syzbot

 sign-in | mailing list | source | docs
🐞 Open [1078] 🐞 Fixed [2861] 🐞 Invalid [4889]

KASAN: use-after-free Write in hci_conn_del
Status: upstream: reported syz repro on 2020/08/04 15:45
Reported-by: syzbot+7b1677fecb5976b0a099@syzkaller.appspotmail.com
First crash: 168d, last: 29d

Cause bisection: introduced by (bisect log) :
commit 6a3c7f5c87854e948c3c234e5f5e745c7c553722
Author: Nikolay Borisov <nborisov@suse.com>
Date: Thu May 28 08:05:13 2020 +0000

  btrfs: don't balance btree inode pages from buffered write path

Crash: BUG: sleeping function called from invalid context in exc_page_fault (log)
Repro: syz .config
similar bugs (2):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.14 KASAN: use-after-free Write in hci_conn_del syz 2 13d 166d 0/1 upstream: reported syz repro on 2020/08/06 02:37
linux-4.19 KASAN: use-after-free Write in hci_conn_del syz 2 15d 168d 0/1 upstream: reported syz repro on 2020/08/04 00:48
Patch testing requests:
Created Duration User Patch Repo Result
2020/09/07 02:51 11m anant.thazhemadam@gmail.com https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git master report log
2020/09/07 02:50 12m anant.thazhemadam@gmail.com https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master report log

Sample crash report:

Fix bisection attempts:
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info
ci-upstream-kasan-gce-root 2020/12/21 05:03 upstream e37b12e4 ff51e522 .config log report syz
ci-upstream-kasan-gce-root 2020/11/13 05:45 upstream 585e5b17 ff51e522 .config log report syz
ci-upstream-kasan-gce-root 2020/10/14 02:32 upstream b5fc7a89 ff51e522 .config log report syz
ci-upstream-kasan-gce-root 2020/09/07 19:29 upstream f4d51dff ff51e522 .config log report syz
Crashes (3):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Maintainers
ci-upstream-kasan-gce-root 2020/08/08 10:32 upstream 5631c5e0 ff51e522 .config log report syz davem@davemloft.net, johan.hedberg@gmail.com, kuba@kernel.org, linux-bluetooth@vger.kernel.org, linux-kernel@vger.kernel.org, marcel@holtmann.org, netdev@vger.kernel.org
ci-upstream-kasan-gce-selinux-root 2020/08/04 06:25 upstream bcf87687 196277c4 .config log report syz davem@davemloft.net, johan.hedberg@gmail.com, kuba@kernel.org, linux-bluetooth@vger.kernel.org, linux-kernel@vger.kernel.org, marcel@holtmann.org, netdev@vger.kernel.org
ci-upstream-linux-next-kasan-gce-root 2020/08/08 00:54 linux-next 01830e6c cb436c69 .config log report syz davem@davemloft.net, johan.hedberg@gmail.com, kuba@kernel.org, linux-bluetooth@vger.kernel.org, linux-kernel@vger.kernel.org, marcel@holtmann.org, netdev@vger.kernel.org