syzbot

 sign-in | mailing list | source | docs
🐞 Open [109]
🐞 Fixed [280]
🐞 Invalid [852]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

panic: malloc: allocation too large, type = NUM, size = ADDR (3)

Status: fixed on 2025/02/06 06:14
Reported-by: syzbot+3b7e5274349f7165bf5f@syzkaller.appspotmail.com
Fix commit: 910ed27a3d72 Limit net.bpf.maxbufsize sysctl(8) to a value that malloc(9) can handle. Introduce MALLOC_MAX definition to keep this value in sync and use it system wide.
First crash: 80d, last: 78d
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
openbsd panic: malloc: allocation too large, type = NUM, size = ADDR (4) 15 6d07h 77d 0/3 upstream: reported on 2025/02/07 03:03
openbsd panic: malloc: allocation too large, type = NUM, size = ADDR (2) 126 155d 245d 0/3 auto-obsoleted due to no activity on 2025/01/09 10:32
openbsd panic: malloc: allocation too large, type = NUM, size = ADDR C 3 1226d 1227d 3/3 fixed on 2021/12/21 15:21

Sample crash report:
panic: malloc: allocation too large, type = 2, size = 1768304430
Starting stack trace...
panic(ffffffff8309d87b) at panic+0x1d0 sys/kern/subr_prf.c:229
malloc(69662f2e,2,2) at malloc+0xcf4 sys/kern/kern_malloc.c:334
bpf_allocbufs(ffff800001314600) at bpf_allocbufs+0x85 sys/net/bpf.c:1659
bpf_setif(ffff800001314600,ffff80003c5dc370) at bpf_setif+0x17d sys/net/bpf.c:1201
bpfioctl(41700,8020426c,ffff80003c5dc370,1,ffff8000ffff91d8) at bpfioctl+0xd2a sys/net/bpf.c:955
VOP_IOCTL(fffffd8060abed98,8020426c,ffff80003c5dc370,1,fffffd807f7d3270,ffff8000ffff91d8) at VOP_IOCTL+0xac sys/kern/vfs_vops.c:264
vn_ioctl(fffffd805d8afb48,8020426c,ffff80003c5dc370,ffff8000ffff91d8) at vn_ioctl+0xf8 sys/kern/vfs_vnops.c:531
sys_ioctl(ffff8000ffff91d8,ffff80003c5dc550,ffff80003c5dc4a0) at sys_ioctl+0x5c3
syscall(ffff80003c5dc550) at syscall+0xbc6 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff80003c5dc550) at syscall+0xbc6 sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xcd3662aefb0, count: 247
End of stack trace.

Crashes (58):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/02/06 05:16 openbsd 52d5bc939dc8 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/06 03:29 openbsd 52d5bc939dc8 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/06 01:36 openbsd 52d5bc939dc8 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/06 00:28 openbsd 52d5bc939dc8 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 22:46 openbsd 52d5bc939dc8 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 21:19 openbsd 52d5bc939dc8 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 19:14 openbsd 52d5bc939dc8 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 17:12 openbsd 52d5bc939dc8 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 15:16 openbsd 9d84dc8a699e 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 13:06 openbsd 9d84dc8a699e 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 11:16 openbsd 9d84dc8a699e 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 08:47 openbsd 9d84dc8a699e 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 08:41 openbsd 9d84dc8a699e 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 07:22 openbsd 9d84dc8a699e 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 07:16 openbsd 9d84dc8a699e 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 07:06 openbsd 9d84dc8a699e 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 05:43 openbsd 9d84dc8a699e 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 04:29 openbsd 9d84dc8a699e 5896748e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 02:47 openbsd 4dc45f023929 44c01590 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 02:13 openbsd 4dc45f023929 44c01590 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 00:52 openbsd 4dc45f023929 44c01590 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/05 00:01 openbsd 4dc45f023929 44c01590 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 23:57 openbsd 4dc45f023929 44c01590 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 21:59 openbsd 4dc45f023929 44c01590 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 21:01 openbsd 4dc45f023929 44c01590 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 19:45 openbsd 4dc45f023929 44c01590 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 19:04 openbsd 4dc45f023929 44c01590 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 15:33 openbsd 4dc45f023929 44c01590 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 14:13 openbsd 4dc45f023929 8f267cef .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 11:28 openbsd 1eab3ea7ad62 8f267cef .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 07:18 openbsd 1eab3ea7ad62 8f267cef .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 06:22 openbsd 1eab3ea7ad62 8f267cef .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 05:23 openbsd 1eab3ea7ad62 8f267cef .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 02:28 openbsd 1eab3ea7ad62 8f267cef .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 02:13 openbsd 1eab3ea7ad62 8f267cef .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 02:11 openbsd 1eab3ea7ad62 8f267cef .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 01:48 openbsd 1eab3ea7ad62 8f267cef .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 00:34 openbsd 1eab3ea7ad62 8f267cef .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/04 00:19 openbsd 1eab3ea7ad62 8f267cef .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/03 23:59 openbsd 1eab3ea7ad62 8f267cef .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/03 23:36 openbsd 1eab3ea7ad62 8f267cef .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/03 21:49 openbsd db5d28f093d6 a21a8419 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/03 21:36 openbsd db5d28f093d6 a21a8419 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/03 21:16 openbsd db5d28f093d6 a21a8419 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/03 21:16 openbsd db5d28f093d6 a21a8419 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/03 21:13 openbsd db5d28f093d6 a21a8419 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/03 19:52 openbsd db5d28f093d6 a21a8419 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/03 18:56 openbsd db5d28f093d6 a21a8419 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/03 18:23 openbsd db5d28f093d6 a21a8419 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/03 18:00 openbsd db5d28f093d6 a21a8419 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
2025/02/03 13:54 openbsd db5d28f093d6 a21a8419 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore panic: malloc: allocation too large, type = NUM, size = ADDR
* Struck through repros no longer work on HEAD.