syzbot

 sign-in | mailing list | source | docs
🐞 Open [126]
🐞 Fixed [23]
🐞 Invalid [370]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

UBSAN: shift-out-of-bounds in parse_options

Status: upstream: reported C repro on 2023/01/08 05:56
Bug presence: origin:lts
Subsystems: ext4
[Documentation on labels]
Reported-by: syzbot+298c1c62e38088db169c@syzkaller.appspotmail.com
First crash: 1259d, last: 18m
Cause bisection: failed (error log, bisect log)
  
Bug presence (2)
Date Name Commit Repro Result
2023/10/28 lts (merge base) 12952a23a5da C [report] UBSAN: shift-out-of-bounds in parse_options
2023/10/28 upstream (ToT) 56567a20b22b C Didn't crash
Similar bugs (3)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-6.1 UBSAN: shift-out-of-bounds in parse_options origin:lts-only -1 C inconclusive 354 4d08h 675d 0/3 upstream: reported C repro on 2024/08/13 23:52
linux-5.15 UBSAN: shift-out-of-bounds in parse_options origin:lts-only -1 C unreliable 478 5d08h 943d 0/3 upstream: reported C repro on 2023/11/19 20:08
android-6-1 UBSAN: shift-out-of-bounds in parse_options origin:lts -1 C 870 4h26m 672d 0/2 upstream: reported C repro on 2024/08/17 08:59
Last patch testing requests (2)
Created Duration User Patch Repo Result
2023/04/12 05:56 22m tudor.ambarus@linaro.org git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4.git dev OK log
2023/04/07 11:02 12m tudor.ambarus@linaro.org git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git linux-5.15.y report log
Fix bisection attempts (8)
Created Duration User Patch Repo Result
2024/06/03 21:48 50m bisect fix android13-5.15-lts OK (0) job log log
2023/12/16 15:24 36m bisect fix android13-5.15-lts OK (0) job log log
2023/10/28 01:39 34m bisect fix android13-5.15-lts OK (0) job log log
2023/06/09 23:50 16m bisect fix android13-5.15-lts OK (0) job log log
2023/05/10 18:57 41m bisect fix android13-5.15-lts OK (0) job log log
2023/04/09 01:19 22m bisect fix android13-5.15-lts OK (0) job log log
2023/03/09 18:29 45m bisect fix android13-5.15-lts OK (0) job log log
2023/02/07 17:54 18m bisect fix android13-5.15-lts OK (0) job log log

Sample crash report:
loop2: detected capacity change from 0 to 40427
================================================================================
UBSAN: shift-out-of-bounds in fs/f2fs/super.c:934:5
shift exponent 71 is too large for 32-bit type 'int'
CPU: 1 PID: 371 Comm: syz.2.17 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
Call Trace:
 <TASK>
 __dump_stack+0x21/0x30 lib/dump_stack.c:88
 dump_stack_lvl+0x110/0x170 lib/dump_stack.c:106
 dump_stack+0x15/0x20 lib/dump_stack.c:113
 ubsan_epilogue+0xe/0x40 lib/ubsan.c:151
 __ubsan_handle_shift_out_of_bounds+0x37c/0x400 lib/ubsan.c:321
 parse_options+0x4834/0x4860 fs/f2fs/super.c:934
 f2fs_fill_super+0x1feb/0x6dc0 fs/f2fs/super.c:4242
 mount_bdev+0x2ae/0x3e0 fs/super.c:1400
 f2fs_mount+0x34/0x40 fs/f2fs/super.c:4708
 legacy_get_tree+0xed/0x190 fs/fs_context.c:611
 vfs_get_tree+0x89/0x260 fs/super.c:1530
 do_new_mount+0x25a/0xa20 fs/namespace.c:3034
 path_mount+0x659/0xff0 fs/namespace.c:3364
 do_mount fs/namespace.c:3377 [inline]
 __do_sys_mount fs/namespace.c:3585 [inline]
 __se_sys_mount+0x320/0x390 fs/namespace.c:3562
 __x64_sys_mount+0xbf/0xd0 fs/namespace.c:3562
 x64_sys_call+0x6bf/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:166
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
RIP: 0033:0x7f48306b20ca
Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffc1a44c6a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007ffc1a44c730 RCX: 00007f48306b20ca
RDX: 0000200000000000 RSI: 0000200000000040 RDI: 00007ffc1a44c6f0
RBP: 0000200000000000 R08: 00007ffc1a44c730 R09: 0000000000000008
R10: 0000000000000008 R11: 0000000000000246 R12: 0000200000000040
R13: 00007ffc1a44c6f0 R14: 0000000000005527 R15: 0000200000000080
 </TASK>
================================================================================
F2FS-fs (loop2): Not support 128, larger than 256

Crashes (2023):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2026/05/16 19:15 android13-5.15-lts 7f4b368e0410 a15a64a6 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/05/11 17:40 android13-5.15-lts 5628bb722180 845acb1c .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1 (corrupt fs)] [mounted in repro #2 (corrupt fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/04/29 01:44 android13-5.15-lts e63ebedc51b2 95008c03 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (clean fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/04/15 06:18 android13-5.15-lts 7fad219d720d e2e976a8 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/03/19 18:22 android13-5.15-lts 60dba25bf158 bd6dcb30 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/02/22 06:38 android13-5.15-lts 13d6d33696ef 6e7b5511 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1 (clean fs)] [mounted in repro #2 (corrupt fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/02/14 00:35 android13-5.15-lts 13d6d33696ef 1e62d198 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/01/07 11:15 android13-5.15-lts 050dc55b0457 d6526ea3 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2025/12/01 16:59 android13-5.15-lts 057fdbf6d3c7 d6526ea3 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1 (clean fs)] [mounted in repro #2 (clean fs)] [mounted in repro #3 (corrupt fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2025/11/26 16:45 android13-5.15-lts 057fdbf6d3c7 d6526ea3 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2025/11/22 01:42 android13-5.15-lts 057fdbf6d3c7 4fb8ef37 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2025/09/16 05:16 android13-5.15-lts 8d934e0056f7 e2beed91 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2025/08/10 03:44 android13-5.15-lts f32b52534f1d 32a0e5ed .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2025/06/21 16:31 android13-5.15-lts e678c93d43cc d6cdfb8a .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2025/05/19 16:09 android13-5.15-lts 57725b368731 b84f0537 .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2025/04/01 11:08 android13-5.15-lts 5e1b899f19c3 36d76a97 .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (clean fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2025/02/02 04:51 android13-5.15-lts d1a25a6a4b3b 568559e4 .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2025/02/01 02:51 android13-5.15-lts d1a25a6a4b3b aa47157c .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2025/01/30 06:53 android13-5.15-lts d1a25a6a4b3b afe4eff5 .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/12/15 03:15 android13-5.15-lts 6f0de8f8a165 7cbfbb3a .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1] [mounted in repro #2] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/10/17 14:28 android13-5.15-lts 5e4635681cf1 666f77ed .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2024/07/07 14:28 android13-5.15-lts 9044d25b8ff5 2a40360c .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1] [mounted in repro #2] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2023/12/28 08:08 android13-5.15-lts 28e3f5851a99 fb427a07 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2023/11/02 05:55 android13-5.15-lts 61cfd264993d 69904c9f .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2023/07/03 09:57 android13-5.15-lts 241da2ad5601 bfc47836 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2023/01/08 05:54 android13-5.15-lts c73b4619ad86 1dac8c7a .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2025/07/30 10:24 android13-5.15-lts f32b52534f1d f8f2b4da .config console log report syz / log [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/20 17:57 android13-5.15-lts b4be5dda13e9 43bfcdb0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/20 15:29 android13-5.15-lts b4be5dda13e9 43bfcdb0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/20 12:14 android13-5.15-lts b4be5dda13e9 43bfcdb0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/20 09:45 android13-5.15-lts b4be5dda13e9 43bfcdb0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/20 08:27 android13-5.15-lts b4be5dda13e9 43bfcdb0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/20 06:56 android13-5.15-lts b4be5dda13e9 43bfcdb0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/20 04:04 android13-5.15-lts b4be5dda13e9 43bfcdb0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/19 15:54 android13-5.15-lts b4be5dda13e9 570c59ee .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/19 06:27 android13-5.15-lts b4be5dda13e9 a776b0d0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/19 01:34 android13-5.15-lts b4be5dda13e9 a776b0d0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/18 09:25 android13-5.15-lts b4be5dda13e9 b62b3ded .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/18 04:10 android13-5.15-lts b4be5dda13e9 b62b3ded .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/17 21:24 android13-5.15-lts b4be5dda13e9 b62b3ded .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/17 19:58 android13-5.15-lts b4be5dda13e9 b62b3ded .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/17 09:02 android13-5.15-lts b4be5dda13e9 62cc6db3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/17 07:54 android13-5.15-lts b4be5dda13e9 62cc6db3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/17 04:32 android13-5.15-lts b4be5dda13e9 62cc6db3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/16 15:55 android13-5.15-lts b4be5dda13e9 a3998659 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/16 10:10 android13-5.15-lts b4be5dda13e9 50bb0618 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/16 08:33 android13-5.15-lts b4be5dda13e9 50bb0618 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/16 05:51 android13-5.15-lts b4be5dda13e9 50bb0618 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/16 03:23 android13-5.15-lts b4be5dda13e9 50bb0618 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/15 02:37 android13-5.15-lts 30f5554a846e 1d2f3589 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/15 00:59 android13-5.15-lts 30f5554a846e 1d2f3589 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/14 21:09 android13-5.15-lts 30f5554a846e 1d2f3589 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/14 16:18 android13-5.15-lts 30f5554a846e 1d2f3589 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/14 14:11 android13-5.15-lts 30f5554a846e 1d2f3589 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/14 11:53 android13-5.15-lts 30f5554a846e 1d2f3589 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/14 06:01 android13-5.15-lts 30f5554a846e 1d2f3589 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/13 21:10 android13-5.15-lts 30f5554a846e 1d2f3589 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/13 15:23 android13-5.15-lts 30f5554a846e 1d2f3589 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/12 22:16 android13-5.15-lts 30f5554a846e 1d2f3589 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/12 11:49 android13-5.15-lts 30f5554a846e e93da63e .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/11 23:46 android13-5.15-lts 30f5554a846e d93a6ab6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/10 21:14 android13-5.15-lts 30f5554a846e f79bac11 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/10 19:24 android13-5.15-lts 30f5554a846e f79bac11 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/10 04:13 android13-5.15-lts 30f5554a846e 34dab4be .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/09 22:12 android13-5.15-lts 30f5554a846e c36c07f6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/08 13:29 android13-5.15-lts 8969ee93a483 cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/08 03:25 android13-5.15-lts 8969ee93a483 cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/07 21:42 android13-5.15-lts 8969ee93a483 cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/07 20:35 android13-5.15-lts 8969ee93a483 cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
2026/06/07 15:21 android13-5.15-lts 8969ee93a483 cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 UBSAN: shift-out-of-bounds in parse_options
* Struck through repros no longer work on HEAD.