| Date | Name | Commit | Repro | Result |
|---|---|---|---|---|
| 2023/05/27 | upstream (ToT) | 49572d536129 | C | [report] BUG: Bad page state |
syzbot |
sign-in | mailing list | source | docs |
| 🐞 Open [385] 🐞 Fixed [43] 🐞 Invalid [81] ⬇ Missing Backports [13] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes | 💬 Send us feedback |
| Date | Name | Commit | Repro | Result |
|---|---|---|---|---|
| 2023/05/27 | upstream (ToT) | 49572d536129 | C | [report] BUG: Bad page state |
| Created | Duration | User | Patch | Repo | Result |
|---|---|---|---|---|---|
| 2023/06/27 08:17 | 1h07m | bisect fix | linux-6.1.y | job log (0) log |
BUG: Bad page state in process jfsCommit pfn:11804a page:000000006f04fb8e refcount:0 mapcount:0 mapping:0000000000000000 index:0x1c pfn:0x11804a flags: 0x5ffc00000002047(locked|referenced|uptodate|workingset|private|node=0|zone=2|lastcpupid=0x7ff) raw: 05ffc00000002047 dead000000000100 dead000000000122 0000000000000000 raw: 000000000000001c ffff0000cd3309b0 00000000ffffffff 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set Modules linked in: CPU: 1 PID: 91 Comm: jfsCommit Not tainted 6.1.30-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023 Call trace: dump_backtrace+0x1c8/0x1f4 arch/arm64/kernel/stacktrace.c:158 show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:165 __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x108/0x170 lib/dump_stack.c:106 dump_stack+0x1c/0x58 lib/dump_stack.c:113 bad_page+0x1a4/0x1c4 mm/page_alloc.c:719 free_page_is_bad_report mm/page_alloc.c:1297 [inline] free_page_is_bad mm/page_alloc.c:1307 [inline] free_pages_prepare mm/page_alloc.c:1453 [inline] free_pcp_prepare mm/page_alloc.c:1510 [inline] free_unref_page_prepare+0x348/0x1070 mm/page_alloc.c:3388 free_unref_page+0x80/0x444 mm/page_alloc.c:3484 __folio_put_small mm/swap.c:105 [inline] __folio_put+0xd0/0x12c mm/swap.c:128 folio_put include/linux/mm.h:1165 [inline] put_page include/linux/mm.h:1217 [inline] _metapage_homeok+0x130/0x21c fs/jfs/jfs_metapage.h:119 txUnlock+0x264/0xbb0 fs/jfs/jfs_txnmgr.c:927 txLazyCommit fs/jfs/jfs_txnmgr.c:2677 [inline] jfs_lazycommit+0x490/0x988 fs/jfs/jfs_txnmgr.c:2727 kthread+0x250/0x2d8 kernel/kthread.c:376 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:860 page:000000006f04fb8e refcount:0 mapcount:0 mapping:0000000000000000 index:0x1c pfn:0x11804a flags: 0x5ffc00000002047(locked|referenced|uptodate|workingset|private|node=0|zone=2|lastcpupid=0x7ff) raw: 05ffc00000002047 dead000000000100 dead000000000122 0000000000000000 raw: 000000000000001c ffff0000cd3309b0 00000000ffffffff 0000000000000000 page dumped because: VM_BUG_ON_FOLIO(((unsigned int) folio_ref_count(folio) + 127u <= 127u)) ------------[ cut here ]------------ kernel BUG at include/linux/mm.h:1129! Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP Modules linked in: CPU: 0 PID: 91 Comm: jfsCommit Tainted: G B 6.1.30-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023 pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : folio_get include/linux/mm.h:1129 [inline] pc : get_page include/linux/mm.h:1135 [inline] pc : put_metapage+0x278/0x2c4 fs/jfs/jfs_metapage.c:721 lr : folio_get include/linux/mm.h:1129 [inline] lr : get_page include/linux/mm.h:1135 [inline] lr : put_metapage+0x278/0x2c4 fs/jfs/jfs_metapage.c:721 sp : ffff80001bfe7ba0 x29: ffff80001bfe7ba0 x28: dfff800000000000 x27: 1fffe00019a6613b x26: 1fffe00019a66148 x25: dfff800000000000 x24: 000000000000007f x23: fffffc00036012b4 x22: fffffc0003601280 x21: ffff0000cd3309d8 x20: ffff0000cd330a40 x19: ffff0000cd3309b0 x18: 1fffe000368b6176 x17: 635f6665725f6f69 x16: ffff80001204a9c0 x15: 0000000000000000 x14: 0000000000000000 x13: 0000000000000001 x12: 0000000000000001 x11: ff808000088305e0 x10: 0000000000000000 x9 : ffff8000088305e0 x8 : ffff0000c7431bc0 x7 : 0000000000000001 x6 : 0000000000000001 x5 : ffff80001bfe7418 x4 : ffff800015692ac0 x3 : ffff80000834e4d4 x2 : 0000000000000001 x1 : 0000000100000000 x0 : 000000000000005c Call trace: folio_get include/linux/mm.h:1129 [inline] get_page include/linux/mm.h:1135 [inline] put_metapage+0x278/0x2c4 fs/jfs/jfs_metapage.c:721 txUnlock+0x3e4/0xbb0 fs/jfs/jfs_txnmgr.c:942 txLazyCommit fs/jfs/jfs_txnmgr.c:2677 [inline] jfs_lazycommit+0x490/0x988 fs/jfs/jfs_txnmgr.c:2727 kthread+0x250/0x2d8 kernel/kthread.c:376 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:860 Code: b0046001 912b8021 aa1603e0 97ba0cc2 (d4210000) ---[ end trace 0000000000000000 ]---
| Time | Kernel | Commit | Syzkaller | Config | Log | Report | Syz repro | C repro | VM info | Assets (help?) | Manager | Title |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2023/05/27 10:09 | linux-6.1.y | a343b0dd87b4 | cf184559 | .config | console log | report | syz | C | [disk image] [vmlinux] [kernel image] [mounted in repro] | ci2-linux-6-1-kasan-arm64 | BUG: Bad page state | |
| 2023/06/27 19:06 | linux-6.1.y | e84a4e368abe | 4cd5bb25 | .config | console log | report | syz | C | [disk image] [vmlinux] [kernel image] [mounted in repro] | ci2-linux-6-1-kasan | BUG: Bad page state | |
| 2023/09/24 12:48 | linux-6.1.y | d23900f974e0 | 0b6a67ac | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-linux-6-1-kasan-arm64 | BUG: Bad page state | ||
| 2023/07/19 08:04 | linux-6.1.y | 61fd484b2cf6 | 022df2bb | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-linux-6-1-kasan-arm64 | BUG: Bad page state | ||
| 2023/07/04 09:31 | linux-6.1.y | 0f4ac6b4c5f0 | 6e553898 | .config | console log | report | info | [disk image] [vmlinux] [kernel image] | ci2-linux-6-1-kasan-arm64 | BUG: Bad page state |