| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
| |
Update all the test files. I removed test.Equals() check to do it for all the files at once.
|
| |
|
|
|
|
|
| |
fast_dput and dput are too generic. This causes several different bugs to be merged into one.
See: https://syzkaller.appspot.com/bug?extid=b74150fd2ef40e716ca2
Ingore the fast_dput/dput frames when selecting the bug title.
|
| |
|
|
|
|
|
|
|
| |
The format has been changed recently:
https://lore.kernel.org/all/20251110114633.202485143@infradead.org/
This commit addresses the duplicates we currently see among the
linux-next bugs, but likely there are more. We'll fix it once we notice
them.
|
| |
|
|
| |
KMEMLEAK now prints a crc hash. Add a test to ensure we can properly parse it.
|
| |
|
|
|
|
|
|
|
| |
This bug is at least one case where we merge several different KMSAN
reports because they end up being triggered in the same generic code:
https://syzkaller.appspot.com/bug?id=6290a184e96e8fb4b657700adcd243ef195113e1
Skip some common symbols from crypto/ so that the titles become more
specific.
|
| |
|
|
|
|
|
| |
If these happen to be in the stack frames, in almost all cases it will
be due to a bug in the calling code.
See the discussion in #5784.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
Introduce crash.KCSANAssert.
Introduce crash.KCSANUnknown.
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
Run `go test ./pkg/report -update`.
|
| | |
|
| |
|
|
|
|
|
| |
We need to look for the error type after the "rust_kernel: panicked"
line.
Ignore some common irrelevant frames.
|
| |
|
|
|
|
|
|
| |
Do demangling as a part of Symbolize() processing.
Add a TestSymbolize test to verify the results.
Fix old report_test.go bugs to better react to the -update flags.
Closes #6035.
|
| |
|
|
|
|
|
|
|
|
| |
Even though __alloc_frozen_pages_noprof has the WARN_ON, the actual
problem lies in how malloc was called down the stacktrace. This leads to
several different bugs being merged into one:
https://syzkaller.appspot.com/bug?extid=03fb58296859d8dbab4d
Ingore the __alloc_frozen_pages_noprof frame when selecting the bug
title.
|
| |
|
|
|
|
|
|
| |
The format has been slightly changed lately and we have started to get
duplicates of the exiting reports, e.g.
https://syzkaller.appspot.com/bug?extid=077d9ebda84f426a6a1e
Adjust the parsing rules to keep the resulting bug titles unchanged.
|
| |
|
|
|
|
|
| |
It's too generic and leads to merging unrelated crash reports.
See https://syzkaller.appspot.com/bug?extid=c0dc46208750f063d0e0 and the
related LKML discussion.
|
| |
|
|
|
| |
The DEBUG_LIST/LIST_HARDENED changed the internal symbol names. Add a
test so that this does not regress.
|
| |
|
|
| |
Closes #5968
|
| |
|
|
|
| |
It will reduce the amount of duplicated reports.
See #5940.
|
| |
|
|
|
| |
It will help avoid bug duplication in case of adding new prefixes to
strip.
|
| |
|
|
|
| |
This will untangle the crashes of
https://syzkaller.appspot.com/bug?extid=bf36934adc7979488192
|
| |
|
|
|
|
|
| |
These can lead to false positives when BPF debugging data is printed,
e.g.
[ 461.316169][ T3168] [U] [1] INVALID BTF_INFO:72000001
|
| |
|
|
| |
Currently we mis-parse all of them, and attribute the bug to HWASAN.
|
| |
|
|
|
| |
These frames are not very informative.
See https://syzkaller.appspot.com/bug?extid=72d3b151aacf9fa74455
|
| |
|
|
|
|
|
| |
Prevent syzkaller from reacting to:
"warning: `syz.1.261' uses wireless extensions which will stop working
for Wi-Fi 7 hardware; use nl80211".
|
| | |
|
| |
|
|
|
|
|
| |
It's a helper used by many different filesystems. Let's be more
specific.
https://syzkaller.appspot.com/bug?extid=651ca866e5e2b4b5095b
|
| |
|
|
|
|
|
|
| |
We've got a dup:
https://syzkaller.appspot.com/bug?extid=d6f5b7a41831ca1a99a0
for an exising report:
https://syzkaller.appspot.com/bug?extid=be32baeb2433f286bc24
|
| |
|
|
|
| |
These are just warnings to the system administrator. Ignore them during
fuzzing.
|
| |
|
|
| |
Take a frame from the stack trace that is included in the bug report.
|
| |
|
|
|
|
| |
Sometimes it may happen that we only get part of the string. Let's
suppress the report both for the specific error message and for ALSA in
general.
|
| |
|
|
|
|
|
|
|
|
|
| |
Strict regexp rules to avoid false reboot reports as
"Booting the kernel." should always start from the start and at the end
of line.
Also addressed in unit test the previous fix in
https://github.com/google/syzkaller/commit/026e2200.
Fixes: https://github.com/google/syzkaller/issues/3955
|
| |
|
|
|
|
| |
Bugs are unlikely to be in the rhashtable code itself.
Example: https://syzkaller.appspot.com/bug?extid=128aaac913636290e5a9
|
| |
|
|
|
| |
For Linux bugs, extract the proc id and the prog id from the crash
report.
|
| |
|
|
| |
These are mis-parsed for now. Just add test cases.
|
| |
|
|
|
|
| |
SIGBUS means OOM on Linux.
Most of the crashes that happen during fuzzing are SIGBUS,
so separate them from SIGSEGV and suppress.
|
| |
|
|
| |
See https://syzkaller.appspot.com/bug?extid=6cf577c8ed4e23fe436b
|
| |
|
|
| |
This is a too generic frame.
|
| |
|
|
|
|
|
| |
This is not the place of the actual bug.
We end up collecting too many different reports in one place:
https://syzkaller.appspot.com/bug?extid=daa1128e28d3c3961cb2
|
| |
|
|
|
|
| |
In some cases, we may only collect a part of the kernel output. There
are no other "mand mount option" warnings in the kernel, so let's match
by a shorter regexp.
|
| |
|
|
|
|
| |
This library method is used in multiple places throughout the kernel.
Sample bug: https://syzkaller.appspot.com/bug?extid=dfab1425afcdae5ac970
|
| |
|
|
| |
These are just informative messages.
|
| |
|
|
|
| |
Like many other str* functions, strstr() is not interesting and should
be ignored.
|
| |
|
|
|
|
|
|
|
| |
Bug title in https://syzkaller.appspot.com/bug?extid=17a061f6132066e9fb95 is
"KMSAN: kernel-infoleak in copy_page_to_iter (4)", which is too generic
and may potentially correspond to multiple bugs. Ignore
copy_page_to_iter() and copy_folio_to_iter() to make it more meaningful.
In addition, speculatively ignore copy_page_from_iter().
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
It was initially proposed in
https://github.com/google/syzkaller/issues/1575 that KMSAN reports with
the same origin should be clustered together using an alt title.
This however turns out to be too aggressive: certain KMSAN reports have
their uninitialized values originating from common functions - this
leads to too many KMSAN reports being glued together. Because KMSAN
reports can be also clustered with KASAN reports or other kernel panics,
ultimately seemingly unrelated crashes are considered similar just
because they share their top frames with two KMSAN reports that, in
turn, share the same origin.
The resulting issues on the dashboard look confusing to the users, they
are hard to find and require manual untangling, which probably outweighs
the benefits of having KMSAN issues with exactly the same origin
clustered together.
For other types of KMSAN reports (infoleaks and use-after-frees) the alt
titles are preserved. First, there are fewer of those on the dashboard.
Second, they are rarely grouped together with non-KASAN reports and
are less likely to cause a lot of mess.
|
