syzbot


riscv/fixes test error: BUG: unable to handle kernel NULL pointer dereference in corrupted

Status: closed as dup on 2021/09/14 11:08
Subsystems: fs
[Documentation on labels]
Reported-by: syzbot+12f4d5520532d623ba3c@syzkaller.appspotmail.com
First crash: 931d, last: 925d
Duplicate of
Title Repro Cause bisect Fix bisect Count Last Reported
BUG: unable to handle kernel paging request in tomoyo_encode2 tomoyo 1 941d 941d
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] riscv/fixes test error: BUG: unable to handle kernel NULL pointer dereference in corrupted 1 (2) 2021/09/14 11:08

Sample crash report:
Unable to handle kernel NULL pointer dereference at virtual address 0000000000000dc0
Oops [#1]
Modules linked in:
CPU: 0 PID: 3097 Comm: syz-executor.0 Not tainted 5.14.0-syzkaller #0
Hardware name: riscv-virtio,qemu (DT)
epc : slab_alloc_node mm/slub.c:2900 [inline]
epc : slab_alloc mm/slub.c:2967 [inline]
epc : __kmalloc+0xce/0x388 mm/slub.c:4111
 ra : slab_pre_alloc_hook mm/slab.h:494 [inline]
 ra : slab_alloc_node mm/slub.c:2880 [inline]
 ra : slab_alloc mm/slub.c:2967 [inline]
 ra : __kmalloc+0x6e/0x388 mm/slub.c:4111
epc : ffffffff803e3568 ra : ffffffff803e3508 sp : ffffffe008487730
 gp : ffffffff83f967d8 tp : ffffffe00831df00 t0 : 0000000000000000
 t1 : 0000000000000001 t2 : 0000000000000000 s0 : ffffffe0084877d0
 s1 : ffffffe005602000 a0 : 0000000000000000 a1 : ffffffe008487b1c
 a2 : 1ffffffff07aa51f a3 : 0000000000000dc0 a4 : 0000000000000000
 a5 : ffffffff82e4b390 a6 : 0000000000f00000 a7 : ffffffff8038ca52
 s2 : ffffffff83f96adc s3 : 0000000000000dc0 s4 : 0000000000000450
 s5 : ffffffff805a6e28 s6 : ffffffff83f9a0d0 s7 : 0000000000000000
 s8 : 0000000000000dc0 s9 : 0000000000000001 s10: 0000000000000000
 s11: 0000000000000000 t3 : 0bae864e963c2100 t4 : ffffffc401090ee5
 t5 : ffffffc401090ee6 t6 : ffffffe008487916
status: 0000000000000120 badaddr: 0000000000000dc0 cause: 000000000000000d
[<ffffffff803e3568>] slab_alloc_node mm/slub.c:2900 [inline]
[<ffffffff803e3568>] slab_alloc mm/slub.c:2967 [inline]
[<ffffffff803e3568>] __kmalloc+0xce/0x388 mm/slub.c:4111
[<ffffffff805a6e28>] kmalloc include/linux/slab.h:596 [inline]
[<ffffffff805a6e28>] kzalloc.constprop.0+0x24/0x2e include/linux/slab.h:721
[<ffffffff805a8822>] __register_sysctl_table+0x9c/0xc52 fs/proc/proc_sysctl.c:1318
[<ffffffff82a69286>] register_net_sysctl+0x1ca/0x288 net/sysctl_net.c:169
[<ffffffff82621080>] __devinet_sysctl_register+0xfa/0x18a net/ipv4/devinet.c:2572
[<ffffffff82621220>] devinet_sysctl_register net/ipv4/devinet.c:2612 [inline]
[<ffffffff82621220>] devinet_sysctl_register+0x110/0x142 net/ipv4/devinet.c:2602
[<ffffffff826213f0>] inetdev_init+0x19e/0x398 net/ipv4/devinet.c:276
[<ffffffff82622ed4>] inetdev_event+0x820/0xe14 net/ipv4/devinet.c:1530
[<ffffffff80079148>] notifier_call_chain+0xb8/0x188 kernel/notifier.c:83
[<ffffffff80079242>] raw_notifier_call_chain+0x2a/0x38 kernel/notifier.c:410
[<ffffffff821d5230>] call_netdevice_notifiers_info+0x9e/0x10e net/core/dev.c:2123
[<ffffffff821ffcb2>] call_netdevice_notifiers_extack net/core/dev.c:2135 [inline]
[<ffffffff821ffcb2>] call_netdevice_notifiers net/core/dev.c:2149 [inline]
[<ffffffff821ffcb2>] register_netdevice+0xa5e/0xbe0 net/core/dev.c:10380
[<ffffffff821ffe6e>] register_netdev+0x3a/0x5a net/core/dev.c:10473
[<ffffffff82893b4a>] sit_init_net+0x27a/0x7d6 net/ipv6/sit.c:1921
[<ffffffff821c8120>] ops_init+0x86/0x2d2 net/core/net_namespace.c:140
[<ffffffff821c990e>] setup_net+0x29a/0x5fe net/core/net_namespace.c:333
[<ffffffff821cc03e>] copy_net_ns+0x21a/0x4c8 net/core/net_namespace.c:474
[<ffffffff80077106>] create_new_namespaces+0x262/0x634 kernel/nsproxy.c:110
[<ffffffff80077d50>] unshare_nsproxy_namespaces+0xa2/0x138 kernel/nsproxy.c:226
[<ffffffff8002591e>] ksys_unshare+0x2dc/0x6ae kernel/fork.c:3002
[<ffffffff80025d0a>] __do_sys_unshare kernel/fork.c:3076 [inline]
[<ffffffff80025d0a>] sys_unshare+0x1a/0x24 kernel/fork.c:3074
[<ffffffff80005150>] ret_from_syscall+0x0/0x2
---[ end trace bfac5b0860123f30 ]---

Crashes (4):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2021/09/16 14:03 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 7d2a07b76933 7612dc77 .config console log report ci-qemu2-riscv64 riscv/fixes test error: BUG: unable to handle kernel NULL pointer dereference in corrupted
2021/09/10 21:31 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 7d2a07b76933 3ce60af8 .config console log report ci-qemu2-riscv64 riscv/fixes test error: BUG: unable to handle kernel NULL pointer dereference in corrupted
2021/09/10 21:31 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 7d2a07b76933 3ce60af8 .config console log report ci-qemu2-riscv64 riscv/fixes test error: BUG: unable to handle kernel NULL pointer dereference in corrupted
2021/09/10 10:30 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 7d2a07b76933 5ae8508a .config console log report ci-qemu2-riscv64 riscv/fixes test error: BUG: unable to handle kernel NULL pointer dereference in corrupted
* Struck through repros no longer work on HEAD.