue net/core/skbuff.c:3040 [inline]
 skb_queue_purge+0x2e/0x1c0 net/core/skbuff.c:3078
 l2cap_conn_del+0x3de/0x650 net/bluetooth/l2cap_core.c:1890
 hci_disconn_cfm include/net/bluetooth/hci_core.h:1438 [inline]
 hci_conn_hash_flush+0x127/0x200 net/bluetooth/hci_conn.c:1557
 hci_dev_do_close+0xb7b/0x1040 net/bluetooth/hci_core.c:1770
 hci_unregister_dev+0x185/0x1590 net/bluetooth/hci_core.c:3790
 vhci_release+0x73/0xc0 drivers/bluetooth/hci_vhci.c:340
 __fput+0x34f/0x7b0 fs/file_table.c:281
 task_work_run+0x137/0x1c0 kernel/task_work.c:141
 exit_task_work include/linux/task_work.h:25 [inline]
 do_exit+0x5f3/0x1f20 kernel/exit.c:806
 do_group_exit+0x161/0x2d0 kernel/exit.c:903
 __do_sys_exit_group+0x13/0x20 kernel/exit.c:914
 __se_sys_exit_group+0x10/0x10 kernel/exit.c:912
 __x64_sys_exit_group+0x37/0x40 kernel/exit.c:912
 do_syscall_64+0x31/0x70 arch/x86/entry/common.c:46
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x445068
Code: Bad RIP value.
RSP: 002b:00007ffde54928f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000445068
RDX: 0000000000000001 RSI: 000000000000003c RDI: 0000000000000001

Crashes (4633):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kasan-gce-smack-root 2020/09/11 14:10 upstream 581cb3a26baf adfb8b4e .config log report syz C
ci-upstream-kasan-gce-smack-root 2020/08/28 07:03 upstream 15bc20c6af4c 816e0689 .config log report syz C
ci-upstream-kasan-gce-smack-root 2020/08/27 15:53 upstream 15bc20c6af4c 816e0689 .config log report syz C
ci-upstream-kasan-gce-smack-root 2020/08/26 00:29 upstream abb3438d69fb 344da168 .config log report syz C
ci-upstream-kasan-gce-smack-root 2020/08/24 07:19 upstream cb95712138ec cef5ae68 .config log report syz C
ci-upstream-kasan-gce-smack-root 2020/08/22 13:58 upstream f873db9acd3c 6436ce4b .config log report syz C
ci-upstream-kasan-gce-smack-root 2020/08/05 21:36 upstream 442489c21923 b7129355 .config log report syz C
ci-upstream-kasan-gce-smack-root 2020/08/04 11:42 upstream bcf876870b95 196277c4 .config log report syz C
ci-upstream-kasan-gce-smack-root 2020/07/31 12:01 upstream 83bdc7275e62 8df85ed9 .config log report syz C
ci-upstream-kasan-gce-smack-root 2020/07/31 11:40 upstream 83bdc7275e62 8df85ed9 .config log report syz C
ci-upstream-kasan-gce-smack-root 2020/07/31 11:20 upstream 83bdc7275e62 8df85ed9 .config log report syz C
ci-upstream-kasan-gce-smack-root 2021/03/23 10:58 upstream 84196390620a 8092f30d .config log report syz INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/02/19 03:54 upstream f40ddce88593 14052202 .config log report syz INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2020/12/05 23:55 upstream b3298500b23f 50503117 .config log report syz
ci-upstream-kasan-gce-smack-root 2020/08/09 01:52 upstream 449dc8c97089 f721e4a0 .config log report syz
ci-upstream-kasan-gce-smack-root 2020/08/04 07:47 upstream bcf876870b95 196277c4 .config log report syz
ci-upstream-kasan-gce-smack-root 2020/08/04 01:31 upstream bcf876870b95 196277c4 .config log report syz
ci-upstream-kasan-gce-smack-root 2021/05/08 16:06 upstream d2b6f8a17919 bc5434be .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/08 14:26 upstream d2b6f8a17919 bc5434be .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/08 13:18 upstream d2b6f8a17919 bc5434be .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/08 10:55 upstream d2b6f8a17919 bc5434be .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/08 07:01 upstream d2b6f8a17919 bc5434be .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/08 01:47 upstream d2b6f8a17919 bc5434be .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/08 00:47 upstream d2b6f8a17919 bc5434be .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/07 23:44 upstream d2b6f8a17919 bc5434be .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/07 18:38 upstream d2b6f8a17919 f6da8120 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/07 14:29 upstream d2b6f8a17919 f6da8120 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/07 13:29 upstream d2b6f8a17919 f6da8120 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/07 12:21 upstream d2b6f8a17919 f6da8120 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/07 11:18 upstream d2b6f8a17919 f6da8120 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/07 04:56 upstream d2b6f8a17919 06585184 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/07 02:43 upstream d2b6f8a17919 06585184 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/07 01:25 upstream d2b6f8a17919 06585184 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/06 23:51 upstream d2b6f8a17919 06585184 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/06 22:41 upstream d2b6f8a17919 06585184 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/06 20:29 upstream d2b6f8a17919 06585184 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/06 18:10 upstream d2b6f8a17919 06585184 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/06 17:02 upstream d2b6f8a17919 06585184 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/06 16:00 upstream d2b6f8a17919 06585184 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/06 05:18 upstream d2b6f8a17919 06c27ff5 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/05 22:25 upstream d2b6f8a17919 06c27ff5 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/05 19:18 upstream d2b6f8a17919 06c27ff5 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/05 11:07 upstream d2b6f8a17919 06c27ff5 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/05 09:39 upstream d2b6f8a17919 06c27ff5 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/05 06:49 upstream d2b6f8a17919 06c27ff5 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/05 05:45 upstream d2b6f8a17919 06c27ff5 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/05 04:10 upstream d2b6f8a17919 06c27ff5 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/05 02:30 upstream d2b6f8a17919 06c27ff5 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/05 01:25 upstream d2b6f8a17919 06c27ff5 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/05 00:06 upstream d2b6f8a17919 06c27ff5 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/04 18:42 upstream d2b6f8a17919 09efdd63 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/04 12:21 upstream d2b6f8a17919 09efdd63 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/04 09:45 upstream d2b6f8a17919 09efdd63 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/04 08:43 upstream d2b6f8a17919 09efdd63 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/04 07:27 upstream d2b6f8a17919 09efdd63 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/04 06:24 upstream d2b6f8a17919 09efdd63 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/04 03:21 upstream d2b6f8a17919 ad61f371 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/04 03:20 upstream d2b6f8a17919 ad61f371 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/04 00:26 upstream d2b6f8a17919 ad61f371 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/05/03 20:07 upstream d2b6f8a17919 ad61f371 .config log report info INFO: trying to register non-static key in skb_queue_purge
ci-upstream-kasan-gce-smack-root 2021/01/17 13:28 upstream 0da0a8a0a0e1 813be542 .config log report info
ci-upstream-kasan-gce-smack-root 2020/07/31 08:25 upstream 83bdc7275e62 8df85ed9 .config log report