syzbot |
sign-in | mailing list | source | docs |
| Kernel | Title | Repro | Cause bisect | Fix bisect | Count | Last | Reported | Patched | Status |
|---|---|---|---|---|---|---|---|---|---|
| upstream | general protection fault in simple_recursive_removal (2) usb fs | C | error | error | 19 | 1018d | 1132d | 0/28 | auto-obsoleted due to no activity on 2022/11/26 06:52 |
| upstream | general protection fault in simple_recursive_removal fs | 2 | 1893d | 1948d | 0/28 | closed as dup on 2020/06/28 17:09 | |||
| upstream | general protection fault in simple_recursive_removal (3) fs | 5 | 549d | 553d | 0/28 | auto-obsoleted due to no activity on 2024/02/08 11:24 |
bcachefs (loop0): check_indirect_extents... done
bcachefs (loop0): check_dirents... done
bcachefs (loop0): check_xattrs... done
bcachefs (loop0): check_root... done
bcachefs (loop0): check_unreachable_inodes... done
bcachefs (loop0): check_subvolume_structure... done
bcachefs (loop0): check_directory_structure... done
bcachefs (loop0): check_nlinks... done
bcachefs (loop0): resume_logged_ops... done
bcachefs (loop0): delete_dead_inodes... done
bcachefs (loop0): set_fs_needs_rebalance... done
bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
bcachefs (loop0): check_alloc_info... done
bcachefs (loop0): check_lrus... done
bcachefs (loop0): check_btree_backpointers... done
bcachefs (loop0): check_backpointers_to_extents... done
bcachefs (loop0): check_extents_to_backpointers... done
bcachefs (loop0): check_alloc_to_lru_refs... done
bcachefs (loop0): bucket_gens_init... done
bcachefs (loop0): check_snapshot_trees... done
bcachefs (loop0): check_snapshots... done
bcachefs (loop0): check_subvols... done
bcachefs (loop0): check_subvol_children... done
bcachefs (loop0): delete_dead_snapshots... done
bcachefs (loop0): check_inodes... done
bcachefs (loop0): check_extents... done
bcachefs (loop0): check_indirect_extents... done
bcachefs (loop0): check_dirents... done
bcachefs (loop0): check_xattrs... done
bcachefs (loop0): check_root... done
bcachefs (loop0): check_unreachable_inodes... done
bcachefs (loop0): check_subvolume_structure... done
bcachefs (loop0): check_directory_structure... done
bcachefs (loop0): check_nlinks... done
bcachefs (loop0): resume_logged_ops... done
bcachefs (loop0): delete_dead_inodes... done
bcachefs (loop0): set_fs_needs_rebalance... done
bcachefs (loop0): done starting filesystem
bcachefs (loop0): going read-only
bcachefs (loop0): finished waiting for writes to stop
bcachefs (loop0): flushing journal and stopping allocators, journal seq 30
bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 30
bcachefs (loop0): clean shutdown complete, journal seq 31
bcachefs (loop0): marking filesystem clean
=======================================================
WARNING: The mand mount option has been deprecated and
and is ignored by this kernel. Remove the mand
option from the mount to silence this warning.
=======================================================
bcachefs (loop0): shutting down
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000029: 0000 [#1] SMP KASAN NOPTI
KASAN: null-ptr-deref in range [0x0000000000000148-0x000000000000014f]
CPU: 0 UID: 0 PID: 5328 Comm: syz.0.0 Not tainted 6.14.0-syzkaller-11125-g609706855d90 #0 PREEMPT(full)
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
RIP: 0010:kasan_byte_accessible+0x12/0x20 mm/kasan/generic.c:199
Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 c1 ef 03 48 b8 00 00 00 00 00 fc ff df <0f> b6 04 07 3c 08 0f 92 c0 c3 cc cc cc cc 90 90 90 90 90 90 90 90
RSP: 0018:ffffc9000d1c76d8 EFLAGS: 00010202
RAX: dffffc0000000000 RBX: 0000000000000148 RCX: 0000000000000000
RDX: 0000000000000000 RSI: ffffffff8c2f93cc RDI: 0000000000000029
RBP: ffffffff9366f020 R08: 0000000000000001 R09: 0000000000000000
R10: dffffc0000000000 R11: ffffed1008b257c4 R12: 0000000000000001
R13: 0000000000000000 R14: ffffffff8c2f93cc R15: 0000000000000148
FS: 00007f7088ed06c0(0000) GS:ffff88808c5b1000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00002000000000c0 CR3: 00000000436aa000 CR4: 0000000000352ef0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
<TASK>
__kasan_check_byte+0x14/0x40 mm/kasan/common.c:556
kasan_check_byte include/linux/kasan.h:399 [inline]
lock_acquire+0x89/0x2f0 kernel/locking/lockdep.c:5840
down_write+0x9c/0x220 kernel/locking/rwsem.c:1577
inode_lock include/linux/fs.h:867 [inline]
simple_recursive_removal+0x9a/0x8f0 fs/libfs.c:615
debugfs_remove+0x49/0x70 fs/debugfs/inode.c:805
__bch2_fs_stop+0x292/0x5b0 fs/bcachefs/super.c:640
bch2_fs_get_tree+0xd39/0x18d0 fs/bcachefs/fs.c:2293
vfs_get_tree+0x90/0x2b0 fs/super.c:1759
do_new_mount+0x2cf/0xb70 fs/namespace.c:3878
do_mount fs/namespace.c:4218 [inline]
__do_sys_mount fs/namespace.c:4429 [inline]
__se_sys_mount+0x38c/0x400 fs/namespace.c:4406
do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
do_syscall_64+0xf3/0x230 arch/x86/entry/syscall_64.c:94
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f7087f8d169
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f7088ed0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007f70881a5fa0 RCX: 00007f7087f8d169
RDX: 00002000000000c0 RSI: 0000200000005b00 RDI: 0000200000005ac0
RBP: 00007f708800e2a0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000018642 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000000 R14: 00007f70881a5fa0 R15: 00007ffec70301c8
</TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:kasan_byte_accessible+0x12/0x20 mm/kasan/generic.c:199
Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 48 c1 ef 03 48 b8 00 00 00 00 00 fc ff df <0f> b6 04 07 3c 08 0f 92 c0 c3 cc cc cc cc 90 90 90 90 90 90 90 90
RSP: 0018:ffffc9000d1c76d8 EFLAGS: 00010202
RAX: dffffc0000000000 RBX: 0000000000000148 RCX: 0000000000000000
RDX: 0000000000000000 RSI: ffffffff8c2f93cc RDI: 0000000000000029
RBP: ffffffff9366f020 R08: 0000000000000001 R09: 0000000000000000
R10: dffffc0000000000 R11: ffffed1008b257c4 R12: 0000000000000001
R13: 0000000000000000 R14: ffffffff8c2f93cc R15: 0000000000000148
FS: 00007f7088ed06c0(0000) GS:ffff88808c5b1000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00002000000000c0 CR3: 00000000436aa000 CR4: 0000000000352ef0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
----------------
Code disassembly (best guess):
0: 0f 1f 84 00 00 00 00 nopl 0x0(%rax,%rax,1)
7: 00
8: 90 nop
9: 90 nop
a: 90 nop
b: 90 nop
c: 90 nop
d: 90 nop
e: 90 nop
f: 90 nop
10: 90 nop
11: 90 nop
12: 90 nop
13: 90 nop
14: 90 nop
15: 90 nop
16: 90 nop
17: 90 nop
18: 66 0f 1f 00 nopw (%rax)
1c: 48 c1 ef 03 shr $0x3,%rdi
20: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax
27: fc ff df
* 2a: 0f b6 04 07 movzbl (%rdi,%rax,1),%eax <-- trapping instruction
2e: 3c 08 cmp $0x8,%al
30: 0f 92 c0 setb %al
33: c3 ret
34: cc int3
35: cc int3
36: cc int3
37: cc int3
38: 90 nop
39: 90 nop
3a: 90 nop
3b: 90 nop
3c: 90 nop
3d: 90 nop
3e: 90 nop
3f: 90 nop
| Time | Kernel | Commit | Syzkaller | Config | Log | Report | Syz repro | C repro | VM info | Assets (help?) | Manager | Title |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2025/04/01 05:40 | upstream | 609706855d90 | 36d76a97 | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | general protection fault in simple_recursive_removal | |||
| 2025/03/31 23:13 | upstream | 609706855d90 | 36d76a97 | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | general protection fault in simple_recursive_removal | |||
| 2025/03/31 22:21 | upstream | 609706855d90 | 36d76a97 | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | general protection fault in simple_recursive_removal | |||
| 2025/03/30 09:37 | upstream | 93d52288679e | d3999433 | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | general protection fault in simple_recursive_removal | |||
| 2025/03/30 09:23 | upstream | 93d52288679e | d3999433 | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | general protection fault in simple_recursive_removal | |||
| 2025/03/27 22:45 | upstream | 1a9239bb4253 | 928390c4 | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | general protection fault in simple_recursive_removal | |||
| 2025/03/27 15:53 | upstream | 1a9239bb4253 | 928390c4 | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | general protection fault in simple_recursive_removal | |||
| 2025/03/27 15:28 | upstream | 1a9239bb4253 | 928390c4 | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | general protection fault in simple_recursive_removal | |||
| 2025/03/27 06:28 | upstream | f6e0150b2003 | 20510e88 | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | general protection fault in simple_recursive_removal | |||
| 2025/03/26 22:15 | upstream | 1e26c5e28ca5 | 19e40f48 | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | general protection fault in simple_recursive_removal | |||
| 2025/03/26 02:03 | upstream | 2df0c02dab82 | 89d30d73 | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | general protection fault in simple_recursive_removal | |||
| 2025/01/19 17:06 | upstream | fda5e3f28400 | f2cb035c | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | general protection fault in simple_recursive_removal | |||
| 2024/12/13 03:58 | upstream | 150b567e0d57 | 3547e30f | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | general protection fault in simple_recursive_removal | |||
| 2025/03/01 23:55 | upstream | 03d38806a902 | c3901742 | .config | console log | report | [disk image (non-bootable)] [vmlinux] [kernel image] | ci-snapshot-upstream-root | BUG: unable to handle kernel paging request in simple_recursive_removal |