syzbot


general protection fault in txEnd

Status: upstream: reported C repro on 2022/12/23 23:37
Subsystems: jfs
[Documentation on labels]
Reported-by: syzbot+1d096d31de6a0491b55e@syzkaller.appspotmail.com
First crash: 486d, last: 1d16h
Cause bisection: failed (error log, bisect log)
  
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] [jfs?] [fat?] general protection fault in txEnd 1 (2) 2023/03/30 10:03
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.14 general protection fault in txEnd jfs fat C 1 412d 479d 0/1 upstream: reported C repro on 2022/12/27 07:15
linux-5.15 KASAN: use-after-free Write in txEnd origin:upstream C 10 1d17h 65d 0/3 upstream: reported C repro on 2024/02/14 01:53
linux-6.1 KASAN: use-after-free Write in txEnd C 10 15h22m 38d 0/3 upstream: reported C repro on 2024/03/11 13:53
Last patch testing requests (10)
Created Duration User Patch Repo Result
2024/03/25 16:19 18m retest repro upstream error OK
2024/03/25 16:19 48m retest repro upstream error OK
2024/03/25 16:19 18m retest repro upstream error OK
2024/03/25 16:19 18m retest repro upstream error OK
2024/03/25 16:19 25m retest repro upstream error OK
2024/03/25 16:03 18m retest repro upstream report log
2023/12/30 11:24 21m retest repro linux-next OK log
2023/12/30 11:24 22m retest repro linux-next OK log
2023/12/16 09:47 18m retest repro upstream report log
2023/12/02 04:14 16m retest repro upstream report log
Fix bisection attempts (4)
Created Duration User Patch Repo Result
2023/06/22 04:33 56m bisect fix upstream job log (0) log
2023/05/21 20:24 24m bisect fix upstream job log (0) log
2023/04/21 04:00 52m bisect fix upstream job log (0) log
2023/03/21 23:15 26m bisect fix upstream job log (0) log

Sample crash report:
read_mapping_page failed!
ERROR: (device loop0): txCommit: 
general protection fault, probably for non-canonical address 0xdffffc0000000029: 0000 [#1] PREEMPT SMP KASAN NOPTI
KASAN: null-ptr-deref in range [0x0000000000000148-0x000000000000014f]
CPU: 1 PID: 5077 Comm: syz-executor138 Not tainted 6.8.0-rc7-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
RIP: 0010:txEnd+0x1e5/0x560 fs/jfs/jfs_txnmgr.c:539
Code: 00 84 c0 0f 85 d4 02 00 00 66 41 89 1e 41 0f b7 c5 89 05 fe 86 3b 11 4c 8b 74 24 08 49 8d 9e 4c 01 00 00 48 89 d8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 c3 02 00 00 8b 2b 8d 75 ff 89 33 31 ff
RSP: 0018:ffffc90004177990 EFLAGS: 00010213
RAX: 0000000000000029 RBX: 000000000000014c RCX: ffff88801ef7bb80
RDX: ffff88801ef7bb80 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 1ffff920004c2227 R08: ffffffff832145b7 R09: 1ffffffff2591a8d
R10: dffffc0000000000 R11: fffffbfff2591a8e R12: dffffc0000000000
R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000110
FS:  00007f106a3d86c0(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f106a3d8d58 CR3: 000000007c4ee000 CR4: 0000000000350ef0
Call Trace:
 <TASK>
 add_missing_indices fs/jfs/jfs_dtree.c:2663 [inline]
 jfs_readdir+0x28f1/0x4660 fs/jfs/jfs_dtree.c:3009
 wrap_directory_iterator+0x96/0xe0 fs/readdir.c:67
 iterate_dir+0x53b/0x6f0 fs/readdir.c:110
 __do_sys_getdents fs/readdir.c:326 [inline]
 __se_sys_getdents+0x1ef/0x4d0 fs/readdir.c:311
 do_syscall_64+0xfb/0x240
 entry_SYSCALL_64_after_hwframe+0x6f/0x77
RIP: 0033:0x7f106a43cc59
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f106a3d8218 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
RAX: ffffffffffffffda RBX: 00007f106a4ca6d8 RCX: 00007f106a43cc59
RDX: 0000000000001000 RSI: 0000000020006600 RDI: 0000000000000005
RBP: 00007f106a4ca6d0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f106a497110
R13: 0030656c69662f2e R14: 00007ffd8e069d20 R15: 6573726168636f69
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:txEnd+0x1e5/0x560 fs/jfs/jfs_txnmgr.c:539
Code: 00 84 c0 0f 85 d4 02 00 00 66 41 89 1e 41 0f b7 c5 89 05 fe 86 3b 11 4c 8b 74 24 08 49 8d 9e 4c 01 00 00 48 89 d8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 c3 02 00 00 8b 2b 8d 75 ff 89 33 31 ff
RSP: 0018:ffffc90004177990 EFLAGS: 00010213
RAX: 0000000000000029 RBX: 000000000000014c RCX: ffff88801ef7bb80
RDX: ffff88801ef7bb80 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 1ffff920004c2227 R08: ffffffff832145b7 R09: 1ffffffff2591a8d
R10: dffffc0000000000 R11: fffffbfff2591a8e R12: dffffc0000000000
R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000110
FS:  00007f106a3d86c0(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f106a3d8d58 CR3: 000000007c4ee000 CR4: 0000000000350ef0
----------------
Code disassembly (best guess):
   0:	00 84 c0 0f 85 d4 02 	add    %al,0x2d4850f(%rax,%rax,8)
   7:	00 00                	add    %al,(%rax)
   9:	66 41 89 1e          	mov    %bx,(%r14)
   d:	41 0f b7 c5          	movzwl %r13w,%eax
  11:	89 05 fe 86 3b 11    	mov    %eax,0x113b86fe(%rip)        # 0x113b8715
  17:	4c 8b 74 24 08       	mov    0x8(%rsp),%r14
  1c:	49 8d 9e 4c 01 00 00 	lea    0x14c(%r14),%rbx
  23:	48 89 d8             	mov    %rbx,%rax
  26:	48 c1 e8 03          	shr    $0x3,%rax
* 2a:	42 0f b6 04 20       	movzbl (%rax,%r12,1),%eax <-- trapping instruction
  2f:	84 c0                	test   %al,%al
  31:	0f 85 c3 02 00 00    	jne    0x2fa
  37:	8b 2b                	mov    (%rbx),%ebp
  39:	8d 75 ff             	lea    -0x1(%rbp),%esi
  3c:	89 33                	mov    %esi,(%rbx)
  3e:	31 ff                	xor    %edi,%edi

Crashes (76):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/03/04 18:19 upstream 90d35da658da 3717835d .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kasan-gce-root general protection fault in txEnd
2023/11/18 04:08 upstream 6bc40e44f1dd cb976f63 .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-upstream-fs general protection fault in txEnd
2023/07/30 06:52 upstream 12214540ad87 92476829 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kasan-gce-selinux-root general protection fault in txEnd
2023/01/27 16:47 upstream 7c46948a6e9c 9dfcf09c .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kasan-gce-root general protection fault in txEnd
2022/12/19 23:27 upstream aeba12b26c79 c52b2efb .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-upstream-fs general protection fault in txEnd
2024/03/11 16:01 upstream e8f897f4afef 6ee49f2e .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/27 02:15 upstream d206a76d7d27 edd6a5e9 .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kasan-gce-smack-root KASAN: slab-use-after-free Write in txEnd
2024/02/16 23:39 upstream 0f1dd5e91e2b 578f7538 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/15 08:13 upstream 8d3dea210042 d9b1cdd5 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/16 22:30 upstream 0f1dd5e91e2b 578f7538 .config console log report syz C [disk image (non-bootable)] [vmlinux] [kernel image] [mounted in repro] ci-qemu-upstream KASAN: slab-use-after-free Write in txEnd
2024/04/12 13:09 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci fec50db7033e 27de0a5c .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-gce-arm64 KASAN: slab-use-after-free Write in txEnd
2024/02/16 19:39 upstream 0f1dd5e91e2b 578f7538 .config console log report syz [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2023/08/01 10:14 linux-next a73466257270 2a0d0f29 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-linux-next-kasan-gce-root general protection fault in txEnd
2023/02/19 21:53 linux-next c068f40300a0 bcdf85f8 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-linux-next-kasan-gce-root general protection fault in txEnd
2024/01/17 03:29 upstream 052d534373b7 2a7bcc7f .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs general protection fault in txEnd
2024/01/17 01:05 upstream 052d534373b7 2a7bcc7f .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs general protection fault in txEnd
2024/01/16 22:32 upstream 052d534373b7 2a7bcc7f .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs general protection fault in txEnd
2024/01/16 17:29 upstream 052d534373b7 2a7bcc7f .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs general protection fault in txEnd
2024/01/16 16:07 upstream 052d534373b7 2a7bcc7f .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs general protection fault in txEnd
2024/01/16 06:17 upstream 052d534373b7 2a7bcc7f .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs general protection fault in txEnd
2024/01/15 21:29 upstream 052d534373b7 2a7bcc7f .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs general protection fault in txEnd
2024/01/14 20:49 upstream 052d534373b7 551587c1 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs general protection fault in txEnd
2023/11/18 03:41 upstream 6bc40e44f1dd cb976f63 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs general protection fault in txEnd
2023/09/22 16:07 upstream 27bbf45eae9c 0b6a67ac .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs general protection fault in txEnd
2023/07/04 03:18 upstream a901a3568fd2 6e553898 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root general protection fault in txEnd
2024/04/12 04:03 linux-next 4118d9533ff3 478efa7f .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root general protection fault in txEnd
2024/01/14 21:03 linux-next 8d04a7e2ee3f 551587c1 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root general protection fault in txEnd
2024/04/15 09:53 upstream fe46a7dd189e c8349e48 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/04/07 14:34 upstream fe46a7dd189e ca620dd8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-badwrites-root KASAN: slab-use-after-free Write in txEnd
2024/03/10 01:04 upstream 09e5c48fea17 6ee49f2e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/03/09 08:51 upstream 10d48d70e82d 6ee49f2e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/03/04 15:32 upstream 90d35da658da 3717835d .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/03/03 05:18 upstream 04b8076df253 25905f5d .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/29 09:25 upstream e326df53af00 352ab904 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/28 21:03 upstream e326df53af00 55d6f11d .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/28 09:57 upstream cf1182944c7c d367cbe5 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/27 05:12 upstream 45ec2f5f6ed3 05e69c83 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/25 09:06 upstream ab0a97cffa0b 8d446f15 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/23 09:33 upstream ffd2cb6b718e 8d446f15 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/22 06:56 upstream 39133352cbed 345111b5 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/21 19:00 upstream 39133352cbed 345111b5 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/19 20:25 upstream b401b621758e 3af7dd65 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/19 09:01 upstream b401b621758e 578f7538 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/18 23:39 upstream b401b621758e 578f7538 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/16 17:15 upstream 4f5e5092fdbf 578f7538 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root KASAN: slab-use-after-free Write in txEnd
2024/02/15 08:42 upstream 8d3dea210042 d9b1cdd5 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/15 00:53 upstream 8d3dea210042 d9b1cdd5 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/14 17:27 upstream 7e90b5c295ec 6a8ec742 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root KASAN: slab-use-after-free Write in txEnd
2024/02/13 08:14 upstream c664e16bb1ba 77b23aa1 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/11 18:50 upstream 7521f258ea30 77b23aa1 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root KASAN: slab-use-after-free Write in txEnd
2024/02/11 18:30 upstream 7521f258ea30 77b23aa1 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/10 17:57 upstream 4a7bbe7519b6 77b23aa1 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/02/07 12:03 upstream 6d280f4d760e 6404acf9 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root KASAN: slab-use-after-free Write in txEnd
2024/02/05 17:09 upstream 54be6c6c5ae8 e23e8c20 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/01/31 05:58 upstream 2a6526c4f389 7f400fcb .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/01/28 14:23 upstream 8a696a29c690 cc4a4020 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: slab-use-after-free Write in txEnd
2024/04/12 06:23 upstream 00dcf5d862e8 27de0a5c .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream KASAN: slab-use-after-free Write in txEnd
2024/01/07 17:41 upstream 52b1853b080a d0304e9c .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream KASAN: slab-use-after-free Read in txEnd
2023/10/05 04:49 upstream ba7d997a2a29 b7d7ff54 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream KASAN: slab-use-after-free Write in txEnd
2024/04/17 03:54 upstream 96fca68c4fbf 18f6e127 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream-386 KASAN: slab-use-after-free Write in txEnd
2024/04/14 20:54 upstream 72374d71c315 c8349e48 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream-386 KASAN: slab-use-after-free Write in txEnd
2024/04/14 11:29 upstream 7efd0a74039f c8349e48 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream-386 KASAN: slab-use-after-free Write in txEnd
2024/04/11 13:07 upstream e8c39d0f57f3 3023abf0 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream-386 KASAN: slab-use-after-free Write in txEnd
2024/03/28 19:35 upstream 8d025e2092e2 ceaf7ddd .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream-386 KASAN: slab-use-after-free Read in txEnd
2024/03/26 17:35 upstream 928a87efa423 454571b6 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream-386 KASAN: slab-use-after-free Write in txEnd
2024/03/04 22:50 upstream 90d35da658da 5fc53669 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream-386 KASAN: slab-use-after-free Write in txEnd
2024/04/16 06:40 linux-next 6bd343537461 0d592ce4 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root KASAN: slab-use-after-free Write in txEnd
2024/04/04 13:12 linux-next 2b3d5988ae2c 0ee3535e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root KASAN: slab-use-after-free Write in txEnd
2024/04/04 07:32 linux-next 727900b675b7 51c4dcff .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root KASAN: slab-use-after-free Write in txEnd
2024/02/11 18:58 linux-next 445a555e0623 77b23aa1 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root KASAN: slab-use-after-free Write in txEnd
2024/02/11 00:38 linux-next 445a555e0623 77b23aa1 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root KASAN: slab-use-after-free Write in txEnd
2024/04/17 16:35 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci b5d2afe8745b bd38b692 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 KASAN: slab-use-after-free Write in txEnd
2024/04/03 04:21 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 707081b61156 7925100d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 KASAN: slab-use-after-free Write in txEnd
2024/02/12 02:37 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci f735966ee23c 77b23aa1 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 KASAN: slab-use-after-free Write in txEnd
* Struck through repros no longer work on HEAD.