syzbot


assert failed: vp->v_type == VREG

Status: fixed on 2019/03/07 20:48
Reported-by: syzbot+d66b1be08516a4d2d2b2@syzkaller.appspotmail.com
Fix commit: 21e56f354bb4 Change vn_openchk() to fail VNON and VBAD with error ENXIO.
First crash: 1858d, last: 1847d

Sample crash report:
login: [  38.7521678] panic: kernel diagnostic assertion "vp->v_type == VREG" failed: file "/syzkaller/managers/netbsd/kernel/sys/ufs/ufs/ufs_readwrite.c", line 292 
[  38.7521678] cpu0: Begin traceback...
[  38.7521678] vpanic() at netbsd:vpanic+0x214
[  38.7632748] _GLOBAL__sub_D_65535_0_cpu_configure() at netbsd:_GLOBAL__sub_D_65535_0_cpu_configure
[  38.7632748] ffs_write() at netbsd:ffs_write+0x6ba
[  38.7744002] VOP_WRITE() at netbsd:VOP_WRITE+0xc3
[  38.7855251] vn_write() at netbsd:vn_write+0x167
[  38.7855251] dofilewrite() at netbsd:dofilewrite+0x154
[  38.7974078] sys_write() at netbsd:sys_write+0x78
[  38.8087170] sys_syscall() at netbsd:sys_syscall+0xe2
[  38.8189043] syscall() at netbsd:syscall+0x30e
[  38.8189043] --- syscall (number 0) ---
[  38.8316164] 7c6915a3f4ca:
[  38.8316164] cpu0: End traceback...

[  38.8316164] dumping to dev 4,1 (offset=0, size=0): not possible
[  38.8316164] rebooting...
SeaBIOS (version 1.8.2-20190204_181744-google)
Total RAM Size = 0x00000001e0000000 = 7680 MiB
CPUs found: 2     Max CPUs supported: 2
found virtio-scsi at 0:3
virtio-scsi vendor='Google' product='PersistentDisk' rev='1' type=0 removable=0
virtio-scsi blksize=512 sectors=4194304 = 2048 MiB
drive 0x000f2a00: PCHS=0/0/0 translation=lba LCHS=520/128/63 s=4194304
Booting from Hard Disk 0...

>> NetBSD/x86 BIOS Boot, Revision 5.10 (Tue Jul 17 14:59:51 UTC 2018) (from NetBSD 8.0)
>> Memory: 639/3144640 k

     1. Boot normally
     2. Boot single user
     3. Disable ACPI
     4. Disable ACPI and SMP
     5. Drop to boot prompt

Crashes (139):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2019/02/26 00:28 netbsd 5eba7b0ad839 8022bafd console log report syz C ci2-netbsd
2019/03/07 19:59 netbsd 4c653981f172 8c085c5e console log report ci2-netbsd
2019/03/07 13:23 netbsd 4c653981f172 8c085c5e console log report ci2-netbsd
2019/03/07 08:02 netbsd b7158b3eb48d 18215b8d console log report ci2-netbsd
2019/03/07 05:16 netbsd b7158b3eb48d 18215b8d console log report ci2-netbsd
2019/03/07 02:55 netbsd b7158b3eb48d 18215b8d console log report ci2-netbsd
2019/03/06 20:36 netbsd b7158b3eb48d 18215b8d console log report ci2-netbsd
2019/03/06 19:34 netbsd 3ee0d5e1d4d6 05cf83bf console log report ci2-netbsd
2019/03/06 13:56 netbsd 3ee0d5e1d4d6 05cf83bf console log report ci2-netbsd
2019/03/06 12:21 netbsd 3ee0d5e1d4d6 05cf83bf console log report ci2-netbsd
2019/03/06 10:41 netbsd 3ee0d5e1d4d6 05cf83bf console log report ci2-netbsd
2019/03/06 08:13 netbsd 3ee0d5e1d4d6 05cf83bf console log report ci2-netbsd
2019/03/06 03:48 netbsd 6b47b08a7a66 16559f86 console log report ci2-netbsd
2019/03/06 01:48 netbsd 6b47b08a7a66 16559f86 console log report ci2-netbsd
2019/03/06 00:36 netbsd 6b47b08a7a66 16559f86 console log report ci2-netbsd
2019/03/05 23:23 netbsd 6b47b08a7a66 16559f86 console log report ci2-netbsd
2019/03/05 20:36 netbsd 6b47b08a7a66 16559f86 console log report ci2-netbsd
2019/03/05 19:34 netbsd 6b47b08a7a66 16559f86 console log report ci2-netbsd
2019/03/05 17:52 netbsd 465ec24dbfce bb91cf81 console log report ci2-netbsd
2019/03/05 15:16 netbsd 465ec24dbfce bb91cf81 console log report ci2-netbsd
2019/03/05 13:45 netbsd 465ec24dbfce bb91cf81 console log report ci2-netbsd
2019/03/05 08:05 netbsd 465ec24dbfce bb91cf81 console log report ci2-netbsd
2019/03/05 00:47 netbsd 8287ae29e052 7c693b52 console log report ci2-netbsd
2019/03/04 22:50 netbsd 8287ae29e052 7c693b52 console log report ci2-netbsd
2019/03/04 20:41 netbsd 8287ae29e052 7c693b52 console log report ci2-netbsd
2019/03/04 17:08 netbsd 308afed9d011 7c693b52 console log report ci2-netbsd
2019/03/04 14:43 netbsd 308afed9d011 7c693b52 console log report ci2-netbsd
2019/03/04 13:17 netbsd 308afed9d011 7c693b52 console log report ci2-netbsd
2019/03/04 11:44 netbsd 308afed9d011 7c693b52 console log report ci2-netbsd
2019/03/04 09:56 netbsd 308afed9d011 7c693b52 console log report ci2-netbsd
2019/03/04 06:57 netbsd 308afed9d011 7c693b52 console log report ci2-netbsd
2019/03/04 04:07 netbsd 5737ec294446 1c0e457a console log report ci2-netbsd
2019/03/04 01:45 netbsd 5737ec294446 1c0e457a console log report ci2-netbsd
2019/03/03 20:53 netbsd 9d908aba20c8 1c0e457a console log report ci2-netbsd
2019/03/03 17:52 netbsd 9d908aba20c8 1c0e457a console log report ci2-netbsd
2019/03/03 15:53 netbsd 9d908aba20c8 1c0e457a console log report ci2-netbsd
2019/03/03 13:39 netbsd 9d908aba20c8 1c0e457a console log report ci2-netbsd
2019/03/03 05:28 netbsd 9e59b38ee44e 1c0e457a console log report ci2-netbsd
2019/03/03 03:04 netbsd 9e59b38ee44e 1c0e457a console log report ci2-netbsd
2019/03/02 22:13 netbsd 9e59b38ee44e 1c0e457a console log report ci2-netbsd
2019/03/02 17:18 netbsd c0b28bf5531e 1c0e457a console log report ci2-netbsd
2019/03/02 15:53 netbsd c0b28bf5531e 1c0e457a console log report ci2-netbsd
2019/03/02 14:18 netbsd c0b28bf5531e 1c0e457a console log report ci2-netbsd
2019/03/02 10:45 netbsd c0b28bf5531e 1c0e457a console log report ci2-netbsd
2019/03/02 08:44 netbsd c0b28bf5531e 1c0e457a console log report ci2-netbsd
2019/03/02 07:35 netbsd c0b28bf5531e 1c0e457a console log report ci2-netbsd
2019/03/02 06:10 netbsd c0b28bf5531e 1c0e457a console log report ci2-netbsd
2019/03/02 03:07 netbsd 46b12d457099 68d9e495 console log report ci2-netbsd
2019/03/02 01:11 netbsd 46b12d457099 68d9e495 console log report ci2-netbsd
2019/03/01 23:36 netbsd 46b12d457099 68d9e495 console log report ci2-netbsd
2019/03/01 21:35 netbsd 46b12d457099 68d9e495 console log report ci2-netbsd
2019/02/24 22:37 netbsd 11eef5b2ee47 7a06e792 console log report ci2-netbsd
* Struck through repros no longer work on HEAD.