syzbot

 sign-in | mailing list | source | docs
🐞 Open [988] Subsystems 🐞 Fixed [5236] 🐞 Invalid [12506] Missing Backports [83] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

BUG: unable to handle kernel access to user memory in sock_ioctl

Status: closed as dup on 2021/03/18 15:18
Subsystems: net
[Documentation on labels]
Reported-by: syzbot+c23c5421600e9b454849@syzkaller.appspotmail.com
First crash: 1141d, last: 1119d
Duplicate of
Title Repro Cause bisect Fix bisect Count Last Reported
BUG: unable to handle kernel access to user memory in schedule_tail kernel 21843 1119d 1141d
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] BUG: unable to handle kernel access to user memory in sock_ioctl 9 (10) 2021/03/18 15:54

Sample crash report:
Unable to handle kernel access to user memory without uaccess routines at virtual address 0000000020000640
Oops [#1]
Modules linked in:
CPU: 0 PID: 3852 Comm: syz-executor.1 Not tainted 5.12.0-rc5-syzkaller-00715-ga5e13c6df0e4 #0
Hardware name: riscv-virtio,qemu (DT)
epc : sock_ioctl+0x4c4/0x66c net/socket.c:1124
 ra : sock_ioctl+0x4c4/0x66c net/socket.c:1124
epc : ffffffe0020e60a2 ra : ffffffe0020e60a2 sp : ffffffe00cd4fda0
 gp : ffffffe004588b08 tp : ffffffe006212f80 t0 : 0000000000000000
 t1 : 0000000000000001 t2 : 000000001dcd6500 s0 : ffffffe00cd4fe30
 s1 : 0000000000040000 a0 : 0000000000000000 a1 : 0000000000000007
 a2 : 1ffffffc00c425f0 a3 : ffffffe002a94d2e a4 : 0000000000000000
 a5 : 0000000000000000 a6 : 0000000000f00000 a7 : ffffffe000084f3a
 s2 : 0000000000000000 s3 : 0000000000008902 s4 : 0000000020000640
 s5 : ffffffe00458c0d0 s6 : ffffffe00ce80fc0 s7 : ffffffe00c4b8000
 s8 : 0000000000008903 s9 : ffffffe00ce81080 s10: 0000000000000000
 s11: 0000000000020000 t3 : fd4b665270bb0f00 t4 : ffffffc4011d8f7a
 t5 : ffffffc4011d8f82 t6 : 0000000000040000
status: 0000000000000120 badaddr: 0000000020000640 cause: 000000000000000f
Call Trace:
[<ffffffe0020e60a2>] sock_ioctl+0x4c4/0x66c net/socket.c:1124
[<ffffffe00042239a>] vfs_ioctl fs/ioctl.c:48 [inline]
[<ffffffe00042239a>] __do_sys_ioctl fs/ioctl.c:753 [inline]
[<ffffffe00042239a>] sys_ioctl+0x5c2/0xd56 fs/ioctl.c:739
[<ffffffe000005572>] ret_from_syscall+0x0/0x2
---[ end trace 2c7e1af2c9dd0606 ]---

Crashes (155):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2021/04/02 04:03 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5e13c6df0e4 6a81331a .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/04/01 21:18 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5e13c6df0e4 6a81331a .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/04/01 19:00 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5e13c6df0e4 6a81331a .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/04/01 12:29 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5e13c6df0e4 6a81331a .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/04/01 11:20 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5e13c6df0e4 6a81331a .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/04/01 05:58 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5e13c6df0e4 6a81331a .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/04/01 02:19 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5e13c6df0e4 6a81331a .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/31 18:58 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5e13c6df0e4 6a81331a .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/31 17:33 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5e13c6df0e4 6a81331a .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/30 19:32 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5e13c6df0e4 6a81331a .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/30 17:31 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5e13c6df0e4 6a81331a .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/30 16:12 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5e13c6df0e4 6a81331a .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/30 02:29 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 6a81331a .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/30 00:24 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 6a81331a .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/29 10:03 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e a8529b82 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/29 06:10 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e a8529b82 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/29 00:02 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e a8529b82 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/28 18:36 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e a8529b82 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/28 15:29 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e a8529b82 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/28 06:27 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e a8529b82 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/27 23:40 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e a8529b82 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/27 16:28 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e a8529b82 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/27 14:13 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e a8529b82 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/27 11:45 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e a8529b82 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/27 08:55 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e a8529b82 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/26 06:52 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 6a383ecf .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/25 23:00 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 6a383ecf .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/25 20:44 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 6a383ecf .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/25 18:24 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 6a383ecf .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/25 17:31 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 6a383ecf .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/25 01:01 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 607e3baf .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/24 12:42 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e e613994b .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/24 05:54 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e e613994b .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/23 15:07 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 8092f30d .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/23 01:07 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 8092f30d .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/22 16:38 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e bea32f74 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/21 22:58 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 4c9a64da .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/21 10:29 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 17810eae .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/21 08:56 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 17810eae .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/21 06:20 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 17810eae .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/21 03:35 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 17810eae .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/20 17:55 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 878fc870 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/20 13:57 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 878fc870 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/19 20:34 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes a5406a7ff56e 2af9d324 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
2021/03/10 18:09 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 0d7588ab9ef9 764067f3 .config console log report info ci-qemu2-riscv64 BUG: unable to handle kernel access to user memory in sock_ioctl
* Struck through repros no longer work on HEAD.