syzbot

 sign-in | mailing list | source | docs
🐞 Open [124]
🐞 Fixed [23]
🐞 Invalid [246]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

UBSAN: shift-out-of-bounds in parse_options

Status: upstream: reported C repro on 2023/01/08 05:56
Bug presence: origin:lts
Subsystems: ext4
[Documentation on labels]
Reported-by: syzbot+298c1c62e38088db169c@syzkaller.appspotmail.com
First crash: 685d, last: 13h04m
Cause bisection: failed (error log, bisect log)
  
Bug presence (2)
Date Name Commit Repro Result
2023/10/28 lts (merge base) 12952a23a5da C [report] UBSAN: shift-out-of-bounds in parse_options
2023/10/28 upstream (ToT) 56567a20b22b C Didn't crash
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-6.1 UBSAN: shift-out-of-bounds in parse_options origin:lts-only C error 18 10d 101d 0/3 upstream: reported C repro on 2024/08/13 23:52
linux-5.15 UBSAN: shift-out-of-bounds in parse_options origin:lts-only C unreliable 81 1d14h 369d 0/3 upstream: reported C repro on 2023/11/19 20:08
android-6-1 UBSAN: shift-out-of-bounds in parse_options origin:lts C 38 3d07h 98d 0/2 upstream: reported C repro on 2024/08/17 08:59
Last patch testing requests (8)
Created Duration User Patch Repo Result
2024/08/08 10:52 10m retest repro android13-5.15-lts report log
2024/07/21 18:38 5m retest repro android13-5.15-lts report log
2024/07/21 18:38 25m retest repro android13-5.15-lts report log
2024/06/27 13:19 6m retest repro android13-5.15-lts report log
2024/05/30 10:46 5m retest repro android13-5.15-lts error
2024/05/04 18:04 5m retest repro android13-5.15-lts report log
2023/04/12 05:56 22m tudor.ambarus@linaro.org git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4.git dev OK log
2023/04/07 11:02 12m tudor.ambarus@linaro.org git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git linux-5.15.y report log
Fix bisection attempts (8)
Created Duration User Patch Repo Result
2024/06/03 21:48 50m bisect fix android13-5.15-lts OK (0) job log log
2023/12/16 15:24 36m bisect fix android13-5.15-lts OK (0) job log log
2023/10/28 01:39 34m bisect fix android13-5.15-lts OK (0) job log log
2023/06/09 23:50 16m bisect fix android13-5.15-lts OK (0) job log log
2023/05/10 18:57 41m bisect fix android13-5.15-lts OK (0) job log log
2023/04/09 01:19 22m bisect fix android13-5.15-lts OK (0) job log log
2023/03/09 18:29 45m bisect fix android13-5.15-lts OK (0) job log log
2023/02/07 17:54 18m bisect fix android13-5.15-lts OK (0) job log log

Sample crash report:
================================================================================
UBSAN: shift-out-of-bounds in fs/f2fs/super.c:901:5
shift exponent 106 is too large for 32-bit type 'int'
CPU: 1 PID: 296 Comm: syz-executor407 Not tainted 5.15.167-syzkaller-02003-g5e4635681cf1 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x151/0x1c0 lib/dump_stack.c:106
 dump_stack+0x15/0x20 lib/dump_stack.c:113
 ubsan_epilogue lib/ubsan.c:151 [inline]
 __ubsan_handle_shift_out_of_bounds+0x3bf/0x420 lib/ubsan.c:321
 parse_options+0x460f/0x4620 fs/f2fs/super.c:901
 f2fs_fill_super+0x2e61/0x8170 fs/f2fs/super.c:4154
 mount_bdev+0x282/0x3b0 fs/super.c:1398
 f2fs_mount+0x34/0x40 fs/f2fs/super.c:4623
 legacy_get_tree+0xf1/0x190 fs/fs_context.c:611
 vfs_get_tree+0x88/0x290 fs/super.c:1528
 do_new_mount+0x2ba/0xb30 fs/namespace.c:3005
 path_mount+0x671/0x1070 fs/namespace.c:3335
 do_mount fs/namespace.c:3348 [inline]
 __do_sys_mount fs/namespace.c:3556 [inline]
 __se_sys_mount+0x2c4/0x3b0 fs/namespace.c:3533
 __x64_sys_mount+0xbf/0xd0 fs/namespace.c:3533
 x64_sys_call+0x49d/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:166
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x3b/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
RIP: 0033:0x7f10d2f87d7a
Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffc726a48d8 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007ffc726a48f0 RCX: 00007f10d2f87d7a
RDX: 0000000020000040 RSI: 0000000020000180 RDI: 00007ffc726a48f0
RBP: 0000000000000004 R08: 00007ffc726a4930 R09: 00000000000054ff
R10: 0000000000000008 R11: 0000000000000286 R12: 0000000000000008
R13: 00007ffc726a4930 R14: 0000000000000003 R15: 00000000013bd7ef
 </TASK>
================================================================================
F2FS-fs (loop0): Not support 1024, larger than 256

Crashes (98):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/10/17 14:28 android13-5.15-lts 5e4635681cf1 666f77ed .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/07/07 14:28 android13-5.15-lts 9044d25b8ff5 2a40360c .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1] [mounted in repro #2] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2023/12/28 08:08 android13-5.15-lts 28e3f5851a99 fb427a07 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2023/11/02 05:55 android13-5.15-lts 61cfd264993d 69904c9f .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2023/07/03 09:57 android13-5.15-lts 241da2ad5601 bfc47836 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2023/01/08 05:54 android13-5.15-lts c73b4619ad86 1dac8c7a .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/22 21:01 android13-5.15-lts 101e665d55a8 4b25d554 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/22 08:54 android13-5.15-lts 2e66050fb753 4b25d554 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/21 21:08 android13-5.15-lts 2e66050fb753 4b25d554 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/20 19:49 android13-5.15-lts 2e66050fb753 4fca1650 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/18 04:47 android13-5.15-lts ef332e923197 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/12 17:08 android13-5.15-lts 3bfe08931bff 75bb1b32 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/12 13:35 android13-5.15-lts 3bfe08931bff 75bb1b32 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/11 02:24 android13-5.15-lts 5e4635681cf1 6b856513 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/11 00:44 android13-5.15-lts 5e4635681cf1 6b856513 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/10 21:32 android13-5.15-lts 5e4635681cf1 6b856513 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/10 20:03 android13-5.15-lts 5e4635681cf1 6b856513 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/10 15:05 android13-5.15-lts 5e4635681cf1 6b856513 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/07 10:07 android13-5.15-lts 5e4635681cf1 df3dc63b .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/04 15:44 android13-5.15-lts 5e4635681cf1 f00eed24 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/04 13:26 android13-5.15-lts 5e4635681cf1 f00eed24 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/04 08:52 android13-5.15-lts 5e4635681cf1 f00eed24 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/04 02:13 android13-5.15-lts 5e4635681cf1 f00eed24 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/03 22:09 android13-5.15-lts 5e4635681cf1 f00eed24 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/03 20:59 android13-5.15-lts 5e4635681cf1 f00eed24 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/03 17:51 android13-5.15-lts 5e4635681cf1 f00eed24 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/03 15:04 android13-5.15-lts 5e4635681cf1 f00eed24 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/03 07:35 android13-5.15-lts 5e4635681cf1 f00eed24 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/01 13:52 android13-5.15-lts 5e4635681cf1 96eb609f .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/01 12:07 android13-5.15-lts 5e4635681cf1 96eb609f .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/11/01 01:01 android13-5.15-lts 5e4635681cf1 96eb609f .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/31 22:56 android13-5.15-lts 5e4635681cf1 96eb609f .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/28 12:22 android13-5.15-lts 5e4635681cf1 65e8686b .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/28 09:07 android13-5.15-lts 5e4635681cf1 65e8686b .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/28 00:58 android13-5.15-lts 5e4635681cf1 65e8686b .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/27 15:40 android13-5.15-lts 5e4635681cf1 65e8686b .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/27 12:42 android13-5.15-lts 5e4635681cf1 65e8686b .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/27 05:56 android13-5.15-lts 5e4635681cf1 65e8686b .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/26 19:04 android13-5.15-lts 5e4635681cf1 65e8686b .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/20 17:58 android13-5.15-lts 5e4635681cf1 cd6fc0a3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/19 11:17 android13-5.15-lts 5e4635681cf1 cd6fc0a3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/17 14:15 android13-5.15-lts 5e4635681cf1 666f77ed .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/15 05:15 android13-5.15-lts 5e4635681cf1 b01b6661 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/14 10:26 android13-5.15-lts 5e4635681cf1 084d8178 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/13 03:58 android13-5.15-lts 5e4635681cf1 084d8178 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/07 16:46 android13-5.15-lts 80dd36dca275 d7906eff .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/07 10:37 android13-5.15-lts 80dd36dca275 d7906eff .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/07 05:22 android13-5.15-lts 80dd36dca275 d7906eff .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/06 22:43 android13-5.15-lts 80dd36dca275 d7906eff .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/06 15:31 android13-5.15-lts 80dd36dca275 d7906eff .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/09/30 11:05 android13-5.15-lts 8e36931104ac ba29ff75 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/09/26 21:49 android13-5.15-lts b92c0d35d015 9314348a .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/09/24 01:10 android13-5.15-lts b92c0d35d015 89298aad .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/09/23 23:30 android13-5.15-lts b92c0d35d015 89298aad .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
* Struck through repros no longer work on HEAD.