syzbot

 sign-in | mailing list | source | docs
🐞 Open [848]
🐞 Fixed [87]
🐞 Invalid [1293]
Missing Backports [132]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

general protection fault in step_into

Status: upstream: reported C repro on 2024/04/13 08:21
Bug presence: origin:lts-only
[Documentation on labels]
Reported-by: syzbot+6ec068ed1982a8402704@syzkaller.appspotmail.com
First crash: 743d, last: 5d01h
Fix commit to backport (bisect log) :
tree: upstream
commit 7ffa8f3d30236e0ab897c30bdb01224ff1fe1c89
Author: Matthew Wilcox (Oracle) <willy@infradead.org>
Date: Mon Jan 15 07:20:25 2024 +0000

  fs: Remove NTFS classic

  
Bug presence (2)
Date Name Commit Repro Result
2024/04/29 linux-5.15.y (ToT) b925f60c6ee7 C [report] general protection fault in step_into
2024/04/29 upstream (ToT) e67572cd2204 C Didn't crash
Similar bugs (8)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream general protection fault in step_into fs 2 1 2066d 2062d 0/29 auto-closed as invalid on 2020/11/28 01:59
android-5-10 general protection fault in step_into 2 C done 315 4d02h 1078d 0/2 upstream: reported C repro on 2023/05/14 14:12
linux-6.1 KASAN: null-ptr-deref Read in step_into origin:lts-only 11 C inconclusive 108 64d 750d 0/3 upstream: reported C repro on 2024/04/06 11:08
android-5-15 general protection fault in step_into origin:downstream 2 C done 126 6h01m 1078d 0/2 upstream: reported C repro on 2023/05/14 14:01
android-6-1 general protection fault in step_into origin:downstream 2 C done 99 8d07h 1078d 0/2 upstream: reported C repro on 2023/05/14 14:12
linux-6.6 general protection fault in step_into origin:lts-only 2 C inconclusive 22 6d19h 224d 0/2 upstream: reported C repro on 2025/09/14 20:10
android-6-12 general protection fault in step_into origin:downstream 2 C 37 14d 300d 0/1 premoderation: reported C repro on 2025/06/30 23:58
upstream BUG: unable to handle kernel paging request in step_into ntfs3 11 C error done 5 842d 1208d 0/29 auto-obsoleted due to no activity on 2024/05/25 15:27
Last patch testing requests (10)
Created Duration User Patch Repo Result
2026/04/22 02:29 51m retest repro linux-5.15.y report log
2026/04/22 02:29 14m retest repro linux-5.15.y report log
2026/04/22 02:29 27m retest repro linux-5.15.y report log
2026/03/02 01:49 13m retest repro linux-5.15.y report log
2026/02/12 19:04 10m retest repro linux-5.15.y report log
2026/02/12 19:04 46m retest repro linux-5.15.y report log
2026/02/12 19:04 37m retest repro linux-5.15.y report log
2026/02/12 19:04 10m retest repro linux-5.15.y report log
2026/02/12 19:04 13m retest repro linux-5.15.y report log
2026/01/29 16:38 52m retest repro linux-5.15.y report log
Fix bisection attempts (1)
Created Duration User Patch Repo Result
2024/06/23 11:11 6h14m fix candidate upstream OK (1) job log

Sample crash report:
ntfs: (device loop0): ntfs_ucstonls(): Unicode name contains characters that cannot be converted to character set cp932.  You might want to try to use the mount option nls=utf8.
ntfs: (device loop0): ntfs_filldir(): Skipping unrepresentable inode 0x4.
ntfs: (device loop0): ntfs_lookup(): ntfs_lookup_ino_by_name() failed with error code -24.
general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] PREEMPT SMP KASAN
KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f]
CPU: 1 PID: 4320 Comm: syz-executor Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
RIP: 0010:traverse_mounts fs/namei.c:1386 [inline]
RIP: 0010:handle_mounts fs/namei.c:1506 [inline]
RIP: 0010:step_into+0x136/0xd10 fs/namei.c:1814
Code: 4c 8b 74 24 18 c6 44 24 7f 00 43 0f b6 44 25 00 84 c0 0f 85 74 0a 00 00 45 8b 36 4c 8b bc 24 a8 00 00 00 4c 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 73 0a 00 00 45 8b 3f 44 89 fe 81 e6 00
RSP: 0018:ffffc9000345fae0 EFLAGS: 00010206
RAX: 0000000000000003 RBX: ffffc9000345fcc0 RCX: ffff88802a7d5940
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: ffffc9000345fbe8 R08: 0000000000000000 R09: 1ffff1100ba427b8
R10: dffffc0000000000 R11: ffffed100ba427b9 R12: dffffc0000000000
R13: 1ffff9200068bf9f R14: 0000000000000080 R15: 0000000000000018
FS:  00005555735e7500(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000555573612aa8 CR3: 000000005c513000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 lookup_last fs/namei.c:2439 [inline]
 path_lookupat+0x169/0x440 fs/namei.c:2463
 filename_lookup+0x214/0x540 fs/namei.c:2492
 user_path_at_empty+0x40/0x190 fs/namei.c:2891
 user_path_at include/linux/namei.h:57 [inline]
 ksys_umount fs/namespace.c:1786 [inline]
 __do_sys_umount fs/namespace.c:1794 [inline]
 __se_sys_umount fs/namespace.c:1792 [inline]
 __x64_sys_umount+0xf9/0x170 fs/namespace.c:1792
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
RIP: 0033:0x7f65a7ca2a57
Code: a2 c7 05 9c fc 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
RSP: 002b:00007fff464317a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f65a7ca2a57
RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff46431860
RBP: 00007fff46431860 R08: 00007fff46432860 R09: 00000000ffffffff
R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff46432950
R13: 00007f65a7d37048 R14: 00005555735e74e8 R15: 00007fff46434b10
 </TASK>
Modules linked in:
---[ end trace 299d8f246760ecfe ]---
RIP: 0010:traverse_mounts fs/namei.c:1386 [inline]
RIP: 0010:handle_mounts fs/namei.c:1506 [inline]
RIP: 0010:step_into+0x136/0xd10 fs/namei.c:1814
Code: 4c 8b 74 24 18 c6 44 24 7f 00 43 0f b6 44 25 00 84 c0 0f 85 74 0a 00 00 45 8b 36 4c 8b bc 24 a8 00 00 00 4c 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 73 0a 00 00 45 8b 3f 44 89 fe 81 e6 00
RSP: 0018:ffffc9000345fae0 EFLAGS: 00010206
RAX: 0000000000000003 RBX: ffffc9000345fcc0 RCX: ffff88802a7d5940
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: ffffc9000345fbe8 R08: 0000000000000000 R09: 1ffff1100ba427b8
R10: dffffc0000000000 R11: ffffed100ba427b9 R12: dffffc0000000000
R13: 1ffff9200068bf9f R14: 0000000000000080 R15: 0000000000000018
FS:  00005555735e7500(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000557133896950 CR3: 000000005c513000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
----------------
Code disassembly (best guess):
   0:	4c 8b 74 24 18       	mov    0x18(%rsp),%r14
   5:	c6 44 24 7f 00       	movb   $0x0,0x7f(%rsp)
   a:	43 0f b6 44 25 00    	movzbl 0x0(%r13,%r12,1),%eax
  10:	84 c0                	test   %al,%al
  12:	0f 85 74 0a 00 00    	jne    0xa8c
  18:	45 8b 36             	mov    (%r14),%r14d
  1b:	4c 8b bc 24 a8 00 00 	mov    0xa8(%rsp),%r15
  22:	00
  23:	4c 89 f8             	mov    %r15,%rax
  26:	48 c1 e8 03          	shr    $0x3,%rax
* 2a:	42 0f b6 04 20       	movzbl (%rax,%r12,1),%eax <-- trapping instruction
  2f:	84 c0                	test   %al,%al
  31:	0f 85 73 0a 00 00    	jne    0xaaa
  37:	45 8b 3f             	mov    (%r15),%r15d
  3a:	44 89 fe             	mov    %r15d,%esi
  3d:	81                   	.byte 0x81
  3e:	e6 00                	out    %al,$0x0

Crashes (312):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2026/04/06 19:24 linux-5.15.y 91d48252ad4b 4440e7c2 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan general protection fault in step_into
2025/12/20 05:14 linux-5.15.y 68efe5a6c16a d6526ea3 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan general protection fault in step_into
2024/04/13 10:12 linux-5.15.y cdfd0a7f0139 c8349e48 .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan general protection fault in step_into
2025/07/05 06:13 linux-5.15.y 3dea0e7f549e d869b261 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/03/21 04:55 linux-5.15.y 0c935c049b5c 62330552 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/03/15 21:43 linux-5.15.y 0c935c049b5c e2826670 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/02/26 10:20 linux-5.15.y c16c81c81336 d34966d1 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2024/11/10 18:59 linux-5.15.y 3c17fc483905 6b856513 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2024/06/12 23:07 linux-5.15.y c61bd26ae81a f815599d .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2026/04/06 16:50 linux-5.15.y 91d48252ad4b 4440e7c2 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2026/02/16 00:54 linux-5.15.y e45d5d41c134 1e62d198 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2026/01/15 14:17 linux-5.15.y 68efe5a6c16a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2026/01/10 14:50 linux-5.15.y 68efe5a6c16a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2026/01/06 17:09 linux-5.15.y 68efe5a6c16a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2026/01/03 09:09 linux-5.15.y 68efe5a6c16a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/12/25 05:07 linux-5.15.y 68efe5a6c16a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/12/25 01:52 linux-5.15.y 68efe5a6c16a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/12/23 04:25 linux-5.15.y 68efe5a6c16a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/12/21 01:10 linux-5.15.y 68efe5a6c16a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/12/20 20:50 linux-5.15.y 68efe5a6c16a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/12/19 12:29 linux-5.15.y 68efe5a6c16a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/12/19 10:30 linux-5.15.y 68efe5a6c16a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/12/18 02:21 linux-5.15.y 68efe5a6c16a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/12/05 03:49 linux-5.15.y cc5ec8769306 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/12/04 08:14 linux-5.15.y cc5ec8769306 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/11/30 14:06 linux-5.15.y cc5ec8769306 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/11/30 08:29 linux-5.15.y cc5ec8769306 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/11/08 21:55 linux-5.15.y cc5ec8769306 4e1406b4 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/08/17 09:12 linux-5.15.y c79648372d02 1804e95e .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/08/17 09:09 linux-5.15.y c79648372d02 1804e95e .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/08/17 08:08 linux-5.15.y c79648372d02 1804e95e .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/08/17 07:57 linux-5.15.y c79648372d02 1804e95e .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/06/09 09:24 linux-5.15.y 1c700860e8bc 4826c28e .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/06/02 06:27 linux-5.15.y 98f47d0e9b8c 3d2f584d .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/06/02 00:23 linux-5.15.y 98f47d0e9b8c 3d2f584d .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2024/04/13 08:21 linux-5.15.y cdfd0a7f0139 c8349e48 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in step_into
2025/08/05 07:10 linux-5.15.y c79648372d02 f5bcc8dc .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/07/26 18:03 linux-5.15.y c79648372d02 fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/07/16 02:13 linux-5.15.y 89950c454265 03fcfc4b .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/07/12 03:03 linux-5.15.y 2f693b607545 3cda49cf .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/07/05 05:05 linux-5.15.y 3dea0e7f549e d869b261 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/06/15 06:46 linux-5.15.y 1c700860e8bc 5f4b362d .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/06/04 00:25 linux-5.15.y 98f47d0e9b8c a30356b7 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/06/01 23:16 linux-5.15.y 98f47d0e9b8c 3d2f584d .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/05/31 10:33 linux-5.15.y 98f47d0e9b8c 3d2f584d .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/05/23 23:55 linux-5.15.y 98f47d0e9b8c f8cc0c83 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/05/06 13:02 linux-5.15.y 16fdf2c7111b ae98e6b9 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/05/05 20:49 linux-5.15.y 16fdf2c7111b 6ca47dd8 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/05/04 19:07 linux-5.15.y 16fdf2c7111b b0714e37 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/05/04 19:00 linux-5.15.y 16fdf2c7111b b0714e37 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/04/27 14:55 linux-5.15.y f7347f400572 c6b4fb39 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/04/26 05:21 linux-5.15.y f7347f400572 c6b4fb39 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/04/26 03:38 linux-5.15.y f7347f400572 c6b4fb39 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
2025/04/19 02:50 linux-5.15.y f7347f400572 2a20f901 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 KASAN: null-ptr-deref Read in step_into
* Struck through repros no longer work on HEAD.