syzbot

 sign-in | mailing list | source | docs
🐞 Open [196] 🐞 Fixed [42] 🐞 Invalid [470] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR

Status: closed as invalid on 2017/10/18 09:51
First crash: 2401d, last: 2381d
Similar bugs (11)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (10) 1 2365d 2365d 0/3 closed as invalid on 2017/11/03 07:08
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (4) 1 2376d 2376d 0/3 closed as invalid on 2017/10/22 18:19
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (11) 2 2363d 2364d 0/3 closed as invalid on 2017/11/05 07:52
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (7) 1 2374d 2374d 0/3 closed as invalid on 2017/10/25 06:19
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (12) 1 2347d 2347d 0/3 closed as invalid on 2017/11/21 08:19
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (3) 2 2377d 2379d 0/3 closed as invalid on 2017/10/22 12:19
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (6) 1 2374d 2374d 0/3 closed as invalid on 2017/10/24 19:19
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (9) 4 2369d 2372d 0/3 closed as invalid on 2017/10/30 13:35
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (8) 1 2373d 2373d 0/3 closed as invalid on 2017/10/26 15:19
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (2) 1 2380d 2380d 0/3 closed as invalid on 2017/10/19 10:51
android-49 KASAN: slab-out-of-bounds in sg_remove_request at addr ADDR (5) 1 2375d 2375d 0/3 closed as invalid on 2017/10/24 05:19

Sample crash report:
netlink: 5 bytes leftover after parsing attributes in process `syz-executor7'.
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=6720 comm=syz-executor1
==================================================================
BUG: KASAN: slab-out-of-bounds in __read_once_size include/linux/compiler.h:243 [inline] at addr ffff8801cbfb7b40
BUG: KASAN: slab-out-of-bounds in list_empty include/linux/list.h:189 [inline] at addr ffff8801cbfb7b40
BUG: KASAN: slab-out-of-bounds in sg_remove_request+0x103/0x120 drivers/scsi/sg.c:2120 at addr ffff8801cbfb7b40

Crashes (19):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2017/10/17 18:39 https://android.googlesource.com/kernel/common android-4.9 5c73594e214f b69d27d1 .config console log report ci-android-49-kasan-gce
2017/10/16 05:36 https://android.googlesource.com/kernel/common android-4.9 5c73594e214f b69d27d1 .config console log report ci-android-49-kasan-gce
2017/10/15 14:50 https://android.googlesource.com/kernel/common android-4.9 5c73594e214f b69d27d1 .config console log report ci-android-49-kasan-gce
2017/10/15 13:24 https://android.googlesource.com/kernel/common android-4.9 5c73594e214f b69d27d1 .config console log report ci-android-49-kasan-gce
2017/10/12 03:28 https://android.googlesource.com/kernel/common android-4.9 34e23dee72dd c26ea367 .config console log report ci-android-49-kasan-gce
2017/10/11 10:04 https://android.googlesource.com/kernel/common android-4.9 34e23dee72dd c26ea367 .config console log report ci-android-49-kasan-gce
2017/10/11 05:38 https://android.googlesource.com/kernel/common android-4.9 34e23dee72dd c26ea367 .config console log report ci-android-49-kasan-gce
2017/10/11 02:40 https://android.googlesource.com/kernel/common android-4.9 e5eba30388a2 c26ea367 .config console log report ci-android-49-kasan-gce
2017/10/10 21:48 https://android.googlesource.com/kernel/common android-4.9 e5eba30388a2 c26ea367 .config console log report ci-android-49-kasan-gce
2017/10/07 22:44 https://android.googlesource.com/kernel/common android-4.9 2b3a26c86b93 c26ea367 .config console log report ci-android-49-kasan-gce
2017/10/07 07:26 https://android.googlesource.com/kernel/common android-4.9 2b3a26c86b93 c26ea367 .config console log report ci-android-49-kasan-gce
2017/10/07 06:33 https://android.googlesource.com/kernel/common android-4.9 2b3a26c86b93 c26ea367 .config console log report ci-android-49-kasan-gce
2017/10/07 01:41 https://android.googlesource.com/kernel/common android-4.9 2b3a26c86b93 c26ea367 .config console log report ci-android-49-kasan-gce
2017/10/05 12:15 https://android.googlesource.com/kernel/common android-4.9 3217cccb8161 c26ea367 .config console log report ci-android-49-kasan-gce
2017/10/01 14:56 https://android.googlesource.com/kernel/common android-4.9 9b2b08179641 c26ea367 .config console log report ci-android-49-kasan-gce
2017/10/01 09:32 https://android.googlesource.com/kernel/common android-4.9 9b2b08179641 c26ea367 .config console log report ci-android-49-kasan-gce
2017/10/01 01:58 https://android.googlesource.com/kernel/common android-4.9 9b2b08179641 c26ea367 .config console log report ci-android-49-kasan-gce
2017/09/30 02:54 https://android.googlesource.com/kernel/common android-4.9 9b2b08179641 c26ea367 .config console log report ci-android-49-kasan-gce
2017/09/28 04:00 https://android.googlesource.com/kernel/common android-4.9 c30c69c76c1d c26ea367 .config console log report ci-android-49-kasan-gce
* Struck through repros no longer work on HEAD.