Received: by 2002:a05:6358:16cc:b0:ea:6187:17c9 with SMTP id r12csp1778132rwl; Thu, 5 Jan 2023 20:00:46 -0800 (PST) X-Google-Smtp-Source: AMrXdXvkvS8KO9uCDofennlRkOjVw1bCBO0QfHrwzP8m0BDT0qZ+hsV7UR3TX81aY96+vLmYnz94 X-Received: by 2002:a17:907:6e16:b0:7e0:eed0:8beb with SMTP id sd22-20020a1709076e1600b007e0eed08bebmr63163532ejc.41.1672977646557; Thu, 05 Jan 2023 20:00:46 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1672977646; cv=none; d=google.com; s=arc-20160816; b=zGb0HqtqfENL/ngX4p+AxTiLwGBKiRYWrR+fFAR38axATG2Nl8RGPyYVuIN5o2emvP Nbf5eoxfYWG7/0+LpvBHSbVCgNfXpYEBJuaAxzi+ygTWp2vT+nkdzHMpURwX2dAv32Fg tZ6K/Oc6AEeMvnlwKlkYN5O6vE32/LKd8adWFfa0/JYdqwLz28e5R/a8Ur+P6X7jC+U9 Caj20I67nX2ZBfnzQ59oQk0PvZWoJFrTTXQq9SkASnMoAOAMKG1tUVJXccW/T+Ku2nfu 7jxq1QatFk6Vt0G6hd32A8xdEJnzsNa0QDIt/zYR5zvSPUE72/W4h5yHCl/UBl9IFLPb OfAA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version :dkim-signature; bh=DVcc+AxLpCmQrlskmey4vC08mDyFoGGH7C3hKYNnPeU=; b=sOUjOGlHnsz15Ao6sUijc1aTiNPsaXKvxEkCTPveHSwnAH82qRFOM2hbUMNh8Z695n qN0MTIhJgSvX9JU481UFyh+R55zxzqRRgk4LdOB3v/E7zbD4y0LmoFkaeX7LQ/TdJ8se efwFmS8VLsy/U4Tva3d+m40dKZuH/eItAdNoSXT+x+fob/jiDVcgUpkN/qyqos3NmRs8 okWBP5pXyPvsX9syh2USkUqPn08MYqD764rxFy9X+BZGsdaVU0KWczocLg1H5w6lqBS+ iTVZqIq7BbBnSDZeHzMVF71TwXdrwhw3FGEB1xwZajgjhihfIDiQKPhHiSFA0PDS+lME bx7Q== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20210112 header.b=KyBwqA61; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id xd8-20020a170907078800b007c11805a849si15811ejb.341.2023.01.05.20.00.33; Thu, 05 Jan 2023 20:00:46 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20210112 header.b=KyBwqA61; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231171AbjAFDDW (ORCPT + 55 others); Thu, 5 Jan 2023 22:03:22 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:54958 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S231994AbjAFDCg (ORCPT ); Thu, 5 Jan 2023 22:02:36 -0500 Received: from mail-ej1-x62a.google.com (mail-ej1-x62a.google.com [IPv6:2a00:1450:4864:20::62a]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 1DF9B6CFD6; Thu, 5 Jan 2023 19:01:36 -0800 (PST) Received: by mail-ej1-x62a.google.com with SMTP id u19so864190ejm.8; Thu, 05 Jan 2023 19:01:36 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=DVcc+AxLpCmQrlskmey4vC08mDyFoGGH7C3hKYNnPeU=; b=KyBwqA61hhb573NY68anN4JJhf/FDP6mtESP9g8HKfZDbLob0CXE58tJ7D72qlUF/I ZeOlr0JSH7cYqiZA5aBujlP2AgDlJsk47vUpp2JzgBL8BdIa0QRWFmLRvIEIUNfe4gy6 o74DcelkHmrAN22CqGmPE9FJGemnmdFx9uChqSVlu2zeQb6aSuA1t7DlKNtJZbE/d3O/ PV3UPuttuaN79iGBCFikgreqiH/ROAj57x8/G7xjlDoxSRMKUHTkOBGpsW4nEIgZDPhc bST+VVu152lvvY5HXy0r6cDRQv2evCGjJIjGFwl8fSjdsm5Y6Ji/ymwSPxah9D9LU4Ou RYSw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=DVcc+AxLpCmQrlskmey4vC08mDyFoGGH7C3hKYNnPeU=; b=IFPYUFG2fwVko7sckKwFdGbVgQrzo2P21MQTsZ3QR5wWHC0EUT5URTKwWuV+SgJ12+ uCtdbhysKfHbWUXhmFkW1jY6sisEmTjDGC0U1MaNrwIsJasOfvedVZxGZ1ZPU2ZYMUtX vRSm7KJxPwue6jh2lXZH8+E+fzKzdDhGmuC3uR4UcpgBLHX2T2y+WgYJAzsbX8c7Ur0g StRgEPgTdny84nHjLe/MzFpoB91kn4VapMYN05M4BZa8eMr1Opz/GBaltp61mlSuqtIr LK9+jGcPpGW6t73pgbs8mCQMXyP2L/7CW6zVihEa+vVwbk8k+G2Z1zn7lQGNPj1BJi18 g/7g== X-Gm-Message-State: AFqh2krNoPo2i7yZLlmuyXjZNd7qWH57+PjDUfmd2azdGCALRBrXr4aj 0lHwHYNQGSp2221UgTT6inF1xpj+luifwlBNTvY= X-Received: by 2002:a17:906:dcf:b0:7c1:6781:9c97 with SMTP id p15-20020a1709060dcf00b007c167819c97mr3806934eji.676.1672974094765; Thu, 05 Jan 2023 19:01:34 -0800 (PST) MIME-Version: 1.0 References: <20221222043507.33037-1-sunhao.th@gmail.com> <73E3CA9E-F67E-429F-A2DB-C77649E32D7A@gmail.com> <2EC740FA-A10B-4208-8080-9A268BD8E675@gmail.com> In-Reply-To: From: Alexei Starovoitov Date: Thu, 5 Jan 2023 19:01:23 -0800 Message-ID: Subject: Re: kernel panic: Attempted to kill init! To: Hao Sun Cc: Yonghong Song , bpf , Alexei Starovoitov , Daniel Borkmann , John Fastabend , Andrii Nakryiko , Martin KaFai Lau , Song Liu , Yonghong Song , KP Singh , Stanislav Fomichev , Hao Luo , Jiri Olsa , David Miller , Linux Kernel Mailing List Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,FREEMAIL_FROM, RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Thu, Jan 5, 2023 at 1:00 AM Hao Sun wrote: > > > > Does syzbot running without any user space? > > Is syzbot itself a pid=3D1 ? and the only process ? > > If so, the error would makes sense. > > Yes, after read the C reproducer again, noticed that after a > bunch of sandbox setup, the pid of the reproducer process at > runtime is 1. > > > I guess we can add a safety check to bpf_send_signal_common > > to prevent syzbot from killing itself. > > Maybe something like this? This can avoid the panic, but won=E2=80=99t > allow task with pid=3D1 to send signal with prog. > > diff --git a/kernel/trace/bpf_trace.c b/kernel/trace/bpf_trace.c > index 23ce498bca97..94d2af2ce433 100644 > --- a/kernel/trace/bpf_trace.c > +++ b/kernel/trace/bpf_trace.c > @@ -844,6 +844,8 @@ static int bpf_send_signal_common(u32 sig, enum pid_t= ype type) > */ > if (unlikely(current->flags & (PF_KTHREAD | PF_EXITING))) > return -EPERM; > + if (unlikely(is_global_init(current))) > + return -EPERM; > if (unlikely(!nmi_uaccess_okay())) > return -EPERM; Yep. Good idea. Pls send an official patch.