syzbot

 sign-in | mailing list | source | docs
🐞 Open [150]
🐞 Fixed [270]
🐞 Invalid [679]
Kernel Health Bugs/Month Bug Lifetimes Fuzzing Crashes
💬 Send us feedback

panic: ffs_blkfree: bad size (4)

Status: upstream: reported on 2024/05/10 03:16
Reported-by: syzbot+399f63dcd94db9aa6887@syzkaller.appspotmail.com
First crash: 120d, last: 22d
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
openbsd panic: ffs_blkfree: bad size (3) 1 239d 239d 0/3 auto-obsoleted due to no activity on 2024/04/11 20:56
openbsd panic: ffs_blkfree: bad size 2 1893d 1897d 0/3 auto-closed as invalid on 2019/10/25 14:12
openbsd panic: ffs_blkfree: bad size (2) 1 344d 344d 0/3 auto-obsoleted due to no activity on 2023/12/28 07:11

Sample crash report:
panic: ffs_blkfree: bad size
Starting stack trace...
panic(ffffffff83007351) at panic+0x1d0 sys/kern/subr_prf.c:229
ffs_blkfree(fffffd8070997000,3,4000) at ffs_blkfree+0xd33 sys/ufs/ffs/ffs_alloc.c:1285
ffs_indirtrunc(fffffd8070997000,fffffffffffffff4,1d4840,ffffffffffffffff,0,ffff80002a0ee440) at ffs_indirtrunc+0x7b3
ffs_truncate(fffffd8070997000,0,0,ffffffffffffffff) at ffs_trun
cate+0x1063
ufs_inactive(ffff80002a0ee598) at ufs_inactive+0x203 sys/ufs/ufs/ufs_inode.c:84
VOP_INACTIVE(fffffd8077176390,ffff8000ffff6530) at VOP_INACTIVE+0x107 sys/kern/vfs_vops.c:495
vrele(fffffd8077176390) at vrele+0x129 sys/kern/vfs_subr.c:827
ktrsettrace(ffff8000ffffa450,80000b1c,fffffd805f793008,fffffd807f7d3888) at ktrsettrace+0xe7 sys/kern/kern_ktrace.c:122
ktrops(ffff8000ffff6530,ffff8000ffffa450,0,80000b1c,fffffd805f793008,fffffd807f7d3888) at ktrops+0x271 sys/kern/kern_ktrace.c:564
doktrace(fffffd805f793008,4,b1c,0,ffff8000ffff6530) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline]
doktrace(fffffd805f793008,4,b1c,0,ffff8000ffff6530) at doktrace+0x6dd sys/kern/kern_ktrace.c:508
sys_ktrace(ffff8000ffff6530,ffff80002a0eea00,ffff80002a0ee950) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549
syscall(ffff80002a0eea00) at syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline]
syscall(ffff80002a0eea00) at syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x310e43e3e70, count: 244
End of stack trace.

Crashes (5):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/08/16 17:31 openbsd fd042ffdc70d e1c76ab2 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: ffs_blkfree: bad size
2024/08/10 19:24 openbsd 9221c00b3e5d 6f4edef4 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: ffs_blkfree: bad size
2024/08/06 02:54 openbsd 4ad77004d94b e1bdb00a .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: ffs_blkfree: bad size
2024/07/27 17:35 openbsd 8c144870646b 46eb10b7 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: ffs_blkfree: bad size
2024/05/10 03:15 openbsd fbadb84b3757 de979bc2 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: ffs_blkfree: bad size
* Struck through repros no longer work on HEAD.