syzbot

 sign-in | mailing list | source | docs
🐞 Open [831]
🐞 Fixed [87]
🐞 Invalid [1207]
Missing Backports [133]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

UBSAN: array-index-out-of-bounds in dbJoin

Status: upstream: reported C repro on 2024/05/08 02:35
Bug presence: origin:upstream
[Documentation on labels]
Reported-by: syzbot+cffee4987ee15d116a32@syzkaller.appspotmail.com
First crash: 637d, last: 15d
Bug presence (1)
Date Name Commit Repro Result
2024/05/14 upstream (ToT) a5131c3fdf26 C [report] UBSAN: array-index-out-of-bounds in dbJoin
Similar bugs (4)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KASAN: use-after-free Read in dbJoin jfs 19 C error inconclusive 1032 12d 1213d 0/29 upstream: reported C repro on 2022/10/10 07:35
linux-6.1 UBSAN: array-index-out-of-bounds in dbJoin origin:upstream 15 C error 53 53d 631d 0/3 upstream: reported C repro on 2024/05/14 08:42
linux-4.14 KASAN: use-after-free Read in dbJoin 19 C 2 1079d 1227d 0/1 upstream: reported C repro on 2022/09/26 07:12
linux-4.19 KASAN: use-after-free Read in dbJoin 19 C error 1 1227d 1227d 0/1 upstream: reported C repro on 2022/09/26 15:15
Last patch testing requests (10)
Created Duration User Patch Repo Result
2026/02/03 18:28 10m retest repro linux-5.15.y error
2026/01/20 05:09 15m retest repro linux-5.15.y report log
2026/01/20 05:09 15m retest repro linux-5.15.y report log
2026/01/20 05:09 55m retest repro linux-5.15.y report log
2026/01/20 05:09 8m retest repro linux-5.15.y report log
2026/01/05 14:39 14m retest repro linux-5.15.y report log
2026/01/05 14:39 18m retest repro linux-5.15.y report log
2025/11/23 17:22 12m retest repro linux-5.15.y report log
2025/11/06 12:59 10m retest repro linux-5.15.y report log
2025/11/06 12:59 15m retest repro linux-5.15.y report log
Fix bisection attempts (4)
Created Duration User Patch Repo Result
2025/03/13 03:05 2h56m bisect fix linux-5.15.y OK (0) job log log
2025/01/11 13:52 2h05m bisect fix linux-5.15.y OK (0) job log log
2024/08/05 05:48 1h46m bisect fix linux-5.15.y OK (0) job log log
2024/06/25 21:45 3h01m bisect fix linux-5.15.y OK (0) job log log

Sample crash report:
================================================================================
UBSAN: array-index-out-of-bounds in fs/jfs/jfs_dmap.c:2848:24
index 1621 is out of range for type 's8[1365]' (aka 'signed char[1365]')
CPU: 1 PID: 276 Comm: jfsCommit Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
Call Trace:
 <TASK>
 dump_stack_lvl+0x168/0x230 lib/dump_stack.c:106
 ubsan_epilogue+0xa/0x30 lib/ubsan.c:151
 __ubsan_handle_out_of_bounds+0xdf/0xf0 lib/ubsan.c:282
 dbJoin+0x29a/0x300 fs/jfs/jfs_dmap.c:2848
 dbFreeBits+0x4e1/0xd80 fs/jfs/jfs_dmap.c:2408
 dbFreeDmap fs/jfs/jfs_dmap.c:2157 [inline]
 dbFree+0x32e/0x640 fs/jfs/jfs_dmap.c:398
 txFreeMap+0x7fb/0xde0 fs/jfs/jfs_txnmgr.c:2569
 txUpdateMap+0x306/0x890 fs/jfs/jfs_txnmgr.c:-1
 txLazyCommit fs/jfs/jfs_txnmgr.c:2699 [inline]
 jfs_lazycommit+0x437/0xb20 fs/jfs/jfs_txnmgr.c:2767
 kthread+0x436/0x520 kernel/kthread.c:334
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:287
 </TASK>
================================================================================
Kernel panic - not syncing: UBSAN: panic_on_warn set ...
CPU: 1 PID: 276 Comm: jfsCommit Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
Call Trace:
 <TASK>
 dump_stack_lvl+0x168/0x230 lib/dump_stack.c:106
 panic+0x2c9/0x7f0 kernel/panic.c:309
 check_panic_on_warn+0x80/0xa0 kernel/panic.c:229
 __ubsan_handle_out_of_bounds+0xdf/0xf0 lib/ubsan.c:282
 dbJoin+0x29a/0x300 fs/jfs/jfs_dmap.c:2848
 dbFreeBits+0x4e1/0xd80 fs/jfs/jfs_dmap.c:2408
 dbFreeDmap fs/jfs/jfs_dmap.c:2157 [inline]
 dbFree+0x32e/0x640 fs/jfs/jfs_dmap.c:398
 txFreeMap+0x7fb/0xde0 fs/jfs/jfs_txnmgr.c:2569
 txUpdateMap+0x306/0x890 fs/jfs/jfs_txnmgr.c:-1
 txLazyCommit fs/jfs/jfs_txnmgr.c:2699 [inline]
 jfs_lazycommit+0x437/0xb20 fs/jfs/jfs_txnmgr.c:2767
 kthread+0x436/0x520 kernel/kthread.c:334
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:287
 </TASK>
Kernel Offset: disabled
Rebooting in 86400 seconds..

Crashes (77):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/12/22 06:08 linux-5.15.y 68efe5a6c16a d6526ea3 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/26 21:29 linux-5.15.y 74cdd62cb470 65e8686b .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/26 20:21 linux-5.15.y 74cdd62cb470 65e8686b .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/23 16:57 linux-5.15.y 74cdd62cb470 15fa2979 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/04 08:57 linux-5.15.y 3a5928702e71 d7906eff .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/05/14 10:30 linux-5.15.y 284087d4f7d5 fdb4c10c .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/04 23:32 linux-5.15.y 3a5928702e71 d7906eff .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan-arm64 UBSAN: array-index-out-of-bounds in dbJoin
2024/10/26 10:06 linux-5.15.y 74cdd62cb470 65e8686b .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/25 08:31 linux-5.15.y 74cdd62cb470 c79b8ca5 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/24 14:41 linux-5.15.y 74cdd62cb470 0d144d1a .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/23 03:57 linux-5.15.y 74cdd62cb470 15fa2979 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/22 19:20 linux-5.15.y 74cdd62cb470 a93682b3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/22 19:17 linux-5.15.y 74cdd62cb470 a93682b3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/22 12:53 linux-5.15.y 584a40a22cb9 a93682b3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/21 17:47 linux-5.15.y 584a40a22cb9 f1e4447c .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/20 20:38 linux-5.15.y 584a40a22cb9 cd6fc0a3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/19 03:45 linux-5.15.y 584a40a22cb9 cd6fc0a3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/17 19:01 linux-5.15.y 584a40a22cb9 666f77ed .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/16 22:32 linux-5.15.y 3a5928702e71 666f77ed .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/16 02:49 linux-5.15.y 3a5928702e71 bde2d81c .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/15 14:07 linux-5.15.y 3a5928702e71 7eb57b4a .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/15 14:06 linux-5.15.y 3a5928702e71 7eb57b4a .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/15 14:06 linux-5.15.y 3a5928702e71 7eb57b4a .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/15 01:38 linux-5.15.y 3a5928702e71 b01b6661 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/15 01:38 linux-5.15.y 3a5928702e71 b01b6661 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/14 12:55 linux-5.15.y 3a5928702e71 084d8178 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/12 02:26 linux-5.15.y 3a5928702e71 084d8178 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/12 02:22 linux-5.15.y 3a5928702e71 084d8178 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/12 02:22 linux-5.15.y 3a5928702e71 084d8178 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/11 09:52 linux-5.15.y 3a5928702e71 cd942402 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/11 09:50 linux-5.15.y 3a5928702e71 cd942402 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/10 11:18 linux-5.15.y 3a5928702e71 0278d004 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/09 21:46 linux-5.15.y 3a5928702e71 56fb2cb7 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/09 21:44 linux-5.15.y 3a5928702e71 56fb2cb7 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/09 21:43 linux-5.15.y 3a5928702e71 56fb2cb7 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/09 21:43 linux-5.15.y 3a5928702e71 56fb2cb7 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/09 10:00 linux-5.15.y 3a5928702e71 402f1df0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/09 10:00 linux-5.15.y 3a5928702e71 402f1df0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/08 09:12 linux-5.15.y 3a5928702e71 402f1df0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/08 09:10 linux-5.15.y 3a5928702e71 402f1df0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/08 09:08 linux-5.15.y 3a5928702e71 402f1df0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/07 21:39 linux-5.15.y 3a5928702e71 d7906eff .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/07 05:27 linux-5.15.y 3a5928702e71 d7906eff .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/03 23:35 linux-5.15.y 3a5928702e71 d7906eff .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/03 23:35 linux-5.15.y 3a5928702e71 d7906eff .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/03 23:35 linux-5.15.y 3a5928702e71 d7906eff .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/03 07:24 linux-5.15.y 3a5928702e71 a4c7fd36 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/03 07:20 linux-5.15.y 3a5928702e71 a4c7fd36 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/02 19:49 linux-5.15.y 3a5928702e71 02f9582a .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/02 19:47 linux-5.15.y 3a5928702e71 02f9582a .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/01 21:47 linux-5.15.y 3a5928702e71 ea2b66a6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/01 21:47 linux-5.15.y 3a5928702e71 ea2b66a6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/10/01 21:47 linux-5.15.y 3a5928702e71 ea2b66a6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/08/24 17:16 linux-5.15.y fa93fa65db6e d7d32352 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/05/17 15:18 linux-5.15.y 83655231580b a12e99e7 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/05/17 07:11 linux-5.15.y 284087d4f7d5 c2e07261 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/05/14 07:38 linux-5.15.y 284087d4f7d5 fdb4c10c .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan UBSAN: array-index-out-of-bounds in dbJoin
2024/05/08 02:35 linux-5.15.y 284087d4f7d5 4cf3f9b3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 UBSAN: array-index-out-of-bounds in dbJoin
* Struck through repros no longer work on HEAD.