syzbot

 sign-in | mailing list | source | docs
🐞 Open [821]
🐞 Fixed [84]
🐞 Invalid [1061]
Missing Backports [127]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

KASAN: null-ptr-deref Read in do_journal_end

Status: upstream: reported C repro on 2023/04/06 14:35
Bug presence: origin:lts-only
Labels: missing-backport
[Documentation on labels]
Reported-by: syzbot+3c8d7233d04a6103ddb1@syzkaller.appspotmail.com
First crash: 932d, last: 1d18h
Fix commit to backport (bisect log) :
tree: upstream
commit fb6f20ecb121cef4d7946f834a6ee867c4e21b4a
Author: Jan Kara <jack@suse.cz>
Date: Thu Oct 17 10:28:23 2024 +0000

  reiserfs: The last commit

  
Fix bisection: failed (error log, bisect log)
  
Bug presence (2)
Date Name Commit Repro Result
2025/09/09 linux-5.15.y (ToT) 7a6c2d093c45 C [report] KASAN: null-ptr-deref Read in do_journal_end
2025/09/09 upstream (ToT) f777d1112ee5 C Didn't crash
Similar bugs (6)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-6.6 KASAN: null-ptr-deref Read in do_journal_end origin:lts-only 11 C 21 35d 80d 0/2 upstream: reported C repro on 2025/08/05 01:55
linux-6.1 BUG: unable to handle kernel paging request in do_journal_end origin:upstream missing-backport 11 C done 548 1d16h 795d 0/3 upstream: reported C repro on 2023/08/21 09:50
upstream KASAN: null-ptr-deref Read in do_journal_end (2) fs 15 C error done 40699 655d 1181d 0/29 auto-obsoleted due to no activity on 2024/03/18 13:22
upstream KASAN: null-ptr-deref Read in do_journal_end fs 11 1 1461d 1457d 0/29 auto-closed as invalid on 2022/02/20 18:03
linux-4.19 general protection fault in do_journal_end reiserfs 2 C error 3 1010d 1059d 0/1 upstream: reported C repro on 2022/11/30 04:17
linux-4.14 general protection fault in do_journal_end reiserfs 2 C 2 986d 1023d 0/1 upstream: reported C repro on 2023/01/05 12:44
Last patch testing requests (8)
Created Duration User Patch Repo Result
2025/10/17 16:37 12m retest repro linux-5.15.y report log
2025/10/17 16:37 13m retest repro linux-5.15.y report log
2025/10/17 16:37 12m retest repro linux-5.15.y report log
2025/10/17 16:37 15m retest repro linux-5.15.y report log
2025/10/17 16:37 13m retest repro linux-5.15.y report log
2025/07/24 03:15 17m retest repro linux-5.15.y report log
2025/05/05 02:01 18m retest repro linux-5.15.y report log
2025/02/22 15:25 14m retest repro linux-5.15.y report log
Fix bisection attempts (4)
Created Duration User Patch Repo Result
2025/09/18 06:25 8h27m fix candidate upstream OK (1) job log
2025/07/05 22:25 1m fix candidate upstream error job log
2025/03/12 02:57 5m fix candidate upstream error job log
2023/09/25 01:16 0m bisect fix linux-5.15.y error job log

Sample crash report:
==================================================================
BUG: KASAN: null-ptr-deref in instrument_atomic_read include/linux/instrumented.h:71 [inline]
BUG: KASAN: null-ptr-deref in test_bit include/asm-generic/bitops/instrumented-non-atomic.h:134 [inline]
BUG: KASAN: null-ptr-deref in set_buffer_uptodate include/linux/buffer_head.h:147 [inline]
BUG: KASAN: null-ptr-deref in do_journal_end+0xf99/0x42d0 fs/reiserfs/journal.c:4079
Read of size 8 at addr 0000000000000000 by task syz-executor/4296

CPU: 0 PID: 4296 Comm: syz-executor Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
Call Trace:
 <TASK>
 dump_stack_lvl+0x168/0x230 lib/dump_stack.c:106
 __kasan_report mm/kasan/report.c:438 [inline]
 kasan_report+0xd5/0x130 mm/kasan/report.c:451
 check_region_inline mm/kasan/generic.c:-1 [inline]
 kasan_check_range+0x27b/0x290 mm/kasan/generic.c:189
 instrument_atomic_read include/linux/instrumented.h:71 [inline]
 test_bit include/asm-generic/bitops/instrumented-non-atomic.h:134 [inline]
 set_buffer_uptodate include/linux/buffer_head.h:147 [inline]
 do_journal_end+0xf99/0x42d0 fs/reiserfs/journal.c:4079
 reiserfs_sync_fs+0xcc/0x150 fs/reiserfs/super.c:78
 sync_filesystem+0xe6/0x220 fs/sync.c:56
 generic_shutdown_super+0x6b/0x300 fs/super.c:448
 kill_block_super+0x7c/0xe0 fs/super.c:1427
 deactivate_locked_super+0x93/0xf0 fs/super.c:335
 cleanup_mnt+0x418/0x4d0 fs/namespace.c:1139
 task_work_run+0x125/0x1a0 kernel/task_work.c:188
 exit_task_work include/linux/task_work.h:33 [inline]
 do_exit+0x61e/0x20a0 kernel/exit.c:883
 do_group_exit+0x12e/0x300 kernel/exit.c:997
 get_signal+0x6ca/0x12c0 kernel/signal.c:2900
 arch_do_signal_or_restart+0xc1/0x1300 arch/x86/kernel/signal.c:867
 handle_signal_work kernel/entry/common.c:154 [inline]
 exit_to_user_mode_loop+0x9e/0x130 kernel/entry/common.c:178
 exit_to_user_mode_prepare+0xee/0x180 kernel/entry/common.c:214
 __syscall_exit_to_user_mode_work kernel/entry/common.c:296 [inline]
 syscall_exit_to_user_mode+0x16/0x40 kernel/entry/common.c:307
 do_syscall_64+0x58/0xa0 arch/x86/entry/common.c:86
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
RIP: 0033:0x7f454e20f65f
Code: Unable to access opcode bytes at RIP 0x7f454e20f635.
RSP: 002b:00007ffea2543c50 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
RAX: 0000000000000004 RBX: 0000000000000003 RCX: 00007f454e20f65f
RDX: 0000000000000004 RSI: 00007ffea2543d10 RDI: 00000000000000f8
RBP: 00007ffea2543cbc R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
R13: 00000000000927c0 R14: 0000000000012ffd R15: 00007ffea2543d10
 </TASK>
==================================================================

Crashes (472):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/09/14 21:51 linux-5.15.y 43bb85222e53 e2beed91 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/14 20:32 linux-5.15.y 43bb85222e53 e2beed91 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/14 19:29 linux-5.15.y 43bb85222e53 e2beed91 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/14 18:27 linux-5.15.y 43bb85222e53 e2beed91 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/08/31 16:35 linux-5.15.y 01879f56bdde 807a3b61 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2023/07/16 15:05 linux-5.15.y d54cfc420586 35d9ecc5 .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro #1] [mounted in repro #2] [mounted in repro #3] ci2-linux-5-15-kasan-arm64 BUG: unable to handle kernel paging request in do_journal_end
2025/10/22 22:26 linux-5.15.y ac56c046adf4 c0460fcd .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/10/22 08:10 linux-5.15.y ac56c046adf4 252fbbad .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/10/21 07:24 linux-5.15.y ac56c046adf4 9832ed61 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/10/21 07:20 linux-5.15.y ac56c046adf4 9832ed61 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/10/20 18:17 linux-5.15.y ac56c046adf4 d422939c .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/10/19 19:42 linux-5.15.y ac56c046adf4 1c8c8cd8 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/10/18 05:22 linux-5.15.y 29e53a5b1c4f 1c8c8cd8 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/10/01 15:58 linux-5.15.y 43bb85222e53 a1859138 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/30 21:51 linux-5.15.y 43bb85222e53 65a0eece .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/30 12:21 linux-5.15.y 43bb85222e53 86341da6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/29 17:46 linux-5.15.y 43bb85222e53 86341da6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/29 16:29 linux-5.15.y 43bb85222e53 86341da6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/29 07:21 linux-5.15.y 43bb85222e53 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/29 06:00 linux-5.15.y 43bb85222e53 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/29 01:21 linux-5.15.y 43bb85222e53 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/28 22:59 linux-5.15.y 43bb85222e53 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/28 19:42 linux-5.15.y 43bb85222e53 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/27 21:25 linux-5.15.y 43bb85222e53 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/27 02:14 linux-5.15.y 43bb85222e53 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/27 00:24 linux-5.15.y 43bb85222e53 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/26 12:21 linux-5.15.y 43bb85222e53 0abd0691 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/26 06:44 linux-5.15.y 43bb85222e53 0abd0691 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/26 02:21 linux-5.15.y 43bb85222e53 0abd0691 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/26 00:19 linux-5.15.y 43bb85222e53 0abd0691 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/24 10:27 linux-5.15.y 43bb85222e53 0abd0691 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/24 10:27 linux-5.15.y 43bb85222e53 0abd0691 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/23 23:36 linux-5.15.y 43bb85222e53 e667a34f .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/23 22:03 linux-5.15.y 43bb85222e53 e667a34f .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/22 17:43 linux-5.15.y 43bb85222e53 0ac7291c .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/22 16:00 linux-5.15.y 43bb85222e53 0ac7291c .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/22 15:45 linux-5.15.y 43bb85222e53 0ac7291c .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/22 05:16 linux-5.15.y 43bb85222e53 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/22 00:21 linux-5.15.y 43bb85222e53 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/21 15:23 linux-5.15.y 43bb85222e53 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/21 14:22 linux-5.15.y 43bb85222e53 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/21 07:15 linux-5.15.y 43bb85222e53 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/21 05:20 linux-5.15.y 43bb85222e53 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/21 04:18 linux-5.15.y 43bb85222e53 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/21 02:40 linux-5.15.y 43bb85222e53 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/20 22:01 linux-5.15.y 43bb85222e53 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/20 10:44 linux-5.15.y 43bb85222e53 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/20 09:26 linux-5.15.y 43bb85222e53 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/19 18:13 linux-5.15.y 43bb85222e53 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/09/19 16:23 linux-5.15.y 43bb85222e53 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2023/04/06 14:34 linux-5.15.y d86dfc4d95cd 08707520 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan KASAN: null-ptr-deref Read in do_journal_end
2025/08/05 13:53 linux-5.15.y c79648372d02 37880f40 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 BUG: unable to handle kernel paging request in do_journal_end
2025/08/05 13:51 linux-5.15.y c79648372d02 37880f40 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 BUG: unable to handle kernel paging request in do_journal_end
* Struck through repros no longer work on HEAD.