syzbot

 sign-in | mailing list | source | docs | 🏰
🐞 Open [1349]
Subsystems
🐞 Fixed [7053]
🐞 Invalid [18473]
Missing Backports [222]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
✨ AI
💬 Send us feedback

kernel BUG in __page_table_check_zero (3)

Status: upstream: reported on 2026/02/18 21:59
Subsystems: mm
[Documentation on labels]
Reported-by: syzbot+2b5fe617654be3d8848b@syzkaller.appspotmail.com
First crash: 57d, last: 4h29m
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] [mm?] kernel BUG in __page_table_check_zero (3) 0 (1) 2026/02/18 21:59
Similar bugs (3)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream kernel BUG in __page_table_check_zero (2) mm -1 C error done 32 519d 529d 0/29 auto-obsoleted due to no activity on 2025/01/19 02:16
linux-6.1 kernel BUG in __page_table_check_zero origin:lts-only -1 C inconclusive 3 568d 1029d 0/3 upstream: reported C repro on 2023/06/18 21:38
upstream kernel BUG in __page_table_check_zero usb -1 C error done 213 570d 1057d 28/29 fixed on 2024/10/22 13:24

Sample crash report:
------------[ cut here ]------------
kernel BUG at [] mm/page_table_check.c:142!
Kernel BUG [#1]
Modules linked in:
CPU: 0 UID: 0 PID: 4137 Comm: syz.0.106 Not tainted syzkaller #0 PREEMPT 
Hardware name: riscv-virtio,qemu (DT)
epc : __page_table_check_zero+0x396/0x544 mm/page_table_check.c:142
 ra : __page_table_check_zero+0x396/0x544 mm/page_table_check.c:142
epc : ffffffff80c4e452 ra : ffffffff80c4e452 sp : ffff8f800a9c6a70
 gp : ffffffff8a22a0c0 tp : ffffaf801c774f80 t0 : ffff8f800a9c6a20
 t1 : fffff5ef0272d009 t2 : 1ffff1f001538dcc s0 : ffff8f800a9c6ae0
 s1 : ffffaf8013968048 a0 : 0000000000000005 a1 : 0000000000000000
 a2 : 0000000000000002 a3 : ffffffff80c4e452 a4 : 0000000000000000
 a5 : ffffaf801c775f80 a6 : 0000000000000003 a7 : ffffaf801396804b
 s2 : 0000000000000001 s3 : 0000000000000000 s4 : ffffaf8013968000
 s5 : dfffffff00000000 s6 : 00000000000b4800 s7 : 0000000000000200
 s8 : 0000000000000009 s9 : 0000000000007fff s10: fffffffef1468fb0
 s11: ffffffff8a347d80 t3 : 0000000000000001 t4 : fffff5ef0272d009
 t5 : fffff5ef0272d00a t6 : 0000000000000002 ssp : 0000000000000000
status: 0000000200000120 badaddr: ffffffff80c4e452 cause: 0000000000000003
[<ffffffff80c4e452>] __page_table_check_zero+0x396/0x544 mm/page_table_check.c:142
[<ffffffff80ac124c>] page_table_check_free include/linux/page_table_check.h:46 [inline]
[<ffffffff80ac124c>] __free_pages_prepare mm/page_alloc.c:1434 [inline]
[<ffffffff80ac124c>] free_unref_folios+0xa58/0x1ef4 mm/page_alloc.c:3040
[<ffffffff808e5128>] folios_put_refs+0x41c/0x61c mm/swap.c:1002
[<ffffffff80b0d918>] free_pages_and_swap_cache+0x29c/0x480 mm/swap_state.c:426
[<ffffffff80a2d8d0>] __tlb_batch_free_encoded_pages+0xe4/0x25c mm/mmu_gather.c:138
[<ffffffff80a2f2e8>] tlb_batch_pages_flush mm/mmu_gather.c:151 [inline]
[<ffffffff80a2f2e8>] tlb_flush_mmu_free mm/mmu_gather.c:398 [inline]
[<ffffffff80a2f2e8>] tlb_flush_mmu+0xdc/0x5f8 mm/mmu_gather.c:405
[<ffffffff809ecb98>] zap_pte_range mm/memory.c:1968 [inline]
[<ffffffff809ecb98>] zap_pmd_range mm/memory.c:2021 [inline]
[<ffffffff809ecb98>] zap_pud_range mm/memory.c:2049 [inline]
[<ffffffff809ecb98>] zap_p4d_range mm/memory.c:2070 [inline]
[<ffffffff809ecb98>] unmap_page_range+0x1508/0x4710 mm/memory.c:2091
[<ffffffff809efede>] unmap_single_vma+0x13e/0x230 mm/memory.c:2133
[<ffffffff809f022a>] unmap_vmas+0x25a/0x4e4 mm/memory.c:2171
[<ffffffff80a29d7e>] exit_mmap+0x1fa/0xccc mm/mmap.c:1302
[<ffffffff8013fbaa>] __mmput+0x106/0x3d0 kernel/fork.c:1175
[<ffffffff8013fee8>] mmput+0x74/0x88 kernel/fork.c:1198
[<ffffffff80160356>] exit_mm kernel/exit.c:581 [inline]
[<ffffffff80160356>] do_exit+0x802/0x2ac4 kernel/exit.c:964
[<ffffffff80162b42>] do_group_exit+0xca/0x258 kernel/exit.c:1118
[<ffffffff8019c472>] get_signal+0x1f7e/0x224c kernel/signal.c:3034
[<ffffffff80071e6e>] arch_do_signal_or_restart+0x632/0x1ddc arch/riscv/kernel/signal.c:534
[<ffffffff803d0a7e>] __exit_to_user_mode_loop kernel/entry/common.c:64 [inline]
[<ffffffff803d0a7e>] exit_to_user_mode_loop+0x8e/0x878 kernel/entry/common.c:98
[<ffffffff8642fe9c>] __exit_to_user_mode_prepare include/linux/irq-entry-common.h:226 [inline]
[<ffffffff8642fe9c>] syscall_exit_to_user_mode_prepare include/linux/irq-entry-common.h:256 [inline]
[<ffffffff8642fe9c>] syscall_exit_to_user_mode include/linux/entry-common.h:325 [inline]
[<ffffffff8642fe9c>] do_trap_ecall_u+0x4e0/0x680 arch/riscv/kernel/traps.c:357
[<ffffffff8645a152>] handle_exception+0x15e/0x16a arch/riscv/kernel/entry.S:232
Code: 4b00 8526 c0ef e7bf 8a2a b791 d097 ff8c 80e7 49e0 (9002) d097 
---[ end trace 0000000000000000 ]---
----------------
Code disassembly (best guess):
   0:	4b00                	lw	s0,16(a4)
   2:	8526                	mv	a0,s1
   4:	e7bfc0ef          	jal	0xffffffffffffce7e
   8:	8a2a                	mv	s4,a0
   a:	b791                	j	0xffffffffffffff4e
   c:	ff8cd097          	auipc	ra,0xff8cd
  10:	49e080e7          	jalr	1182(ra) # 0xff8cd4aa
* 14:	9002                	ebreak <-- trapping instruction
  16:	97d0                	.short	0xd097

Crashes (177):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2026/04/13 01:27 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/13 00:08 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/12 20:25 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/12 18:57 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/12 14:43 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/12 09:18 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/12 04:32 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/12 01:39 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/11 23:30 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/11 16:40 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/11 12:19 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/11 06:13 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/11 04:20 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/11 03:16 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/11 00:05 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/10 21:18 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/10 09:48 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/10 06:32 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 9b3a2be84803 38c8e246 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/07 05:28 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next e7963e13f9ea 4440e7c2 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/07 02:36 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next e7963e13f9ea 4440e7c2 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/06 06:37 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next e7963e13f9ea 4440e7c2 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/05 21:56 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next e7963e13f9ea 4440e7c2 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/05 13:09 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next e7963e13f9ea 4440e7c2 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/04 23:39 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next e7963e13f9ea 4440e7c2 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/04 22:22 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next e7963e13f9ea 4440e7c2 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/04 07:41 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next c0368008b37d 4440e7c2 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/03 17:47 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next b335bc5892a0 4440e7c2 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/03 10:16 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next b335bc5892a0 4440e7c2 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/02 23:13 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next b335bc5892a0 8b15d4ae .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/04/01 23:52 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next b335bc5892a0 0285fe54 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/31 11:43 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next b335bc5892a0 d0af506e .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/29 12:18 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next b335bc5892a0 b5ceaad2 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/29 04:16 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next b335bc5892a0 b5ceaad2 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/28 01:33 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next b335bc5892a0 158c21af .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/28 00:32 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next b335bc5892a0 158c21af .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/27 10:05 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next b335bc5892a0 4b3d9a38 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/26 22:42 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next b335bc5892a0 4b3d9a38 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/24 23:01 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next b335bc5892a0 74e70d19 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/23 09:25 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 18be4ca5cb4e 5b92003d .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/23 04:09 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 18be4ca5cb4e 5b92003d .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/23 02:18 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 18be4ca5cb4e 5b92003d .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/22 11:16 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 18be4ca5cb4e 5b92003d .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/22 09:42 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 18be4ca5cb4e 5b92003d .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/21 22:38 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 18be4ca5cb4e 5b92003d .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/16 06:35 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 18be4ca5cb4e ee8d34d6 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/15 21:40 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 18be4ca5cb4e ee8d34d6 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/15 20:38 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 18be4ca5cb4e ee8d34d6 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/03/09 08:50 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 18be4ca5cb4e 5cb44a80 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/02/16 13:32 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 18be4ca5cb4e 1e62d198 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
2026/02/14 21:51 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git for-next 18be4ca5cb4e 1e62d198 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 kernel BUG in __page_table_check_zero
* Struck through repros no longer work on HEAD.