syzbot

 sign-in | mailing list | source | docs
🐞 Open [1597]
Subsystems
🐞 Fixed [6314]
🐞 Invalid [16055]
Missing Backports [190]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

BUG: corrupted list in __sk_destruct

Status: closed as invalid on 2023/02/13 10:50
Subsystems: net
[Documentation on labels]
First crash: 950d, last: 895d
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream BUG: corrupted list in __sk_destruct (2) ext4 net syz done 1 108d 107d 0/29 auto-obsoleted due to no activity on 2025/06/11 19:41

Sample crash report:
kernel BUG at lib/list_debug.c:32!
Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP
Modules linked in:
CPU: 0 PID: 3120 Comm: syz-executor.3 Not tainted 6.1.0-rc2-syzkaller-154433-g247f34f7b803 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : __list_add_valid+0xb4/0xb8 lib/list_debug.c:30
lr : __list_add_valid+0xb4/0xb8 lib/list_debug.c:30
sp : ffff800010fd3b30
x29: ffff800010fd3b30 x28: 00000000002e0003 x27: 0000000000000000
x26: ffff00011e78a750 x25: 0000000000000000 x24: 0000000000000001
x23: ffff00011f0c4f00 x22: ffff0000cba93830 x21: ffff00011c53ae80
x20: 0000000000000000 x19: ffff0000cba937d0 x18: 0000000000000000
x17: 3033383339616263 x16: 3030303066666666 x15: 28207478656e2065
x14: 6220646c756f6873 x13: 205d303231335420 x12: 5b5d363830343333
x11: ff808000081c650c x10: 0000000000000000 x9 : f4906c7875e6f500
x8 : f4906c7875e6f500 x7 : 205b5d3638303433 x6 : ffff80000c0903b4
x5 : 0000000000000000 x4 : 0000000000000001 x3 : 0000000000000000
x2 : ffff0001fefbecc8 x1 : 0000000100000001 x0 : 0000000000000075
Call trace:
 __list_add_valid+0xb4/0xb8 lib/list_debug.c:30
 __list_add include/linux/list.h:69 [inline]
 list_add_tail include/linux/list.h:102 [inline]
 list_move_tail include/linux/list.h:230 [inline]
 ref_tracker_free+0x138/0x340 lib/ref_tracker.c:143
 netns_tracker_free include/net/net_namespace.h:335 [inline]
 put_net_track include/net/net_namespace.h:349 [inline]
 __sk_destruct+0x27c/0x4e4 net/core/sock.c:2151
 sk_destruct net/core/sock.c:2167 [inline]
 __sk_free+0x238/0x290 net/core/sock.c:2178
 sk_free+0x54/0xbc net/core/sock.c:2189
 sock_put include/net/sock.h:1980 [inline]
 tcp_close+0x78/0xe0 net/ipv4/tcp.c:3034
 inet_release+0xc8/0xe4 net/ipv4/af_inet.c:428
 inet6_release+0x3c/0x58 net/ipv6/af_inet6.c:488
 __sock_release net/socket.c:650 [inline]
 sock_close+0x50/0xf0 net/socket.c:1365
 __fput+0x198/0x3e4 fs/file_table.c:320
 ____fput+0x20/0x30 fs/file_table.c:348
 task_work_run+0x100/0x148 kernel/task_work.c:179
 resume_user_mode_work include/linux/resume_user_mode.h:49 [inline]
 do_notify_resume+0x174/0x1f0 arch/arm64/kernel/signal.c:1127
 prepare_exit_to_user_mode arch/arm64/kernel/entry-common.c:137 [inline]
 exit_to_user_mode arch/arm64/kernel/entry-common.c:142 [inline]
 el0_svc+0x9c/0x150 arch/arm64/kernel/entry-common.c:637
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:654
 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:581
Code: 9114b400 aa0303e1 aa0803e3 94aa88cd (d4210000) 
---[ end trace 0000000000000000 ]---

Crashes (6):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/01/06 17:34 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 247f34f7b803 1dac8c7a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 BUG: corrupted list in __sk_destruct
2022/11/29 14:50 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 6d464646530f 05dc7993 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 BUG: corrupted list in __sk_destruct
2022/11/26 08:31 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 6d464646530f 74a66371 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 BUG: corrupted list in __sk_destruct
2022/11/20 09:03 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 9500fc6e9e60 5bb70014 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 BUG: corrupted list in __sk_destruct
2022/11/13 02:15 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 1621b6eaebf7 3ead01ad .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 BUG: corrupted list in __sk_destruct
2022/11/27 05:02 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 6d464646530f 74a66371 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 BUG: unable to handle kernel paging request in __sk_destruct
* Struck through repros no longer work on HEAD.