syzbot

 sign-in | mailing list | source | docs
🐞 Open [869]
🐞 Fixed [141]
🐞 Invalid [983]
Missing Backports [73]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

WARNING in udf_free_blocks (2)

Status: upstream: reported C repro on 2025/06/22 21:08
Bug presence: origin:upstream
[Documentation on labels]
Reported-by: syzbot+77d2124cf51079cbfcad@syzkaller.appspotmail.com
First crash: 210d, last: 4d10h
Bug presence (1)
Date Name Commit Repro Result
2025/06/25 upstream (ToT) c4dce0c094a8 C [report] KASAN: use-after-free Read in udf_unlink
Similar bugs (5)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-6.1 WARNING in udf_free_blocks -1 1 379d 379d 0/3 auto-obsoleted due to no activity on 2025/04/15 10:15
linux-5.15 WARNING in udf_free_blocks -1 1 616d 616d 0/3 auto-obsoleted due to no activity on 2024/08/21 03:04
upstream WARNING in udf_free_blocks (2) udf -1 1 761d 759d 0/29 auto-obsoleted due to no activity on 2024/03/29 02:59
linux-5.15 WARNING in udf_free_blocks (2) origin:upstream -1 C 30 11d 372d 0/3 upstream: reported C repro on 2025/01/12 10:23
upstream WARNING in udf_free_blocks udf -1 6 891d 1009d 0/29 auto-obsoleted due to no activity on 2023/11/20 09:23
Fix bisection attempts (4)
Created Duration User Patch Repo Result
2025/11/30 21:46 2h26m bisect fix linux-6.1.y OK (0) job log log
2025/10/30 22:34 2h33m bisect fix linux-6.1.y OK (0) job log log
2025/08/29 10:46 1h34m bisect fix linux-6.1.y OK (0) job log log
2025/07/26 02:56 2h51m bisect fix linux-6.1.y OK (0) job log log

Sample crash report:
------------[ cut here ]------------
WARNING: CPU: 1 PID: 4375 at fs/udf/udfdecl.h:127 udf_updated_lvid fs/udf/udfdecl.h:125 [inline]
WARNING: CPU: 1 PID: 4375 at fs/udf/udfdecl.h:127 udf_add_free_space fs/udf/balloc.c:137 [inline]
WARNING: CPU: 1 PID: 4375 at fs/udf/udfdecl.h:127 udf_bitmap_free_blocks fs/udf/balloc.c:183 [inline]
WARNING: CPU: 1 PID: 4375 at fs/udf/udfdecl.h:127 udf_free_blocks+0x7b0/0x16c0 fs/udf/balloc.c:683
Modules linked in:
CPU: 1 PID: 4375 Comm: syz-executor Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
RIP: 0010:udf_updated_lvid fs/udf/udfdecl.h:125 [inline]
RIP: 0010:udf_add_free_space fs/udf/balloc.c:137 [inline]
RIP: 0010:udf_bitmap_free_blocks fs/udf/balloc.c:183 [inline]
RIP: 0010:udf_free_blocks+0x7b0/0x16c0 fs/udf/balloc.c:683
Code: 00 e8 d4 f6 0b ff 4c 39 7c 24 70 0f 86 e9 02 00 00 48 01 5c 24 30 e8 5f 99 9e fe 48 8b 44 24 68 e9 88 fb ff ff e8 50 99 9e fe <0f> 0b eb 81 48 8b 8c 24 80 00 00 00 80 e1 07 38 c1 0f 8c 85 fb ff
RSP: 0018:ffffc90003387620 EFLAGS: 00010293
RAX: ffffffff82e27070 RBX: 000000007ef50d4b RCX: ffff88802cf81dc0
RDX: 0000000000000000 RSI: 000000007ef50d4b RDI: 0000000000000000
RBP: ffffc90003387830 R08: dffffc0000000000 R09: ffffed100b69e605
R10: ffffed100b69e605 R11: 1ffff1100b69e604 R12: 1ffff1100f97fccf
R13: dffffc0000000000 R14: ffff88807cbfe678 R15: ffff88805b4f001f
FS:  0000555559bf1500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f269f945000 CR3: 000000001cb5a000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 extent_trunc+0x357/0x440 fs/udf/truncate.c:56
 udf_truncate_extents+0x34a/0xe30 fs/udf/truncate.c:213
 udf_setsize+0xd7a/0x1090 fs/udf/inode.c:1174
 udf_evict_inode+0x74/0x3e0 fs/udf/inode.c:145
 evict+0x485/0x870 fs/inode.c:705
 do_unlinkat+0x377/0x560 fs/namei.c:4405
 __do_sys_unlink fs/namei.c:4446 [inline]
 __se_sys_unlink fs/namei.c:4444 [inline]
 __x64_sys_unlink+0x45/0x50 fs/namei.c:4444
 do_syscall_x64 arch/x86/entry/common.c:46 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:76
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7f2913b8ecf7
Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 57 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffef63d9b38 EFLAGS: 00000206 ORIG_RAX: 0000000000000057
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2913b8ecf7
RDX: 00007ffef63d9b60 RSI: 00007ffef63d9bf0 RDI: 00007ffef63d9bf0
RBP: 00007ffef63d9bf0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000100 R11: 0000000000000206 R12: 00007ffef63dace0
R13: 00007f2913c13d7d R14: 000000000001771f R15: 00007ffef63dcea0
 </TASK>

Crashes (19):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2026/01/15 06:26 linux-6.1.y bec0e10ee67e d6526ea3 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/12/19 19:01 linux-6.1.y 50cbba13faa2 d6526ea3 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1] [mounted in repro #2 (clean fs)] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/09/21 21:59 linux-6.1.y 363a599da6d9 67c37560 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1] [mounted in repro #2] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/09/16 13:54 linux-6.1.y 3db754f56897 e2beed91 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1 (clean fs)] [mounted in repro #2] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/09/16 12:32 linux-6.1.y 3db754f56897 e2beed91 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1 (clean fs)] [mounted in repro #2] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/09/16 12:25 linux-6.1.y 3db754f56897 e2beed91 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1 (clean fs)] [mounted in repro #2] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/09/16 12:16 linux-6.1.y 3db754f56897 e2beed91 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1 (clean fs)] [mounted in repro #2] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/09/16 10:39 linux-6.1.y 3db754f56897 e2beed91 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1 (clean fs)] [mounted in repro #2] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/09/16 09:54 linux-6.1.y 3db754f56897 e2beed91 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1 (clean fs)] [mounted in repro #2] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/06/22 21:07 linux-6.1.y 58485ff1a74f d6cdfb8a .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1] [mounted in repro #2] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2026/01/11 13:09 linux-6.1.y 50cbba13faa2 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2026/01/04 00:51 linux-6.1.y 50cbba13faa2 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/12/30 10:08 linux-6.1.y 50cbba13faa2 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/12/30 04:42 linux-6.1.y 50cbba13faa2 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/12/27 21:12 linux-6.1.y 50cbba13faa2 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/12/10 14:43 linux-6.1.y 50cbba13faa2 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/12/10 10:43 linux-6.1.y 50cbba13faa2 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/09/16 09:13 linux-6.1.y 3db754f56897 e2beed91 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in udf_free_blocks
2025/09/09 03:46 linux-6.1.y 28c695c365e1 d291dd2d .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in udf_free_blocks
* Struck through repros no longer work on HEAD.