syzbot |
sign-in | mailing list | source | docs |
| Title | Replies (including bot) | Last reply |
|---|---|---|
| [PATCH] jfs: add linelock->index boundary check | 1 (1) | 2025/11/20 15:43 |
| [syzbot] [jfs?] general protection fault in txCommit (2) | 0 (7) | 2025/11/14 14:36 |
| [PATCH] jfs: add linelock->index boundary check in diWrite | 1 (1) | 2025/11/09 08:01 |
| Kernel | Title | Rank 🛈 | Repro | Cause bisect | Fix bisect | Count | Last | Reported | Patched | Status |
|---|---|---|---|---|---|---|---|---|---|---|
| upstream | general protection fault in txCommit jfs | 2 | 1 | 568d | 564d | 0/29 | auto-obsoleted due to no activity on 2024/11/12 17:04 | |||
| upstream | UBSAN: array-index-out-of-bounds in txCommit jfs | 15 | C | error | done | 396 | 854d | 1236d | 25/29 | fixed on 2024/01/08 11:23 |
| linux-5.15 | UBSAN: array-index-out-of-bounds in txCommit | 15 | 1 | 1042d | 1042d | 0/3 | auto-obsoleted due to no activity on 2023/08/23 09:03 | |||
| linux-6.1 | UBSAN: array-index-out-of-bounds in txCommit | 15 | 1 | 974d | 974d | 0/3 | auto-obsoleted due to no activity on 2023/10/14 03:47 | |||
| linux-5.15 | UBSAN: array-index-out-of-bounds in txCommit (2) origin:lts-only | 15 | C | unreliable | 125 | 315d | 843d | 0/3 | auto-obsoleted due to no activity on 2025/07/03 17:10 | |
| linux-6.1 | UBSAN: array-index-out-of-bounds in txCommit (2) origin:lts-only | 15 | C | done | 152 | 315d | 852d | 3/3 | fixed on 2025/05/02 07:04 |
| Created | Duration | User | Patch | Repo | Result |
|---|---|---|---|---|---|
| 2026/01/28 04:05 | 23m | retest repro | upstream | report log | |
| 2026/01/28 04:05 | 14m | retest repro | upstream | report log | |
| 2025/11/18 23:14 | 15m | retest repro | upstream | report log | |
| 2025/11/18 23:14 | 17m | retest repro | upstream | report log | |
| 2025/11/18 23:14 | 15m | retest repro | upstream | report log | |
| 2025/11/14 14:36 | 23m | yun.zhou@windriver.com | patch | upstream | OK log |
| 2025/11/14 13:48 | 27m | yun.zhou@windriver.com | patch | upstream | OK log |
| 2025/11/10 12:33 | 14m | yun.zhou@windriver.com | patch | upstream | report log |
| 2025/11/10 11:24 | 16m | yun.zhou@windriver.com | patch | upstream | report log |
| 2025/11/08 16:15 | 19m | yun.zhou@windriver.com | patch | upstream | report log |
| 2025/11/08 08:32 | 0m | yun.zhou@windriver.com | patch | upstream | error |
loop0: detected capacity change from 0 to 32768
UFO tlock:0xffffc900034e2120
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] SMP KASAN PTI
KASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f]
CPU: 0 UID: 0 PID: 6081 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
RIP: 0010:txLog fs/jfs/jfs_txnmgr.c:1390 [inline]
RIP: 0010:txCommit+0xb11/0x5410 fs/jfs/jfs_txnmgr.c:1265
Code: 3c 10 00 74 12 4c 89 f7 e8 2c 5d d6 fe 48 ba 00 00 00 00 00 fc ff df 4c 89 74 24 60 4d 8b 36 4d 8d 7e 28 4c 89 f8 48 c1 e8 03 <80> 3c 10 00 74 12 4c 89 ff e8 01 5d d6 fe 48 ba 00 00 00 00 00 fc
RSP: 0018:ffffc900040af900 EFLAGS: 00010206
RAX: 0000000000000005 RBX: 0000000000000948 RCX: 1ffff9200069cd48
RDX: dffffc0000000000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: ffffc900040afad0 R08: 0000000000000000 R09: 0000000000000000
R10: dffffc0000000000 R11: fffffbfff1ed4637 R12: 0000000000000002
R13: ffffc900034e2000 R14: 0000000000000000 R15: 0000000000000028
FS: 0000555588eaa500(0000) GS:ffff888126340000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5cf1628000 CR3: 00000000376a8000 CR4: 00000000003526f0
Call Trace:
<TASK>
jfs_symlink+0xd03/0xfd0 fs/jfs/namei.c:1041
vfs_symlink+0x195/0x340 fs/namei.c:5615
filename_symlinkat+0x1cd/0x420 fs/namei.c:5640
__do_sys_symlinkat fs/namei.c:5660 [inline]
__se_sys_symlinkat+0x4e/0x2b0 fs/namei.c:5655
do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
do_syscall_64+0x14d/0xf80 arch/x86/entry/syscall_64.c:94
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f0fc67ec799
Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffc12609df8 EFLAGS: 00000246 ORIG_RAX: 000000000000010a
RAX: ffffffffffffffda RBX: 00007f0fc6a65fa0 RCX: 00007f0fc67ec799
RDX: 0000200000000980 RSI: ffffffffffffff9c RDI: 0000200000000440
RBP: 00007f0fc6882bd9 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007f0fc6a65fac R14: 00007f0fc6a65fa0 R15: 00007f0fc6a65fa0
</TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:txLog fs/jfs/jfs_txnmgr.c:1390 [inline]
RIP: 0010:txCommit+0xb11/0x5410 fs/jfs/jfs_txnmgr.c:1265
Code: 3c 10 00 74 12 4c 89 f7 e8 2c 5d d6 fe 48 ba 00 00 00 00 00 fc ff df 4c 89 74 24 60 4d 8b 36 4d 8d 7e 28 4c 89 f8 48 c1 e8 03 <80> 3c 10 00 74 12 4c 89 ff e8 01 5d d6 fe 48 ba 00 00 00 00 00 fc
RSP: 0018:ffffc900040af900 EFLAGS: 00010206
RAX: 0000000000000005 RBX: 0000000000000948 RCX: 1ffff9200069cd48
RDX: dffffc0000000000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: ffffc900040afad0 R08: 0000000000000000 R09: 0000000000000000
R10: dffffc0000000000 R11: fffffbfff1ed4637 R12: 0000000000000002
R13: ffffc900034e2000 R14: 0000000000000000 R15: 0000000000000028
FS: 0000555588eaa500(0000) GS:ffff888126340000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5cf1628000 CR3: 00000000376a8000 CR4: 00000000003526f0
----------------
Code disassembly (best guess):
0: 3c 10 cmp $0x10,%al
2: 00 74 12 4c add %dh,0x4c(%rdx,%rdx,1)
6: 89 f7 mov %esi,%edi
8: e8 2c 5d d6 fe call 0xfed65d39
d: 48 ba 00 00 00 00 00 movabs $0xdffffc0000000000,%rdx
14: fc ff df
17: 4c 89 74 24 60 mov %r14,0x60(%rsp)
1c: 4d 8b 36 mov (%r14),%r14
1f: 4d 8d 7e 28 lea 0x28(%r14),%r15
23: 4c 89 f8 mov %r15,%rax
26: 48 c1 e8 03 shr $0x3,%rax
* 2a: 80 3c 10 00 cmpb $0x0,(%rax,%rdx,1) <-- trapping instruction
2e: 74 12 je 0x42
30: 4c 89 ff mov %r15,%rdi
33: e8 01 5d d6 fe call 0xfed65d39
38: 48 rex.W
39: ba 00 00 00 00 mov $0x0,%edx
3e: 00 fc add %bh,%ah
| Time | Kernel | Commit | Syzkaller | Config | Log | Report | Syz repro | C repro | VM info | Assets (help?) | Manager | Title |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2026/03/01 03:04 | upstream | 2f9339c052bd | 43249bac | .config | console log | report | syz / log | C | [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] | ci2-upstream-fs | general protection fault in txCommit | |
| 2025/11/04 12:18 | upstream | 8bb886cb8f3a | 686bf657 | .config | console log | report | syz / log | C | [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] | ci2-upstream-fs | general protection fault in txCommit | |
| 2025/11/04 10:32 | upstream | 8bb886cb8f3a | 686bf657 | .config | console log | report | syz / log | C | [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] | ci2-upstream-fs | general protection fault in txCommit | |
| 2025/11/04 08:47 | upstream | 8bb886cb8f3a | 686bf657 | .config | console log | report | syz / log | C | [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] | ci2-upstream-fs | general protection fault in txCommit | |
| 2026/03/03 23:58 | upstream | 0031c06807cf | 4180d919 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/03/03 23:57 | upstream | 0031c06807cf | 4180d919 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/03/03 13:50 | upstream | af4e9ef3d784 | 4180d919 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/03/03 11:23 | upstream | af4e9ef3d784 | 28b83e23 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/03/03 05:06 | upstream | af4e9ef3d784 | 28b83e23 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/03/02 22:43 | upstream | 11439c4635ed | b9dd6534 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/03/02 20:24 | upstream | 11439c4635ed | b9dd6534 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/03/02 12:52 | upstream | 11439c4635ed | b9dd6534 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/03/02 08:10 | upstream | 39c633261414 | 43249bac | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/03/01 18:37 | upstream | eb71ab2bf722 | 43249bac | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/03/01 17:00 | upstream | eb71ab2bf722 | 43249bac | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/03/01 07:54 | upstream | eb71ab2bf722 | 43249bac | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/03/01 02:16 | upstream | 2f9339c052bd | 43249bac | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/03/01 02:13 | upstream | 2f9339c052bd | 43249bac | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/03/01 02:10 | upstream | 2f9339c052bd | 43249bac | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/03/01 02:10 | upstream | 2f9339c052bd | 43249bac | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/02/04 22:05 | upstream | 5fd0a1df5d05 | ea10c935 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2026/02/04 22:05 | upstream | 5fd0a1df5d05 | ea10c935 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2025/11/04 17:20 | upstream | c9cfc122f037 | 686bf657 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2025/11/04 07:04 | upstream | 8bb886cb8f3a | 686bf657 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-upstream-fs | general protection fault in txCommit | ||
| 2025/12/26 21:52 | upstream | 3f0e9c8cefa9 | d1b870e1 | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | KASAN: slab-use-after-free Read in txCommit | |||
| 2025/12/19 15:58 | upstream | dd9b004b7ff3 | d1b870e1 | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | KASAN: slab-use-after-free Read in txCommit |