syzbot


page fault in statvfs_to_statfs12_copy
Status: fixed on 2020/06/27 18:40
Reported-by: syzbot+b05096f3114b2820d81c@syzkaller.appspotmail.com
Fix commit: d5aa2ca5 Yet another idiotic compat syscall that was developed with literally zero test made. Simply invoking this syscall with _valid parameters_ triggers a fatal fault, because the kernel tries to write to userland addresses.
First crash: 115d, last: 115d
duplicates (8):
Title Repro Bisected Count Last Reported Patched Status
panic: kmsan_md_addr_to_shad: impossible, va=0x0 C 3 115d 115d 0/3 closed as dup on 2020/06/27 07:04
UBSan: Undefined Behavior in compat_20_sys_statfs C 13 115d 115d 0/3 closed as dup on 2020/06/27 07:13
ASan: Unauthorized Access in statvfs_to_statfs12_copy 1 115d 115d 0/3 closed as dup on 2020/06/27 19:11
panic: kmsan_md_addr_to_shad: impossible, va=ADDR C 125 115d 115d 0/3 closed as dup on 2020/06/27 07:03
page fault in compat_20_sys_fstatfs 7 115d 115d 0/3 closed as dup on 2020/06/27 07:13
page fault in compat_20_sys_statfs 1 115d 115d 0/3 closed as dup on 2020/06/27 19:11
UBSan: Undefined Behavior in compat_20_sys_fstatfs C 5 115d 115d 0/3 closed as dup on 2020/06/27 07:14
page fault in __asan_store2 C 274 115d 115d 0/3 closed as dup on 2020/06/27 07:04

Sample crash report:

Crashes (5):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info
ci2-netbsd-kubsan 2020/06/27 04:41 netbsd 5f8d4fbd ffec44b5 .config log report syz C
ci2-netbsd-kubsan 2020/06/27 08:09 netbsd 5f8d4fbd ffec44b5 .config log report
ci2-netbsd-kubsan 2020/06/27 06:56 netbsd 5f8d4fbd ffec44b5 .config log report
ci2-netbsd-kubsan 2020/06/27 05:08 netbsd 5f8d4fbd ffec44b5 .config log report
ci2-netbsd-kubsan 2020/06/27 04:22 netbsd 5f8d4fbd ffec44b5 .config log report