syzbot


KASAN: use-after-free Read in __fput (3)
Status: upstream: reported syz repro on 2020/08/31 23:08
Reported-by: syzbot+c282923e5da93549fa27@syzkaller.appspotmail.com
First crash: 32d, last: 32d

Cause bisection: introduced by (bisect log):

commit a9ed4a6560b8562b7e2e2bed9527e88001f7b682
Author: Marc Zyngier <maz@kernel.org>
Date: Wed Aug 19 16:12:17 2020 +0000

  epoll: Keep a reference on files added to the check list

Crash: kernel BUG at fs/inode.c:LINE! (log)
Repro: syz .config
similar bugs (3):
Kernel Title Repro Bisected Count Last Reported Patched Status
upstream KASAN: use-after-free Read in __fput 23 1027d 1061d 4/17 fixed on 2018/02/13 04:59
upstream KASAN: use-after-free Read in __fput (2) 1 901d 893d 0/17 auto-closed as invalid on 2019/02/22 10:26
linux-4.19 KASAN: use-after-free Read in __fput syz 1 26d 26d 0/1 upstream: reported syz repro on 2020/09/02 08:43
Patch testing requests:
Created Duration User Patch Repo Result
2020/09/02 05:12 11m anant.thazhemadam@gmail.com https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master report log

Sample crash report:

Crashes (1):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Maintainers
ci-upstream-kasan-gce-selinux-root 2020/08/27 23:04 upstream 15bc20c6 816e0689 .config log report syz linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, viro@zeniv.linux.org.uk