syzbot


general protection fault in btf_type_id_size
Status: upstream: reported C repro on 2021/03/07 21:19
Reported-by: syzbot+8bab8ed346746e7540e8@syzkaller.appspotmail.com
Fix commit: 350a5c4dd245 bpf: Dont allow vmlinux BTF to be used in map_create and prog_load.
Patched on: [ci-qemu-upstream ci-qemu-upstream-386 ci-qemu2-arm64 ci-qemu2-arm64-compat ci-qemu2-arm64-mte ci-qemu2-riscv64 ci-upstream-bpf-kasan-gce ci-upstream-bpf-next-kasan-gce ci-upstream-gce-leak ci-upstream-kasan-gce ci-upstream-kasan-gce-386 ci-upstream-kasan-gce-root ci-upstream-kasan-gce-selinux-root ci-upstream-kasan-gce-smack-root ci-upstream-kmsan-gce ci-upstream-kmsan-gce-386 ci-upstream-linux-next-kasan-gce-root ci-upstream-net-kasan-gce ci-upstream-net-this-kasan-gce ci2-upstream-kcsan-gce ci2-upstream-usb], missing on: [ci-qemu2-arm32]
First crash: 150d, last: 149d

Cause bisection: introduced by (bisect log) [merge commit]:
commit 19c176eb079834c5cf8574ce18c1d934ec486dd8
Author: Jakub Kicinski <kuba@kernel.org>
Date: Mon Oct 26 23:45:53 2020 +0000

  Merge branch 'mlxsw-various-fixes'

Crash: SYZFAIL: wrong response packet (log)
Repro: C syz .config

Sample crash report:

Crashes (6):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-bpf-kasan-gce 2021/03/03 22:09 bpf 6185266c5a85 06ed56cd .config log report syz C general protection fault in btf_type_id_size
ci-upstream-net-this-kasan-gce 2021/03/03 22:04 net 6881b07fdd24 06ed56cd .config log report syz C general protection fault in btf_type_id_size
ci-upstream-net-kasan-gce 2021/03/03 22:06 net-next d310ec03a34e 06ed56cd .config log report syz C general protection fault in btf_type_id_size
ci-upstream-bpf-next-kasan-gce 2021/03/03 21:41 bpf-next 303dcc25b5c7 06ed56cd .config log report syz C general protection fault in btf_type_id_size
ci-upstream-bpf-next-kasan-gce 2021/03/04 15:03 bpf-next 303dcc25b5c7 d7e4e604 .config log report info general protection fault in btf_type_id_size
ci-upstream-bpf-next-kasan-gce 2021/03/03 21:10 bpf-next 303dcc25b5c7 06ed56cd .config log report info general protection fault in btf_type_id_size