syzbot


KASAN: use-after-free Read in sock_def_write_space (2)
Status: upstream: reported C repro on 2020/07/21 04:41
Reported-by: syzbot+6720d64f31c081c2f708@syzkaller.appspotmail.com
Fix commit: af9f691f qrtr: orphan socket in qrtr_release()
Patched on: [ci-qemu-upstream ci-qemu-upstream-386 ci-upstream-bpf-kasan-gce ci-upstream-bpf-next-kasan-gce ci-upstream-gce-leak ci-upstream-kasan-gce ci-upstream-kasan-gce-386 ci-upstream-kasan-gce-root ci-upstream-kasan-gce-selinux-root ci-upstream-kasan-gce-smack-root ci-upstream-linux-next-kasan-gce-root ci-upstream-net-kasan-gce ci-upstream-net-this-kasan-gce ci2-upstream-kcsan-gce ci2-upstream-usb], missing on: [ci-upstream-kmsan-gce ci-upstream-kmsan-gce-386]
First crash: 22d, last: 19h21m

Cause bisection: failed (bisect log)
similar bugs (1):
Kernel Title Repro Bisected Count Last Reported Patched Status
upstream KASAN: use-after-free Read in sock_def_write_space C cause 67 22d 388d 17/17 fixed on 2020/07/20 08:03
Patch testing requests:
Created Duration User Patch Repo Result
2020/07/24 14:18 16m xiyou.wangcong@gmail.com https://github.com/congwang/linux.git net OK
2020/07/24 02:40 16m xiyou.wangcong@gmail.com https://github.com/congwang/linux.git net OK

Sample crash report:

Crashes (14):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro Maintainers
ci-upstream-kasan-gce-root 2020/07/25 00:43 upstream f37e99ac 554af388 .config log report syz C christophe.jaillet@wanadoo.fr, davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, navid.emamdoost@gmail.com, netdev@vger.kernel.org
ci-upstream-kasan-gce-selinux-root 2020/07/24 19:04 upstream f37e99ac 554af388 .config log report syz C christophe.jaillet@wanadoo.fr, davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, navid.emamdoost@gmail.com, netdev@vger.kernel.org
ci-upstream-kasan-gce-smack-root 2020/07/23 06:27 upstream 8c26c87b 340ea530 .config log report syz C christophe.jaillet@wanadoo.fr, davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, navid.emamdoost@gmail.com, netdev@vger.kernel.org
ci-upstream-kasan-gce 2020/07/22 20:26 upstream 4fa640dc 128cd85f .config log report syz C christophe.jaillet@wanadoo.fr, davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, navid.emamdoost@gmail.com, netdev@vger.kernel.org
ci-upstream-kasan-gce-386 2020/07/20 18:56 upstream 5714ee50 4285ffa3 .config log report syz C christophe.jaillet@wanadoo.fr, davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, navid.emamdoost@gmail.com, netdev@vger.kernel.org
ci-upstream-linux-next-kasan-gce-root 2020/07/24 23:36 linux-next 26027945 554af388 .config log report syz C christophe.jaillet@wanadoo.fr, davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, navid.emamdoost@gmail.com, netdev@vger.kernel.org
ci-qemu-upstream 2020/08/07 02:35 upstream fffe3ae0 cb436c69 .config log report andriin@fb.com, ast@kernel.org, bpf@vger.kernel.org, daniel@iogearbox.net, davem@davemloft.net, hawk@kernel.org, jasowang@redhat.com, john.fastabend@gmail.com, kafai@fb.com, kpsingh@chromium.org, kuba@kernel.org, linux-kernel@vger.kernel.org, mst@redhat.com, netdev@vger.kernel.org, songliubraving@fb.com, virtualization@lists.linux-foundation.org, yhs@fb.com
ci-upstream-kasan-gce-root 2020/07/25 07:06 upstream 68845a55 1f7cc1ca .config log report christophe.jaillet@wanadoo.fr, davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, navid.emamdoost@gmail.com, netdev@vger.kernel.org
ci-upstream-kasan-gce 2020/07/23 17:47 upstream d15be546 70c104a1 .config log report christophe.jaillet@wanadoo.fr, davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, navid.emamdoost@gmail.com, netdev@vger.kernel.org
ci-qemu-upstream 2020/07/23 16:35 upstream d15be546 70c104a1 .config log report andriin@fb.com, ast@kernel.org, bpf@vger.kernel.org, daniel@iogearbox.net, davem@davemloft.net, hawk@kernel.org, jasowang@redhat.com, john.fastabend@gmail.com, kafai@fb.com, kpsingh@chromium.org, kuba@kernel.org, linux-kernel@vger.kernel.org, mst@redhat.com, netdev@vger.kernel.org, songliubraving@fb.com, virtualization@lists.linux-foundation.org, yhs@fb.com
ci-upstream-kasan-gce-386 2020/07/20 18:33 upstream 5714ee50 4285ffa3 .config log report christophe.jaillet@wanadoo.fr, davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, navid.emamdoost@gmail.com, netdev@vger.kernel.org
ci-upstream-net-this-kasan-gce 2020/08/01 03:25 net 85496a29 d895b3be .config log report andriin@fb.com, ast@kernel.org, bpf@vger.kernel.org, daniel@iogearbox.net, davem@davemloft.net, hawk@kernel.org, jasowang@redhat.com, john.fastabend@gmail.com, kafai@fb.com, kpsingh@chromium.org, kuba@kernel.org, linux-kernel@vger.kernel.org, mst@redhat.com, netdev@vger.kernel.org, songliubraving@fb.com, virtualization@lists.linux-foundation.org, yhs@fb.com
ci-upstream-net-kasan-gce 2020/08/11 00:28 net-next bfdd5aaa 7adc7b65 .config log report andriin@fb.com, ast@kernel.org, bpf@vger.kernel.org, daniel@iogearbox.net, davem@davemloft.net, hawk@kernel.org, jasowang@redhat.com, john.fastabend@gmail.com, kafai@fb.com, kpsingh@chromium.org, kuba@kernel.org, linux-kernel@vger.kernel.org, mst@redhat.com, netdev@vger.kernel.org, songliubraving@fb.com, virtualization@lists.linux-foundation.org, yhs@fb.com
ci-upstream-net-kasan-gce 2020/08/04 00:48 net-next bd0b33b2 196277c4 .config log report andriin@fb.com, ast@kernel.org, bpf@vger.kernel.org, daniel@iogearbox.net, davem@davemloft.net, hawk@kernel.org, jasowang@redhat.com, john.fastabend@gmail.com, kafai@fb.com, kpsingh@chromium.org, kuba@kernel.org, linux-kernel@vger.kernel.org, mst@redhat.com, netdev@vger.kernel.org, songliubraving@fb.com, virtualization@lists.linux-foundation.org, yhs@fb.com