Received: by 2002:ac0:a594:0:0:0:0:0 with SMTP id m20-v6csp2654855imm;
        Wed, 16 May 2018 17:13:58 -0700 (PDT)
X-Google-Smtp-Source: AB8JxZq8it16z7EarvOpaJXlzRv8aTwtyoFRksiRtKs+82F8SEAphaiHGRukPTZ+LFPGTnM6LRlI
X-Received: by 2002:a63:6e88:: with SMTP id j130-v6mr2353981pgc.321.1526516038672;
        Wed, 16 May 2018 17:13:58 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1526516038; cv=none;
        d=google.com; s=arc-20160816;
        b=p5Vd2zojOZx1TI1sXxDFbvA2eHxIQ7xjXqCnoi7hZ0HQTUb6fOtePYkyJ1Ub4B0+n2
         7CffPza1MFimBxjJYGAirq5eU3hmtiABp+8IAnQx2jG1ReOg514j7qpZTGmOB4waRyLp
         pswLbMFbfqk28G9gLNhsQUzm0W3Abki6gtbQspDVnsev5MoB1cS/UbvBX8K3Z8qAFogo
         yApooEz7mP1SrBUurCTGnwocC1LxtsXz3wv3rFot0mN23tedq6LuRS50qQbercaxT6+4
         rxqOlh+1MAHeuE7BU0GTMtQfKGuO4wayxGc5dxtuFhFuo932qP0w4sVY4mr7QI21i+2N
         KhsA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:cc:to:subject:message-id:date:from
         :mime-version:arc-authentication-results;
        bh=2qaOFpX5zoggTqazfMnX30p1TzukeEVc94q4y5FTMQA=;
        b=VDicasr1gOdn9X0myqJHbhCKBlL7uRxavzG6Zgi8SSEECXC3UqpYrftdh/ZWFobfBq
         JLP8idrWrkIJBVZtS16k0OUkH2EVTmTq9XD0ysXAtWbGC6TNLKFf73AL2Q3P1v4NIFch
         HmuQUZbk2wJze8e7K12jg8IaWFFn37bvPr4iFD/Dpp53aTL8yUQUBuHSGQpz90iRrtqu
         LtDVgiNURSrz2sdK5TM1PNulA13UCgH916VUHV5EdTet/iQ8ab8KgD1jvvXM61qitNhr
         yoUSsIK/5FAACpIQUzjcpd0Oroc8PikHLQoTk5Y3ysqLDdLyiX9/JZWJfdIhLrZLyY/M
         WXgA==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id y1-v6si3674086plt.316.2018.05.16.17.13.31;
        Wed, 16 May 2018 17:13:58 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1751880AbeEQANW (ORCPT <rfc822;justmaker@gmail.com> + 99 others);
        Wed, 16 May 2018 20:13:22 -0400
Received: from outprodmail01.cc.columbia.edu ([128.59.72.39]:58666 "EHLO
        outprodmail01.cc.columbia.edu" rhost-flags-OK-OK-OK-OK)
        by vger.kernel.org with ESMTP id S1751259AbeEQANV (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 16 May 2018 20:13:21 -0400
X-Greylist: delayed 606 seconds by postgrey-1.27 at vger.kernel.org; Wed, 16 May 2018 20:13:21 EDT
Received: from hazelnut (hazelnut.cc.columbia.edu [128.59.213.250])
        by outprodmail01.cc.columbia.edu (8.14.4/8.14.4) with ESMTP id w4H0C88R060231
        for <linux-kernel@vger.kernel.org>; Wed, 16 May 2018 20:13:20 -0400
Received: from hazelnut (localhost.localdomain [127.0.0.1])
        by hazelnut (Postfix) with ESMTP id DB7D06D
        for <linux-kernel@vger.kernel.org>; Wed, 16 May 2018 20:13:20 -0400 (EDT)
Received: from sendprodmail04.cc.columbia.edu (sendprodmail04.cc.columbia.edu [128.59.72.16])
        by hazelnut (Postfix) with ESMTP id AA5106D
        for <linux-kernel@vger.kernel.org>; Wed, 16 May 2018 20:13:20 -0400 (EDT)
Received: from mail-wr0-f199.google.com (mail-wr0-f199.google.com [209.85.128.199])
        by sendprodmail04.cc.columbia.edu (8.14.4/8.14.4) with ESMTP id w4H0DKGf012294
        (version=TLSv1/SSLv3 cipher=AES128-GCM-SHA256 bits=128 verify=NOT)
        for <linux-kernel@vger.kernel.org>; Wed, 16 May 2018 20:13:20 -0400
Received: by mail-wr0-f199.google.com with SMTP id c56-v6so1827453wrc.5
        for <linux-kernel@vger.kernel.org>; Wed, 16 May 2018 17:13:20 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:from:date:message-id:subject:to:cc;
        bh=2qaOFpX5zoggTqazfMnX30p1TzukeEVc94q4y5FTMQA=;
        b=EOdwuESRnThqU6WUfEQx1nGXaPF6IkTvyhd3iSM3JZBQSqQ8zxESVrDQ6qBpLei1NR
         1DMGvsufxv0HpgbK9ZyPn3hgTSWvnKvsyKrrCqgbAgquFukQTcbIDuQ0B9yOrShgXsq5
         BoLfyvfpIn9wJZ+fRvGqycB1d/pPce8wGfVVThq+SGb8g/f0pYvxV8hGLhz3nYeX9dnw
         NrKbNG2zwW15TuVWcG0LkfUzA5uVoHRpJpDeVCkF7D/gbZoXH9zT3wYpy9CoREcNkCKe
         fQHFFw3oyMv0pry6zZBiGopjxwts+gZO+dpW5aVF4Y2qoy7lJtB/oFNVyfm4gzQGXBLr
         MuNA==
X-Gm-Message-State: ALKqPwfaElMBITrqBdtOwfi6FTLStLY6AgckZyDW9WI5otX0uYsCYe15
        c0/uqNWo2ynSfYk1NtDGqwFlPhMMZg4ADDmjqyQy8oVpr6syexRi1pjLaud3XCxVRUrY9Yh/bvm
        dN+uhjAgUBn/NzKuuPS+cOwWzy4cZz8tLmkenW4nuweyUlsss
X-Received: by 2002:a50:fa81:: with SMTP id w1-v6mr4008345edr.41.1526515999668;
        Wed, 16 May 2018 17:13:19 -0700 (PDT)
X-Received: by 2002:a50:fa81:: with SMTP id w1-v6mr4008309edr.41.1526515999187;
 Wed, 16 May 2018 17:13:19 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.80.134.57 with HTTP; Wed, 16 May 2018 17:13:18 -0700 (PDT)
From:   Shankara Pailoor <sp3485@columbia.edu>
Date:   Wed, 16 May 2018 17:13:18 -0700
Message-ID: <CAASgV=v-ccec-7aXK-FGB=xHvZcKcfibp9Dy67O3RpTdMsPrKA@mail.gmail.com>
Subject: general protection fault in klist_iter_exit
To:     Alan Cox <alan@lxorguk.ukuu.org.uk>,
        Alexey Kuznetsov <kuznet@ms2.inr.ac.ru>, kaber@trash.net
Cc:     LKML <linux-kernel@vger.kernel.org>
Content-Type: text/plain; charset="UTF-8"
X-No-Spam-Score: Local
X-Scanned-By: MIMEDefang 2.78 on 128.59.72.16
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Hi,

I am fuzzing Linux 4.17-rc4 with Syzkaller and found the below crash.
I don't have a reproducer but this crash happened twice.

kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] SMP KASAN PTI
Dumping ftrace buffer:
   (ftrace buffer empty)
Modules linked in:
CPU: 0 PID: 36 Comm: kworker/0:1 Not tainted 4.17.0-rc4+ #1
Hardware name: Google Google Compute Engine/Google Compute Engine,
BIOS Google 01/01/2011
Workqueue: events netlink_sock_destruct_work
RIP: 0010:klist_iter_exit+0x26/0x90 lib/klist.c:314
RSP: 0018:ffff880103f57c30 EFLAGS: 00010202
RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff8490f6d5
RDX: 0000000000000001 RSI: 0000000000000008 RDI: 0000000000000000
RBP: ffff880103f57c48 R08: fffffbfff0c133d9 R09: 0000000000000001
R10: ffff880103f57c78 R11: ffffffff86099ec7 R12: 0000000000000008
R13: ffffffff854a2ba0 R14: 0000000000000000 R15: ffff880103ec9400
FS:  0000000000000000(0000) GS:ffff880104e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000002031d000 CR3: 0000000005a22003 CR4: 00000000001606f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600
Call Trace:
 class_dev_iter_exit+0x15/0x20 drivers/base/class.c:323
 nfc_device_iter_exit net/nfc/nfc.h:133 [inline]
 nfc_genl_dump_devices_done+0x34/0x50 net/nfc/netlink.c:666
 genl_lock_done+0x89/0xd0 net/netlink/genetlink.c:493
 netlink_sock_destruct+0x98/0x2a0 net/netlink/af_netlink.c:397
 __sk_destruct+0x53/0x5e0 net/core/sock.c:1566
 sk_destruct+0x47/0x80 net/core/sock.c:1601
 __sk_free+0xf1/0x2b0 net/core/sock.c:1612
 sk_free+0x2a/0x40 net/core/sock.c:1623
 netlink_sock_destruct_work+0x19/0x20 net/netlink/af_netlink.c:419
 process_one_work+0x827/0x1550 kernel/workqueue.c:2145
 worker_thread+0xd2/0xcc0 kernel/workqueue.c:2279
 kthread+0x33c/0x400 kernel/kthread.c:238
 ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:412
Code: 5d c3 0f 1f 00 55 48 89 e5 41 55 41 54 53 48 89 fb 4c 8d 63 08
e8 4b 62 cf fc 4c 89 e2 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80>
3c 02 00 75 43 4c 8b 6b 08 4d 85 ed 74 2e e8 26 62 cf fc 31
RIP: klist_iter_exit+0x26/0x90 lib/klist.c:314 RSP: ffff880103f57c30
---[ end trace 69831a3bb9e34eca ]---
Kernel panic - not syncing: Fatal exception
Dumping ftrace buffer:
   (ftrace buffer empty)
Kernel Offset: disabled
Rebooting in 86400 seconds..

Regards,
Shankara