syzbot

 sign-in | mailing list | source | docs
🐞 Open [1435]
Subsystems
🐞 Fixed [6910]
🐞 Invalid [17982]
Missing Backports [223]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

general protection fault in rose_transmit_link (4)

Status: upstream: reported C repro on 2026/01/15 20:26
Subsystems: hams
[Documentation on labels]
Reported-by: syzbot+d00f90e0af54102fb271@syzkaller.appspotmail.com
First crash: 429d, last: 50m
Cause bisection: failed (error log, bisect log)
  
Discussions (2)
Title Replies (including bot) Last reply
[syzbot] Monthly hams report (Jan 2026) 0 (1) 2026/01/26 07:12
[syzbot] [hams?] general protection fault in rose_transmit_link (4) 0 (1) 2026/01/15 20:26
Similar bugs (8)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream general protection fault in rose_transmit_link (3) hams 10 27 694d 1320d 0/29 auto-obsoleted due to no activity on 2024/06/26 03:46
linux-6.6 general protection fault in rose_transmit_link origin:upstream 2 C error 8 33d 34d 0/2 upstream: reported C repro on 2026/01/06 18:54
upstream general protection fault in rose_transmit_link (2) hams 2 3 1451d 1468d 0/29 auto-closed as invalid on 2022/05/21 05:59
upstream general protection fault in rose_transmit_link hams 2 1 2380d 2376d 0/29 auto-closed as invalid on 2019/11/03 18:16
linux-4.19 general protection fault in rose_transmit_link 2 1 1472d 1472d 0/1 auto-closed as invalid on 2022/05/29 13:41
linux-5.15 KASAN: use-after-free Read in rose_transmit_link origin:upstream 19 C 141 1d20h 282d 0/3 upstream: reported C repro on 2025/05/03 13:00
linux-6.1 KASAN: use-after-free Read in rose_transmit_link 19 75 109d 278d 0/3 auto-obsoleted due to no activity on 2026/01/02 00:59
linux-6.6 KASAN: slab-use-after-free Read in rose_transmit_link origin:upstream missing-backport 19 C done 43 160d 220d 2/2 fixed on 2025/10/12 11:51
Last patch testing requests (5)
Created Duration User Patch Repo Result
2026/01/02 13:49 0m dvyukov@google.com patch upstream error
2025/02/07 09:06 12m edumazet@google.com upstream error
2025/02/03 16:33 12m edumazet@google.com patch upstream error
2025/01/30 18:21 13m edumazet@google.com git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git e759e1e4a4bd2926d082afe56046a90224433a31 report log
2025/01/28 16:26 12m edumazet@google.com git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git 5de7665e0a0746b5ad7943554b34db8f8614a196 error

Sample crash report:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] SMP KASAN NOPTI
KASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037]
CPU: 1 UID: 0 PID: 6092 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
RIP: 0010:rose_transmit_link+0x32/0x5f0 net/rose/rose_link.c:266
Code: 41 55 41 54 55 48 89 fd 53 48 89 f3 48 83 ec 08 e8 23 80 69 f7 48 8d 7b 36 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 d8 04 00 00
RSP: 0018:ffffc90003f67a00 EFLAGS: 00010207
RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff8a545988
RDX: 0000000000000006 RSI: ffffffff8a53b88d RDI: 0000000000000036
RBP: ffff88803bc14780 R08: 0000000000000005 R09: 000000000000001f
R10: 0000000000000013 R11: 0000000000000000 R12: ffff888028c2e000
R13: 0000000000000010 R14: 0000000000000013 R15: ffff88805181e41a
FS:  00007ff7e01a96c0(0000) GS:ffff8880d6ad6000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000562fe4bbada8 CR3: 000000003ceb8000 CR4: 0000000000352ef0
Call Trace:
 <TASK>
 rose_write_internal+0x2f6/0x1850 net/rose/rose_subr.c:198
 rose_release+0x1f1/0x740 net/rose/af_rose.c:671
 __sock_release+0xb3/0x270 net/socket.c:662
 sock_close+0x1c/0x30 net/socket.c:1455
 __fput+0x402/0xb70 fs/file_table.c:468
 task_work_run+0x150/0x240 kernel/task_work.c:227
 get_signal+0x1d0/0x26d0 kernel/signal.c:2807
 arch_do_signal_or_restart+0x8f/0x7c0 arch/x86/kernel/signal.c:337
 exit_to_user_mode_loop+0x85/0x130 kernel/entry/common.c:40
 exit_to_user_mode_prepare include/linux/irq-entry-common.h:225 [inline]
 syscall_exit_to_user_mode_work include/linux/entry-common.h:175 [inline]
 syscall_exit_to_user_mode include/linux/entry-common.h:210 [inline]
 do_syscall_64+0x426/0xfa0 arch/x86/entry/syscall_64.c:100
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7ff7df38efc9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ff7e01a9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
RAX: 0000000000000000 RBX: 00007ff7df5e5fa0 RCX: 00007ff7df38efc9
RDX: 0000000000000040 RSI: 0000200000000140 RDI: 0000000000000005
RBP: 00007ff7df411f91 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ff7df5e6038 R14: 00007ff7df5e5fa0 R15: 00007ffc5e3517f8
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:rose_transmit_link+0x32/0x5f0 net/rose/rose_link.c:266
Code: 41 55 41 54 55 48 89 fd 53 48 89 f3 48 83 ec 08 e8 23 80 69 f7 48 8d 7b 36 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 d8 04 00 00
RSP: 0018:ffffc90003f67a00 EFLAGS: 00010207
RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff8a545988
RDX: 0000000000000006 RSI: ffffffff8a53b88d RDI: 0000000000000036
RBP: ffff88803bc14780 R08: 0000000000000005 R09: 000000000000001f
R10: 0000000000000013 R11: 0000000000000000 R12: ffff888028c2e000
R13: 0000000000000010 R14: 0000000000000013 R15: ffff88805181e41a
FS:  00007ff7e01a96c0(0000) GS:ffff8880d6ad6000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000562fe4bbada8 CR3: 000000003ceb8000 CR4: 0000000000352ef0
----------------
Code disassembly (best guess):
   0:	41 55                	push   %r13
   2:	41 54                	push   %r12
   4:	55                   	push   %rbp
   5:	48 89 fd             	mov    %rdi,%rbp
   8:	53                   	push   %rbx
   9:	48 89 f3             	mov    %rsi,%rbx
   c:	48 83 ec 08          	sub    $0x8,%rsp
  10:	e8 23 80 69 f7       	call   0xf7698038
  15:	48 8d 7b 36          	lea    0x36(%rbx),%rdi
  19:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
  20:	fc ff df
  23:	48 89 fa             	mov    %rdi,%rdx
  26:	48 c1 ea 03          	shr    $0x3,%rdx
* 2a:	0f b6 04 02          	movzbl (%rdx,%rax,1),%eax <-- trapping instruction
  2e:	48 89 fa             	mov    %rdi,%rdx
  31:	83 e2 07             	and    $0x7,%edx
  34:	38 d0                	cmp    %dl,%al
  36:	7f 08                	jg     0x40
  38:	84 c0                	test   %al,%al
  3a:	0f 85 d8 04 00 00    	jne    0x518

Crashes (1813):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/10/18 08:03 upstream 6f3b6e91f720 1c8c8cd8 .config console log report syz / log C [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream general protection fault in rose_transmit_link
2025/09/19 02:26 upstream cbf658dd0941 e2beed91 .config console log report syz / log C [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root general protection fault in rose_transmit_link
2025/01/21 21:44 upstream 95ec54a420b8 da72ac06 .config console log report syz / log C [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root general protection fault in rose_transmit_link
2025/10/06 23:26 net 521405cb54cd 91305dbe .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2025/11/25 18:29 net-next 00f3b3251814 64219f15 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce general protection fault in rose_transmit_link
2026/01/08 09:45 linux-next fc4e91c639c0 d6526ea3 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce general protection fault in rose_transmit_link
2025/07/20 21:10 upstream f4a40a4282f4 7117feec .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root KASAN: slab-use-after-free Read in rose_transmit_link
2025/08/08 07:12 net ae633388cae3 6a893178 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce KASAN: slab-use-after-free Read in rose_transmit_link
2026/01/04 03:44 upstream aacb0a6d604a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root general protection fault in rose_transmit_link
2026/01/04 02:20 upstream aacb0a6d604a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root general protection fault in rose_transmit_link
2025/12/27 05:40 upstream 3f0e9c8cefa9 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root general protection fault in rose_transmit_link
2025/11/03 01:05 upstream 6146a0f1dfae 2c50b6a9 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root general protection fault in rose_transmit_link
2026/02/10 06:18 upstream 8a5203c630c6 4ab09a02 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream general protection fault in rose_transmit_link
2026/02/08 03:48 upstream e7aa57247700 4c131dc4 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream general protection fault in rose_transmit_link
2026/02/05 15:21 upstream f14faaf3a1fb 4936e85c .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root general protection fault in rose_transmit_link
2026/01/29 21:21 upstream 8dfce8991b95 aeb6fdd5 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root general protection fault in rose_transmit_link
2026/01/29 17:36 upstream 8dfce8991b95 aeb6fdd5 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root general protection fault in rose_transmit_link
2026/01/28 05:35 upstream 1f97d9dcf536 3029c699 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root general protection fault in rose_transmit_link
2026/01/26 03:25 upstream 023777797472 02bac031 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root general protection fault in rose_transmit_link
2026/01/25 06:30 upstream 5dbeeb268b63 40acda8a .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root general protection fault in rose_transmit_link
2026/01/24 01:19 upstream 3a622041d78b 4f25b9b4 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream general protection fault in rose_transmit_link
2026/01/21 19:48 upstream 6c790212c588 6f1aa2f9 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root general protection fault in rose_transmit_link
2026/01/21 16:58 upstream 6c790212c588 d1b870e1 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream general protection fault in rose_transmit_link
2026/01/18 13:16 upstream 54e82e93ca93 d1b870e1 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root general protection fault in rose_transmit_link
2026/01/18 07:40 upstream 54e82e93ca93 d1b870e1 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root general protection fault in rose_transmit_link
2026/01/15 15:57 upstream 54e82e93ca93 d1b870e1 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root general protection fault in rose_transmit_link
2025/10/11 17:13 upstream 0739473694c4 ff1712fe .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream-386 general protection fault in rose_transmit_link
2026/02/09 08:18 net 6d2f142b1e4b 4c131dc4 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/02/09 06:11 net 6d2f142b1e4b 4c131dc4 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/02/08 13:10 net 6d2f142b1e4b 4c131dc4 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/02/08 11:13 net 6d2f142b1e4b 4c131dc4 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/02/07 21:09 net 6d2f142b1e4b 4c131dc4 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/02/07 03:49 net ee9241524b46 f20fc9f9 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/02/07 00:24 net ee9241524b46 f20fc9f9 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/02/04 07:55 net 6788d44b936c 42b01fab .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/02/03 08:18 net 1c172febdf06 d78927dd .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/26 23:18 net 709bbb015538 efb3e894 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/25 11:57 net 8016dc5ee19a 40acda8a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/25 08:28 net 8016dc5ee19a 40acda8a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/24 08:52 net 8016dc5ee19a 4f25b9b4 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/24 07:37 net 8016dc5ee19a 4f25b9b4 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/23 15:07 net 108948f723b1 3181850c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/23 08:16 net 4a3dba481882 82c9c083 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/19 02:21 net f40ddcc0c0ca d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/17 14:11 net a74c7a58ca2c d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/16 14:42 net a74c7a58ca2c d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/16 07:51 net 851822aec1a3 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/15 22:35 net 4156c3745f06 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/15 13:46 net 4156c3745f06 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/15 07:58 net 3879cffd9d07 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/15 02:58 net 3879cffd9d07 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/01/15 01:50 net 3879cffd9d07 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce general protection fault in rose_transmit_link
2026/02/10 04:37 net-next 57be33f85e36 4ab09a02 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce general protection fault in rose_transmit_link
2026/02/08 09:25 net-next 57be33f85e36 4c131dc4 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce general protection fault in rose_transmit_link
2026/02/07 12:42 net-next fd24173439c0 f20fc9f9 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce general protection fault in rose_transmit_link
2026/02/07 08:22 net-next fd24173439c0 f20fc9f9 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce general protection fault in rose_transmit_link
2026/02/07 02:02 net-next 24cf78c73831 f20fc9f9 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce general protection fault in rose_transmit_link
2026/02/05 01:44 net-next 9a9424c756fe ea10c935 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce general protection fault in rose_transmit_link
2026/01/25 01:52 net-next eac026ff97a9 40acda8a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce general protection fault in rose_transmit_link
2026/01/14 17:24 net-next 3b194343c250 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce general protection fault in rose_transmit_link
2025/08/15 21:40 upstream 8d084337a32f 1804e95e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-badwrites-root KASAN: slab-use-after-free Read in rose_transmit_link
2025/07/03 12:33 upstream b4911fb0b060 115ceea7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root KASAN: slab-out-of-bounds Write in rose_transmit_link
2025/06/10 13:53 net-next 2c7e4a2663a1 5d7e17ca .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce KASAN: user-memory-access Write in rose_transmit_link
2025/08/19 23:21 linux-next 886e5e7b0432 79512909 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root KASAN: slab-use-after-free Read in rose_transmit_link
2026/01/28 14:50 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 59e4d31a0470 004c195c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 BUG: unable to handle kernel paging request in rose_transmit_link
2026/01/13 23:56 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 59e4d31a0470 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 BUG: unable to handle kernel paging request in rose_transmit_link
2025/09/03 10:55 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 8f5ae30d69d7 96a211bc .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 KASAN: slab-use-after-free Read in rose_transmit_link
* Struck through repros no longer work on HEAD.