syzbot

 sign-in | mailing list | source | docs
🐞 Open [1226]
Subsystems
🐞 Fixed [5632]
🐞 Invalid [13666]
Missing Backports [100]
Kernel Health Bugs/Month Bug Lifetimes Fuzzing Crashes
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

BUG: corrupted list in add_to_unbuddied

Status: upstream: reported on 2024/09/08 22:22
Subsystems: mm
[Documentation on labels]
Reported-by: syzbot+30eac43568e2b3d65728@syzkaller.appspotmail.com
First crash: 13d, last: 23h10m
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] [mm?] BUG: corrupted list in add_to_unbuddied 0 (1) 2024/09/08 22:22

Sample crash report:
list_add corruption. next->prev should be prev (ffffe8ffffc31c60), but was ffff8880343d3000. (next=ffff88801dceb000).
------------[ cut here ]------------
kernel BUG at lib/list_debug.c:31!
Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI
CPU: 0 UID: 0 PID: 1029 Comm: kworker/u4:4 Not tainted 6.11.0-rc7-syzkaller-00151-gd42f7708e27c #0
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
Workqueue: zswap1 compact_page_work
RIP: 0010:__list_add_valid_or_report+0xd6/0xf0 lib/list_debug.c:29
Code: e8 7f 79 fc 06 90 0f 0b 48 c7 c7 a0 90 60 8c e8 70 79 fc 06 90 0f 0b 48 c7 c7 00 91 60 8c 4c 89 e6 4c 89 f1 e8 5b 79 fc 06 90 <0f> 0b 48 c7 c7 80 91 60 8c 4c 89 f6 4c 89 e1 e8 46 79 fc 06 90 0f
RSP: 0000:ffffc90002597ad0 EFLAGS: 00010246
RAX: 0000000000000075 RBX: ffff88801dceb008 RCX: c6a75e21a902ef00
RDX: 0000000000000000 RSI: 0000000080000002 RDI: 0000000000000000
RBP: ffffe8ffffc31c60 R08: ffffffff817401bc R09: 1ffff920004b2ef8
R10: dffffc0000000000 R11: fffff520004b2ef9 R12: ffffe8ffffc31c60
R13: dffffc0000000000 R14: ffff88801dceb000 R15: ffff888011933000
FS:  0000000000000000(0000) GS:ffff88801fe00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f82f2acb46d CR3: 000000003244a000 CR4: 0000000000350ef0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 __list_add_valid include/linux/list.h:88 [inline]
 __list_add include/linux/list.h:150 [inline]
 list_add include/linux/list.h:169 [inline]
 add_to_unbuddied+0x2e4/0x4d0 mm/z3fold.c:550
 do_compact_page+0x924/0xc50 mm/z3fold.c:772
 process_one_work kernel/workqueue.c:3231 [inline]
 process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312
 worker_thread+0x870/0xd30 kernel/workqueue.c:3393
 kthread+0x2f0/0x390 kernel/kthread.c:389
 ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:__list_add_valid_or_report+0xd6/0xf0 lib/list_debug.c:29
Code: e8 7f 79 fc 06 90 0f 0b 48 c7 c7 a0 90 60 8c e8 70 79 fc 06 90 0f 0b 48 c7 c7 00 91 60 8c 4c 89 e6 4c 89 f1 e8 5b 79 fc 06 90 <0f> 0b 48 c7 c7 80 91 60 8c 4c 89 f6 4c 89 e1 e8 46 79 fc 06 90 0f
RSP: 0000:ffffc90002597ad0 EFLAGS: 00010246
RAX: 0000000000000075 RBX: ffff88801dceb008 RCX: c6a75e21a902ef00
RDX: 0000000000000000 RSI: 0000000080000002 RDI: 0000000000000000
RBP: ffffe8ffffc31c60 R08: ffffffff817401bc R09: 1ffff920004b2ef8
R10: dffffc0000000000 R11: fffff520004b2ef9 R12: ffffe8ffffc31c60
R13: dffffc0000000000 R14: ffff88801dceb000 R15: ffff888011933000
FS:  0000000000000000(0000) GS:ffff88801fe00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f82f2acb46d CR3: 000000003244a000 CR4: 0000000000350ef0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400

Crashes (6):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/09/15 19:42 upstream d42f7708e27c 08d8a733 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root BUG: corrupted list in add_to_unbuddied
2024/09/08 22:21 upstream 89f5e14d05b4 9750182a .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root BUG: corrupted list in add_to_unbuddied
2024/09/06 06:25 upstream ad618736883b 464ac2ed .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root BUG: corrupted list in add_to_unbuddied
2024/09/04 19:43 upstream c7fb1692dc01 dfbe2ed4 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root BUG: corrupted list in add_to_unbuddied
2024/09/03 11:22 upstream 67784a74e258 8045124c .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root BUG: corrupted list in add_to_unbuddied
2024/09/02 20:55 upstream 67784a74e258 0dd55198 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root BUG: corrupted list in add_to_unbuddied
* Struck through repros no longer work on HEAD.