syzbot

 sign-in | mailing list | source | docs
🐞 Open [1641]
Subsystems
🐞 Fixed [6108]
🐞 Invalid [15307]
Missing Backports [171]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

BUG: unable to handle kernel paging request in trans_pgd_create_copy

Status: upstream: reported C repro on 2024/04/13 08:53
Subsystems: arm
[Documentation on labels]
Reported-by: syzbot+2d1f5a94167d430a3bd7@syzkaller.appspotmail.com
First crash: 352d, last: 46d
Discussions (6)
Title Replies (including bot) Last reply
[syzbot] Monthly arm report (Dec 2024) 0 (1) 2024/12/05 09:08
[syzbot] Monthly arm report (Nov 2024) 0 (1) 2024/11/04 08:49
[syzbot] Monthly arm report (Sep 2024) 0 (1) 2024/09/02 13:03
[syzbot] Monthly arm report (May 2024) 0 (1) 2024/05/31 06:50
[syzbot] Monthly arm report (Apr 2024) 0 (1) 2024/04/30 07:12
[syzbot] [arm?] BUG: unable to handle kernel paging request in trans_pgd_create_copy 0 (1) 2024/04/13 08:53
Last patch testing requests (3)
Created Duration User Patch Repo Result
2025/02/23 18:34 27m retest repro upstream OK log
2025/02/23 18:34 28m retest repro upstream OK log
2025/02/23 18:34 26m retest repro upstream OK log

Sample crash report:
Unable to handle kernel paging request at virtual address ffffffffc0000000
Mem abort info:
  ESR = 0x0000000096000006
  EC = 0x25: DABT (current EL), IL = 32 bits
  SET = 0, FnV = 0
  EA = 0, S1PTW = 0
  FSC = 0x06: level 2 translation fault
Data abort info:
  ISV = 0, ISS = 0x00000006, ISS2 = 0x00000000
  CM = 0, WnR = 0, TnD = 0, TagAccess = 0
  GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0
swapper pgtable: 4k pages, 52-bit VAs, pgdp=00000000428a7000
[ffffffffc0000000] pgd=1000000042dd7003, p4d=0000000042ce4403, pud=0000000042ce5403, pmd=0000000000000000
Internal error: Oops: 0000000096000006 [#1] PREEMPT SMP
Modules linked in:
CPU: 0 UID: 0 PID: 3722 Comm: syz.1.115 Not tainted 6.14.0-rc1-syzkaller-00235-g9946eaf552b1 #0
Hardware name: linux,dummy-virt (DT)
pstate: 81402009 (Nzcv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)
pc : copy_pud arch/arm64/mm/trans_pgd.c:129 [inline]
pc : copy_p4d arch/arm64/mm/trans_pgd.c:171 [inline]
pc : copy_page_tables arch/arm64/mm/trans_pgd.c:190 [inline]
pc : trans_pgd_create_copy+0x214/0x844 arch/arm64/mm/trans_pgd.c:217
lr : trans_alloc arch/arm64/mm/trans_pgd.c:31 [inline]
lr : trans_pgd_create_copy+0x34/0x844 arch/arm64/mm/trans_pgd.c:210
sp : ffff80008a7e3c20
x29: ffff80008a7e3c20 x28: fff0ffffffffffff x27: ffff80008a7e3d68
x26: ffff80008a7e3d68 x25: ffffffffc0000000 x24: fff000007fdff000
x23: fff1000000000000 x22: ffff800082b33000 x21: fff0000000000000
x20: fff0008000000000 x19: ffff800000000000 x18: 0000000000000000
x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000001
x14: 0000000000000000 x13: 0000000000000002 x12: 000000000007046a
x11: 0000000000000000 x10: 1eebec1a6a53c7e1 x9 : 00000000000000f2
x8 : f2f000000cf04000 x7 : 0000000000000000 x6 : 000000004cf03fff
x5 : 000000004cf03000 x4 : ffff7fffffffffff x3 : f2f000000cf03000
x2 : 00000000bfdff000 x1 : fff0ffffffffffff x0 : 18000000bfdfe403
Call trace:
 copy_p4d arch/arm64/mm/trans_pgd.c:169 [inline] (P)
 copy_page_tables arch/arm64/mm/trans_pgd.c:190 [inline] (P)
 trans_pgd_create_copy+0x214/0x844 arch/arm64/mm/trans_pgd.c:217 (P)
 machine_kexec_post_load+0x158/0x2c0 arch/arm64/kernel/machine_kexec.c:135
 do_kexec_load+0x28c/0x2e4 kernel/kexec.c:162
 __do_sys_kexec_load kernel/kexec.c:261 [inline]
 __se_sys_kexec_load kernel/kexec.c:242 [inline]
 __arm64_sys_kexec_load+0x9c/0xe8 kernel/kexec.c:242
 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]
 invoke_syscall+0x48/0x110 arch/arm64/kernel/syscall.c:49
 el0_svc_common.constprop.0+0x40/0xe0 arch/arm64/kernel/syscall.c:132
 do_el0_svc+0x1c/0x28 arch/arm64/kernel/syscall.c:151
 el0_svc+0x30/0xe0 arch/arm64/kernel/entry-common.c:744
 el0t_64_sync_handler+0x10c/0x138 arch/arm64/kernel/entry-common.c:762
 el0t_64_sync+0x1a4/0x1a8 arch/arm64/kernel/entry.S:600
Code: f900031b a94153f3 14000182 b4000820 (f9400320) 
---[ end trace 0000000000000000 ]---
----------------
Code disassembly (best guess):
   0:	f900031b 	str	x27, [x24]
   4:	a94153f3 	ldp	x19, x20, [sp, #16]
   8:	14000182 	b	0x610
   c:	b4000820 	cbz	x0, 0x110
* 10:	f9400320 	ldr	x0, [x25] <-- trapping instruction

Crashes (1169):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/02/09 18:25 upstream 9946eaf552b1 ef44b750 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/02/09 17:34 upstream 9946eaf552b1 ef44b750 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/02/09 17:07 upstream 9946eaf552b1 ef44b750 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/02/09 15:30 upstream 9946eaf552b1 ef44b750 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/02/06 09:29 upstream 92514ef226f5 577d049b .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/02/06 09:26 upstream 92514ef226f5 577d049b .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/02/06 08:15 upstream 92514ef226f5 577d049b .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/02/04 14:15 upstream 0de63bb7d919 8f267cef .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/02/04 13:53 upstream 0de63bb7d919 8f267cef .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/02/02 17:24 upstream a86bf2283d2c 568559e4 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/02/02 16:21 upstream a86bf2283d2c 568559e4 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/02/02 16:18 upstream a86bf2283d2c 568559e4 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/02/02 15:14 upstream a86bf2283d2c 568559e4 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/25 19:22 upstream b46c89c08f41 9fbd772e .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/25 18:57 upstream b46c89c08f41 9fbd772e .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/25 17:25 upstream b46c89c08f41 9fbd772e .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/19 16:38 upstream fda5e3f28400 f2cb035c .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/16 02:55 upstream 619f0b6fad52 968edaf4 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/12 15:48 upstream b62cef9a5c67 6dbc6a9b .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/12 13:33 upstream b62cef9a5c67 6dbc6a9b .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/12 11:07 upstream b62cef9a5c67 6dbc6a9b .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/12 09:49 upstream b62cef9a5c67 6dbc6a9b .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/11 19:24 upstream 77a903cd8e5a 6dbc6a9b .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/11 18:05 upstream 77a903cd8e5a 6dbc6a9b .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/11 17:41 upstream 77a903cd8e5a 6dbc6a9b .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/11 16:39 upstream 77a903cd8e5a 6dbc6a9b .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/08 14:06 upstream 09a0fa92e5b4 f3558dbf .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/07 12:48 upstream fbfd64d25c7a f3558dbf .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/06 09:34 upstream 9244696b34f2 f3558dbf .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/06 09:23 upstream 9244696b34f2 f3558dbf .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/05 15:47 upstream ab75170520d4 f3558dbf .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/05 09:05 upstream ab75170520d4 f3558dbf .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/04 14:22 upstream 63676eefb7a0 f3558dbf .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/04 13:59 upstream 63676eefb7a0 f3558dbf .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/03 08:26 upstream 0bc21e701a6f d3ccff63 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/02 09:40 upstream 56e6a3499e14 d3ccff63 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/01 10:17 upstream ccb98ccef0e5 d3ccff63 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/01 08:50 upstream ccb98ccef0e5 d3ccff63 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/01 08:50 upstream ccb98ccef0e5 d3ccff63 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2025/01/01 07:29 upstream ccb98ccef0e5 d3ccff63 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2024/12/31 11:06 upstream ccb98ccef0e5 d3ccff63 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2024/12/30 20:24 upstream fc033cf25e61 d3ccff63 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2024/10/29 13:45 upstream e42b1a9a2557 66aeb999 .config console log report syz / log C [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2024/07/20 02:33 upstream 720261cfc732 890ce4f3 .config console log report syz / log C [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
2024/04/10 06:23 upstream 2c71fdf02a95 171ec371 .config console log report syz C [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm64-mte BUG: unable to handle kernel paging request in trans_pgd_create_copy
* Struck through repros no longer work on HEAD.