syzbot

 sign-in | mailing list | source | docs
🐞 Open [144]
🐞 Fixed [274]
🐞 Invalid [739]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

pool: free list modified: shmpl (5)

Status: upstream: reported on 2024/08/17 21:40
Reported-by: syzbot+795d5fe793093fcb3fcf@syzkaller.appspotmail.com
First crash: 95d, last: 3d17h
Similar bugs (4)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
openbsd pool: free list modified: shmpl (3) 1 1632d 1632d 0/3 auto-closed as invalid on 2020/09/01 15:24
openbsd pool: free list modified: shmpl C 22 1996d 2091d 3/3 fixed on 2019/10/29 17:45
openbsd pool: free list modified: shmpl (2) 1 1812d 1812d 0/3 auto-closed as invalid on 2020/03/04 23:09
openbsd pool: free list modified: shmpl (4) 1 373d 373d 0/3 auto-obsoleted due to no activity on 2024/02/11 22:36

Sample crash report:
panic: pool_do_get: shmpl free list modified: page 0xfffffd8069284000; item addr 0xfffffd8069284160; offset 0x40=0x40500c0
Starting stack trace...
panic(ffffffff830741ff) at panic+0x1d0 sys/kern/subr_prf.c:229
pool_do_get(ffffffff835f3e20,1,ffff800030a314b8) at pool_do_get+0x5e6
pool_get(ffffffff835f3e20,1) at pool_get+0x141
shmget_allocate_segment(ffff80002a0fa548,ffff800030a31710,122,ffff800030a31660) at shmget_allocate_segment+0x1a7
sys_shmget(ffff80002a0fa548,ffff800030a31710,ffff800030a31660) at sys_shmget+0x1b2 sys/kern/sysv_shm.c:482
syscall(ffff800030a31710) at syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:178 [inline]
syscall(ffff800030a31710) at syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x111f0cf1cb0, count: 250
End of stack trace.

Crashes (43):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/11/18 01:01 openbsd 76f8947d47ed cfe3a04a .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/11/15 05:39 openbsd 04337d597320 f6ede3a3 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/11/13 17:43 openbsd 81e7fdf6c2d5 4dfba277 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/11/12 15:03 openbsd 5cdf6b69795f c819f227 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/11/09 00:21 openbsd 12cba3bdc197 d40c056e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main pool: free list modified: shmpl
2024/11/06 11:47 openbsd 7f618044e74e 3a465482 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-setuid pool: free list modified: shmpl
2024/11/02 14:20 openbsd 7a9020cd0142 f00eed24 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/10/31 23:11 openbsd 16df6568a5db 96eb609f .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main pool: free list modified: shmpl
2024/10/30 05:32 openbsd 5873c738290a 66aeb999 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-setuid pool: free list modified: shmpl
2024/10/28 00:27 openbsd fe4601f2bbe4 65e8686b .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main pool: free list modified: shmpl
2024/10/27 19:23 openbsd fe4601f2bbe4 65e8686b .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/10/27 15:08 openbsd fe4601f2bbe4 65e8686b .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-setuid pool: free list modified: shmpl
2024/10/26 16:37 openbsd 31d6c6f28534 65e8686b .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/10/25 14:38 openbsd 26b00f5955fb 2a61f980 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main pool: free list modified: shmpl
2024/10/25 07:45 openbsd ab14eefca8bc c79b8ca5 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/10/24 22:52 openbsd ab14eefca8bc c79b8ca5 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main pool: free list modified: shmpl
2024/10/20 07:24 openbsd bcc47c46a274 cd6fc0a3 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-setuid pool: free list modified: shmpl
2024/10/18 02:45 openbsd ef4af84434df 666f77ed .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-setuid pool: free list modified: shmpl
2024/10/17 13:09 openbsd af87264d7edb 666f77ed .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-setuid pool: free list modified: shmpl
2024/10/16 22:15 openbsd 9a67f0c9d9b9 666f77ed .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/10/13 17:41 openbsd 6af255d52c85 084d8178 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/10/13 16:58 openbsd 6af255d52c85 084d8178 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/10/05 00:08 openbsd ecf90ed7d782 d7906eff .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/10/03 11:06 openbsd 770bc2e5805f d7906eff .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main pool: free list modified: shmpl
2024/10/02 02:09 openbsd d3e7ac1607c7 ea2b66a6 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/10/01 22:58 openbsd 67526adf6fb7 ea2b66a6 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main pool: free list modified: shmpl
2024/10/01 03:39 openbsd 477ac4f17e6a bbd4e0a4 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-setuid pool: free list modified: shmpl
2024/09/29 19:15 openbsd b3a69e4eefa8 ba29ff75 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main pool: free list modified: shmpl
2024/09/29 12:09 openbsd b3a69e4eefa8 ba29ff75 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main pool: free list modified: shmpl
2024/09/29 09:56 openbsd 7eb67ff9a029 ba29ff75 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main pool: free list modified: shmpl
2024/09/28 00:01 openbsd 352e6c5d7c95 440b26ec .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-setuid pool: free list modified: shmpl
2024/09/27 13:12 openbsd b985d8243801 2b1784d6 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main pool: free list modified: shmpl
2024/09/26 16:50 openbsd 9119eb3a9696 9314348a .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main pool: free list modified: shmpl
2024/09/21 09:38 openbsd 08948b0a81ee 6f888b75 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/09/18 03:51 openbsd 1aeced5a9232 c673ca06 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main pool: free list modified: shmpl
2024/09/16 16:51 openbsd 91055178be64 49cf0773 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-setuid pool: free list modified: shmpl
2024/09/15 16:14 openbsd ff1c29691e7d 08d8a733 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-setuid pool: free list modified: shmpl
2024/09/14 13:21 openbsd f4336680ed94 08d8a733 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-setuid pool: free list modified: shmpl
2024/09/13 10:41 openbsd 00475b9b7a59 73e8a465 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/09/06 00:23 openbsd 345c0b7c2480 464ac2ed .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/09/05 12:06 openbsd ebe65f64a6a1 464ac2ed .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore pool: free list modified: shmpl
2024/08/22 11:45 openbsd 6e92fa473ce3 aa99fc33 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-setuid pool: free list modified: shmpl
2024/08/17 21:40 openbsd ef61d0404a18 dbc93b08 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-setuid pool: free list modified: shmpl
* Struck through repros no longer work on HEAD.