| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 1 Feb 2021 11:52:12 +0100
From: Dmitry Vyukov <dvyukov@...gle.com>
To: LKML <linux-kernel@...r.kernel.org>,
syzkaller <syzkaller@...glegroups.com>
Cc: Eric Dumazet <edumazet@...gle.com>,
Hillf Danton <hdanton@...a.com>,
Tetsuo Handa <penguin-kernel@...ove.sakura.ne.jp>
Subject: syzbot reporting less duplicates
Hi,
FYI syzbot should report less duplicates now.
A significant number of reported duplicates was one of common
complaints. syzbot will now merge some slightly differently looking
crashes together, for example, these 2 recently reported bugs will be
merged into a single bug and reported once in future:
KASAN: use-after-free Read in skb_segment
KASAN: slab-out-of-bounds Read in skb_segment
You can see an example here:
https://syzkaller.appspot.com/bug?id=9936b32dd3a4a278f06a2cb07eb13df9e113ca84
which contains crashes for both "BUG: unable to handle kernel paging
request in cdev_del" and "general protection fault in cdev_del".
Hope you will find this useful.
If you are interested in heuristics details, grep for "alt:" here:
https://github.com/google/syzkaller/blob/master/pkg/report/linux.go
Crashes with the same alt title are merged together. In short,
currently there is one cluster for "bad access in function foo" (GPF,
fault, KASAN, KMSAN, corrupted list, etc); another cluster for passive
hangs (task hung, task can't die); and another cluster for active
stalls (rcu stall, cpu hang). These rules are based on analysis of all
previously reported bugs and duplicates among them.
Thanks
Powered by blists - more mailing lists