general protection fault in syscall_trace_enter
4 views
Skip to first unread message
syzbot
May 9, 2020, 10:45:20 PM5/9/20
to syzkaller...@googlegroups.com
Hello,
syzbot found the following crash on:
HEAD commit: 84920cc7 Linux 4.19.121
git tree: linux-4.19.y
console output: https://syzkaller.appspot.com/x/log.txt?x=143f33cc100000
kernel config: https://syzkaller.appspot.com/x/.config?x=1deab1e33c1e397b
dashboard link: https://syzkaller.appspot.com/bug?extid=74d8c863b6b621bf69c6
compiler: gcc (GCC) 9.0.0 20181231 (experimental)
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+74d8c8...@syzkaller.appspotmail.com
kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] PREEMPT SMP KASAN
CPU: 0 PID: 3698 Comm: systemd-udevd Not tainted 4.19.121-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:syscall_trace_enter+0x65/0xd50 arch/x86/entry/common.c:69
Code: 44 24 30 f0 69 00 81 4b 8d 44 25 00 c7 00 f1 f1 f1 f1 c7 40 0c f3 f3 f3 f3 65 48 8b 04 25 28 00 00 00 48 89 84 24 b8 00 00 77 <00> 70 07 77 00 70 07 00 70 07 00 00 00 00 00 77 00 70 07 00 00 77
RSP: 0018:ffff88808fed7e30 EFLAGS: 00010a06
RAX: edb35377a9c3df00 RBX: ffff88808fed7f58 RCX: ffffffff81009a9f
RDX: 0000000000000000 RSI: ffffffff81009e8e RDI: ffff88808fed7f58
RBP: ffff88808fed7f58 R08: ffff88808fecc400 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: 1ffff11011fdafca R14: 0000000000000000 R15: 0000000000000000
FS: 00007fa9cc45e8c0(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b31730000 CR3: 000000008fa53000 CR4: 00000000001426f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
do_syscall_64+0x486/0x620 arch/x86/entry/common.c:283
entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7fa9cb2d1335
Code: 69 db 2b 00 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 f0 77 30 48 89 c7 48 89 d6 b8 06 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 03 f3 c3 90 48 8b 15 31 db 2b 00 f7 d8 64 89
RSP: 002b:00007ffde2af4578 EFLAGS: 00000246 ORIG_RAX: 0000000000000006
RAX: ffffffffffffffda RBX: 00005642665770d0 RCX: 00007fa9cb2d1335
RDX: 00007ffde2af45b0 RSI: 00007ffde2af45b0 RDI: 00005642665760d0
RBP: 00007ffde2af4670 R08: 00007fa9cb590198 R09: 0000000000001010
R10: 00007fa9cb58fb58 R11: 0000000000000246 R12: 00005642665760d0
R13: 00005642665760fa R14: 000056426655e4c6 R15: 000056426655e4ca
Modules linked in:
---[ end trace c343d3b098ee6450 ]---
RIP: 0010:syscall_trace_enter+0x65/0xd50 arch/x86/entry/common.c:69
Code: 44 24 30 f0 69 00 81 4b 8d 44 25 00 c7 00 f1 f1 f1 f1 c7 40 0c f3 f3 f3 f3 65 48 8b 04 25 28 00 00 00 48 89 84 24 b8 00 00 77 <00> 70 07 77 00 70 07 00 70 07 00 00 00 00 00 77 00 70 07 00 00 77
RSP: 0018:ffff88808fed7e30 EFLAGS: 00010a06
RAX: edb35377a9c3df00 RBX: ffff88808fed7f58 RCX: ffffffff81009a9f
RDX: 0000000000000000 RSI: ffffffff81009e8e RDI: ffff88808fed7f58
kasan: CONFIG_KASAN_INLINE enabled
RBP: ffff88808fed7f58 R08: ffff88808fecc400 R09: 0000000000000000
kasan: GPF could be caused by NULL-ptr deref or user memory access
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
general protection fault: 0000 [#2] PREEMPT SMP KASAN
R13: 1ffff11011fdafca R14: 0000000000000000 R15: 0000000000000000
CPU: 1 PID: 4860 Comm: syz-executor.2 Tainted: G D 4.19.121-syzkaller #0
FS: 00007fa9cc45e8c0(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
RIP: 0010:do_signal+0xa2/0x1710 arch/x86/kernel/signal.c:828
CR2: 0000001b31730000 CR3: 000000008fa53000 CR4: 00000000001426f0
Code: 48 8b 04 25 28 00 00 00 48 89 84 24 a0 01 00 00 31 c0 e8 41 8f 1c 00 84 c0 0f 85 5b 02 00 00 49 8d 7e 78 48 89 f8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 34 11 00 00 4d 8b 66 78 45 85 e4 78 6a 4d 8d
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
RSP: 0018:ffff8880862f7d40 EFLAGS: 00010206
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
RAX: 000000000000000f RBX: 1ffff11010c5efb1 RCX: 0000000000000000
---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot found the following crash on:
HEAD commit: 84920cc7 Linux 4.19.121
git tree: linux-4.19.y
console output: https://syzkaller.appspot.com/x/log.txt?x=143f33cc100000
kernel config: https://syzkaller.appspot.com/x/.config?x=1deab1e33c1e397b
dashboard link: https://syzkaller.appspot.com/bug?extid=74d8c863b6b621bf69c6
compiler: gcc (GCC) 9.0.0 20181231 (experimental)
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+74d8c8...@syzkaller.appspotmail.com
kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] PREEMPT SMP KASAN
CPU: 0 PID: 3698 Comm: systemd-udevd Not tainted 4.19.121-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:syscall_trace_enter+0x65/0xd50 arch/x86/entry/common.c:69
Code: 44 24 30 f0 69 00 81 4b 8d 44 25 00 c7 00 f1 f1 f1 f1 c7 40 0c f3 f3 f3 f3 65 48 8b 04 25 28 00 00 00 48 89 84 24 b8 00 00 77 <00> 70 07 77 00 70 07 00 70 07 00 00 00 00 00 77 00 70 07 00 00 77
RSP: 0018:ffff88808fed7e30 EFLAGS: 00010a06
RAX: edb35377a9c3df00 RBX: ffff88808fed7f58 RCX: ffffffff81009a9f
RDX: 0000000000000000 RSI: ffffffff81009e8e RDI: ffff88808fed7f58
RBP: ffff88808fed7f58 R08: ffff88808fecc400 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: 1ffff11011fdafca R14: 0000000000000000 R15: 0000000000000000
FS: 00007fa9cc45e8c0(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b31730000 CR3: 000000008fa53000 CR4: 00000000001426f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
do_syscall_64+0x486/0x620 arch/x86/entry/common.c:283
entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7fa9cb2d1335
Code: 69 db 2b 00 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 f0 77 30 48 89 c7 48 89 d6 b8 06 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 03 f3 c3 90 48 8b 15 31 db 2b 00 f7 d8 64 89
RSP: 002b:00007ffde2af4578 EFLAGS: 00000246 ORIG_RAX: 0000000000000006
RAX: ffffffffffffffda RBX: 00005642665770d0 RCX: 00007fa9cb2d1335
RDX: 00007ffde2af45b0 RSI: 00007ffde2af45b0 RDI: 00005642665760d0
RBP: 00007ffde2af4670 R08: 00007fa9cb590198 R09: 0000000000001010
R10: 00007fa9cb58fb58 R11: 0000000000000246 R12: 00005642665760d0
R13: 00005642665760fa R14: 000056426655e4c6 R15: 000056426655e4ca
Modules linked in:
---[ end trace c343d3b098ee6450 ]---
RIP: 0010:syscall_trace_enter+0x65/0xd50 arch/x86/entry/common.c:69
Code: 44 24 30 f0 69 00 81 4b 8d 44 25 00 c7 00 f1 f1 f1 f1 c7 40 0c f3 f3 f3 f3 65 48 8b 04 25 28 00 00 00 48 89 84 24 b8 00 00 77 <00> 70 07 77 00 70 07 00 70 07 00 00 00 00 00 77 00 70 07 00 00 77
RSP: 0018:ffff88808fed7e30 EFLAGS: 00010a06
RAX: edb35377a9c3df00 RBX: ffff88808fed7f58 RCX: ffffffff81009a9f
RDX: 0000000000000000 RSI: ffffffff81009e8e RDI: ffff88808fed7f58
kasan: CONFIG_KASAN_INLINE enabled
RBP: ffff88808fed7f58 R08: ffff88808fecc400 R09: 0000000000000000
kasan: GPF could be caused by NULL-ptr deref or user memory access
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
general protection fault: 0000 [#2] PREEMPT SMP KASAN
R13: 1ffff11011fdafca R14: 0000000000000000 R15: 0000000000000000
CPU: 1 PID: 4860 Comm: syz-executor.2 Tainted: G D 4.19.121-syzkaller #0
FS: 00007fa9cc45e8c0(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
RIP: 0010:do_signal+0xa2/0x1710 arch/x86/kernel/signal.c:828
CR2: 0000001b31730000 CR3: 000000008fa53000 CR4: 00000000001426f0
Code: 48 8b 04 25 28 00 00 00 48 89 84 24 a0 01 00 00 31 c0 e8 41 8f 1c 00 84 c0 0f 85 5b 02 00 00 49 8d 7e 78 48 89 f8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 34 11 00 00 4d 8b 66 78 45 85 e4 78 6a 4d 8d
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
RSP: 0018:ffff8880862f7d40 EFLAGS: 00010206
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
RAX: 000000000000000f RBX: 1ffff11010c5efb1 RCX: 0000000000000000
---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot
Dec 2, 2020, 11:22:17 AM12/2/20
to syzkaller...@googlegroups.com
Auto-closing this bug as obsolete.
Crashes did not happen for a while, no reproducer and no activity.
Crashes did not happen for a while, no reproducer and no activity.
Reply all
Reply to author
Forward
0 new messages