syzbot

 sign-in | mailing list | source | docs
🐞 Open [1490]
Subsystems
🐞 Fixed [6791]
🐞 Invalid [17545]
Missing Backports [222]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

WARNING in ieee80211_rx_list (3)

Status: upstream: reported C repro on 2024/09/09 00:10
Subsystems: wireless
[Documentation on labels]
Reported-by: syzbot+b4aa2b672b18f1d4dc5f@syzkaller.appspotmail.com
First crash: 467d, last: 75d
Cause bisection: failed (error log, bisect log)
  
Fix bisection: fixed by (bisect log) :
commit d67ca09ca39f9605459959004b28c56899e3bca3
Author: Hangbin Liu <liuhangbin@gmail.com>
Date: Tue Sep 2 06:55:58 2025 +0000

  hsr: use netdev_master_upper_dev_link() when linking lower ports

  
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] [wireless?] WARNING in ieee80211_rx_list (3) 0 (3) 2025/11/03 23:28
Similar bugs (7)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream WARNING in ieee80211_rx_list wireless -1 C inconclusive error 3489 556d 1908d 26/29 fixed on 2024/06/18 10:18
upstream WARNING in ieee80211_rx_list (2) wireless -1 4 535d 538d 26/29 fixed on 2024/08/06 11:02
linux-5.15 WARNING in ieee80211_rx_list origin:lts-only -1 syz error 5 512d 618d 0/3 auto-obsoleted due to no activity on 2024/10/29 16:41
linux-5.15 WARNING in ieee80211_rx_list (2) -1 1 260d 260d 0/3 auto-obsoleted due to no activity on 2025/07/08 17:04
linux-5.15 WARNING in ieee80211_rx_list (3) -1 1 155d 155d 0/3 auto-obsoleted due to no activity on 2025/10/21 12:19
linux-6.1 WARNING in ieee80211_rx_list -1 1 501d 501d 0/3 auto-obsoleted due to no activity on 2024/11/09 19:50
linux-6.1 WARNING in ieee80211_rx_list (2) -1 1 75d 75d 0/3 upstream: reported on 2025/10/01 12:28
Last patch testing requests (10)
Created Duration User Patch Repo Result
2025/12/11 01:02 19m retest repro upstream OK log
2025/11/27 06:56 26m retest repro net OK log
2025/10/26 13:30 25m retest repro net-next OK log
2025/10/02 00:32 20m retest repro upstream report log
2025/09/17 23:58 26m retest repro net report log
2025/08/17 12:03 26m retest repro net-next report log
2025/07/21 15:18 18m retest repro upstream report log
2025/05/26 00:00 28m retest repro net-next report log
2025/05/10 07:29 18m retest repro upstream report log
2025/01/19 11:08 15m retest repro upstream report log

Sample crash report:
------------[ cut here ]------------
WARNING: CPU: 0 PID: 13623 at net/mac80211/rx.c:5396 ieee80211_rx_list+0x2bd5/0x38f0 net/mac80211/rx.c:5396
Modules linked in:
CPU: 0 UID: 0 PID: 13623 Comm: syz.1.1644 Not tainted 6.14.0-rc4-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
RIP: 0010:ieee80211_rx_list+0x2bd5/0x38f0 net/mac80211/rx.c:5396
Code: 90 e9 48 d8 ff ff e8 4a d1 44 f6 e9 3e d8 ff ff e8 40 d1 44 f6 e9 34 d8 ff ff e8 36 d1 44 f6 e9 2a d8 ff ff e8 2c d1 44 f6 90 <0f> 0b 90 e9 1c d8 ff ff e8 1e d1 44 f6 31 c0 48 89 44 24 70 e9 b0
RSP: 0018:ffffc90000007980 EFLAGS: 00010246
RAX: ffffffff8b7cecd4 RBX: 0000000000000000 RCX: ffff8880278d8000
RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
RBP: ffffc90000007bb0 R08: ffffffff8b7cc333 R09: 1ffffffff28a9308
R10: dffffc0000000000 R11: fffffbfff28a9309 R12: ffff888022b20a00
R13: dffffc0000000000 R14: ffff8880439db0c8 R15: ffff8880439d8e40
FS:  00007fd2a3d626c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fd2a3d40f98 CR3: 0000000066182000 CR4: 0000000000350ef0
Call Trace:
 <IRQ>
 ieee80211_rx_napi+0x18a/0x3c0 net/mac80211/rx.c:5506
 ieee80211_rx include/net/mac80211.h:5172 [inline]
 ieee80211_handle_queued_frames+0xe7/0x1e0 net/mac80211/main.c:441
 tasklet_action_common+0x428/0x620 kernel/softirq.c:811
 handle_softirqs+0x2d6/0x9b0 kernel/softirq.c:561
 __do_softirq kernel/softirq.c:595 [inline]
 invoke_softirq kernel/softirq.c:435 [inline]
 __irq_exit_rcu+0xf7/0x220 kernel/softirq.c:662
 irq_exit_rcu+0x9/0x30 kernel/softirq.c:678
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1049 [inline]
 sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1049
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702
RIP: 0010:kasan_check_range+0xc/0x290 mm/kasan/generic.c:188
Code: 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 55 41 57 41 56 41 54 53 <b0> 01 48 85 f6 0f 84 a0 01 00 00 4c 8d 04 37 49 39 f8 0f 82 56 02
RSP: 0018:ffffc9000583f1b0 EFLAGS: 00000246
RAX: ffffffff81fa9ddd RBX: 0000000000000001 RCX: ffffffff81fa9dee
RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffea0000e88cf4
RBP: ffffc9000583f3f8 R08: ffffffff81fa9d5f R09: 1ffffffff28a9308
R10: dffffc0000000000 R11: fffffbfff28a9309 R12: dffffc0000000000
R13: dffffc0000000000 R14: ffffffff81fa9d2e R15: ffffea0000e88cf4
 instrument_atomic_read include/linux/instrumented.h:68 [inline]
 atomic_read include/linux/atomic/atomic-instrumented.h:32 [inline]
 page_ref_count include/linux/page_ref.h:67 [inline]
 page_ref_add_unless include/linux/page_ref.h:237 [inline]
 folio_ref_add_unless include/linux/page_ref.h:248 [inline]
 folio_try_get+0xde/0x350 include/linux/page_ref.h:264
 next_uptodate_folio+0xd3/0x5f0 mm/filemap.c:3638
 filemap_map_pages+0x12d0/0x1900 mm/filemap.c:3821
 do_fault_around mm/memory.c:5361 [inline]
 do_read_fault mm/memory.c:5394 [inline]
 do_fault mm/memory.c:5537 [inline]
 do_pte_missing mm/memory.c:4058 [inline]
 handle_pte_fault mm/memory.c:5900 [inline]
 __handle_mm_fault+0x4acd/0x70f0 mm/memory.c:6043
 handle_mm_fault+0x3e5/0x8d0 mm/memory.c:6212
 faultin_page mm/gup.c:1196 [inline]
 __get_user_pages+0x1a92/0x4140 mm/gup.c:1491
 populate_vma_page_range+0x264/0x330 mm/gup.c:1929
 __mm_populate+0x27a/0x460 mm/gup.c:2032
 mm_populate include/linux/mm.h:3386 [inline]
 vm_mmap_pgoff+0x303/0x430 mm/util.c:580
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fd2a2f8d169
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fd2a3d62038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
RAX: ffffffffffffffda RBX: 00007fd2a31a5fa0 RCX: 00007fd2a2f8d169
RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000400000000000
RBP: 00007fd2a300e2a0 R08: ffffffffffffffff R09: 0000000000000000
R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000000 R14: 00007fd2a31a5fa0 R15: 00007ffca65b6478
 </TASK>
----------------
Code disassembly (best guess):
   0:	0f 0b                	ud2
   2:	66 2e 0f 1f 84 00 00 	cs nopw 0x0(%rax,%rax,1)
   9:	00 00 00
   c:	66 90                	xchg   %ax,%ax
   e:	90                   	nop
   f:	90                   	nop
  10:	90                   	nop
  11:	90                   	nop
  12:	90                   	nop
  13:	90                   	nop
  14:	90                   	nop
  15:	90                   	nop
  16:	90                   	nop
  17:	90                   	nop
  18:	90                   	nop
  19:	90                   	nop
  1a:	90                   	nop
  1b:	90                   	nop
  1c:	90                   	nop
  1d:	90                   	nop
  1e:	66 0f 1f 00          	nopw   (%rax)
  22:	55                   	push   %rbp
  23:	41 57                	push   %r15
  25:	41 56                	push   %r14
  27:	41 54                	push   %r12
  29:	53                   	push   %rbx
* 2a:	b0 01                	mov    $0x1,%al <-- trapping instruction
  2c:	48 85 f6             	test   %rsi,%rsi
  2f:	0f 84 a0 01 00 00    	je     0x1d5
  35:	4c 8d 04 37          	lea    (%rdi,%rsi,1),%r8
  39:	49 39 f8             	cmp    %rdi,%r8
  3c:	0f                   	.byte 0xf
  3d:	82                   	(bad)
  3e:	56                   	push   %rsi
  3f:	02                   	.byte 0x2

Crashes (39):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/02/25 16:15 upstream d082ecbc71e9 d34966d1 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root WARNING in ieee80211_rx_list
2024/12/21 08:31 upstream 499551201b5f d7f584ee .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root WARNING in ieee80211_rx_list
2024/12/01 00:58 upstream c4bb3a2d641c 68914665 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root WARNING in ieee80211_rx_list
2024/11/18 12:45 upstream adc218676eef 571351cb .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root WARNING in ieee80211_rx_list
2024/11/14 09:44 upstream 0a9b9d17f3a7 a8c99394 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root WARNING in ieee80211_rx_list
2024/10/08 23:40 upstream 5b7c893ed5ed 402f1df0 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root WARNING in ieee80211_rx_list
2024/09/16 01:32 upstream d42f7708e27c 08d8a733 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root WARNING in ieee80211_rx_list
2025/09/03 06:44 upstream e6b9dce0aeeb 091ba174 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-386 WARNING in ieee80211_rx_list
2025/04/21 08:51 upstream ac71fabf1567 2a20f901 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-386 WARNING in ieee80211_rx_list
2025/01/05 11:05 upstream ab75170520d4 f3558dbf .config console log report syz / log C [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream WARNING in ieee80211_rx_list
2025/01/05 08:28 upstream ab75170520d4 f3558dbf .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream WARNING in ieee80211_rx_list
2025/01/02 21:26 upstream 0bc21e701a6f d3ccff63 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream WARNING in ieee80211_rx_list
2025/08/30 20:41 upstream 11e7861d680c 807a3b61 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream-386 WARNING in ieee80211_rx_list
2025/06/09 17:51 upstream 19272b37aa4f 4826c28e .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream-386 WARNING in ieee80211_rx_list
2025/06/07 20:45 upstream bdc7f8c5adad 4826c28e .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream-386 WARNING in ieee80211_rx_list
2025/05/11 16:38 upstream 3ce9925823c7 77908e5f .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream-386 WARNING in ieee80211_rx_list
2025/04/17 06:25 upstream cfb2e2c57aef a95239b1 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream-386 WARNING in ieee80211_rx_list
2025/03/28 09:27 upstream 4fa118e5b79f 6c09fb82 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream-386 WARNING in ieee80211_rx_list
2025/09/03 23:31 net c5142df58d5a 96a211bc .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce WARNING in ieee80211_rx_list
2025/08/24 11:20 net ec79003c5f9d bf27483f .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce WARNING in ieee80211_rx_list
2025/08/23 20:33 net ec79003c5f9d bf27483f .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce WARNING in ieee80211_rx_list
2025/08/03 05:05 net 1dbf1d590d10 7368264b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce WARNING in ieee80211_rx_list
2025/07/28 13:36 net afd8c2c9e2e2 fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce WARNING in ieee80211_rx_list
2025/07/07 15:13 net b9fd9888a565 4f67c4ae .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce WARNING in ieee80211_rx_list
2025/04/26 07:03 net 49ba1ca2e0cc c6b4fb39 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce WARNING in ieee80211_rx_list
2025/04/10 12:19 net 29d261466fa6 988b336c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce WARNING in ieee80211_rx_list
2025/03/12 16:09 net d2b9d97e89c7 ee70e6db .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce WARNING in ieee80211_rx_list
2025/02/23 04:05 net 28b04731a38c d34966d1 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce WARNING in ieee80211_rx_list
2025/02/15 06:47 net 054e61bb1de4 40a34ec9 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce WARNING in ieee80211_rx_list
2024/12/04 08:29 net af8edaeddbc5 b50eb251 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce WARNING in ieee80211_rx_list
2024/09/04 19:17 net b6ecc6620376 9d47f20a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce WARNING in ieee80211_rx_list
2025/07/28 18:55 net-next fa582ca7e187 c4a95487 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce WARNING in ieee80211_rx_list
2025/03/23 18:12 net-next bfc17c165835 4e8d3850 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce WARNING in ieee80211_rx_list
2025/03/07 13:09 net-next 865eddcf0afb 7e3bd60d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce WARNING in ieee80211_rx_list
2025/03/07 13:07 net-next 865eddcf0afb 7e3bd60d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce WARNING in ieee80211_rx_list
2025/03/03 12:39 net-next f77f12010f67 c3901742 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce WARNING in ieee80211_rx_list
2025/02/23 11:46 net-next b66e19dcf684 d34966d1 .config strace log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce WARNING in ieee80211_rx_list
2024/11/14 21:50 net-next a71c69f51d11 77f3eeb7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce WARNING in ieee80211_rx_list
2024/10/17 05:15 net-next 6d858708d465 666f77ed .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce WARNING in ieee80211_rx_list
* Struck through repros no longer work on HEAD.