syzbot


WARNING in get_vaddr_frames

Status: upstream: reported C repro on 2022/12/05 08:13
Labels: media (incorrect?)
Reported-by: syzbot+59a71007ccac79e8bb69@syzkaller.appspotmail.com
First crash: 181d, last: 38m

Cause bisection: introduced by (bisect log) :
commit 6647e76ab623b2b3fb2efe03a86e9c9046c52c33
Author: Linus Torvalds <torvalds@linux-foundation.org>
Date: Thu Dec 1 00:10:52 2022 +0000

  v4l2: don't fall back to follow_pfn() if pin_user_pages_fast() fails

Crash: WARNING in get_vaddr_frames (log)
Repro: C syz .config
Discussions (4)
Title Replies (including bot) Last reply
[syzbot] Monthly media report (May 2023) 0 (1) 2023/05/31 12:40
[syzbot] Monthly media report (Apr 2023) 0 (1) 2023/05/01 09:02
[syzbot] Monthly media report 0 (1) 2023/03/30 09:59
[syzbot] WARNING in get_vaddr_frames 1 (3) 2023/01/21 19:44
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.14 WARNING in get_vaddr_frames C 11 106d 176d 0/1 upstream: reported C repro on 2022/12/08 19:56
linux-6.1 WARNING in get_vaddr_frames origin:upstream C 306 20h44m 86d 0/3 upstream: reported C repro on 2023/03/08 19:50
linux-5.15 WARNING in get_vaddr_frames origin:upstream C 167 19h42m 86d 0/3 upstream: reported C repro on 2023/03/08 20:37

Sample crash report:
------------[ cut here ]------------
get_vaddr_frames() cannot follow VM_IO mapping
WARNING: CPU: 0 PID: 4996 at drivers/media/common/videobuf2/frame_vector.c:63 get_vaddr_frames drivers/media/common/videobuf2/frame_vector.c:63 [inline]
WARNING: CPU: 0 PID: 4996 at drivers/media/common/videobuf2/frame_vector.c:63 get_vaddr_frames+0x220/0x230 drivers/media/common/videobuf2/frame_vector.c:36
Modules linked in:
CPU: 0 PID: 4996 Comm: syz-executor206 Not tainted 6.4.0-rc4-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
RIP: 0010:get_vaddr_frames drivers/media/common/videobuf2/frame_vector.c:63 [inline]
RIP: 0010:get_vaddr_frames+0x220/0x230 drivers/media/common/videobuf2/frame_vector.c:36
Code: 2f 14 fb e9 06 ff ff ff e8 2d 2f 14 fb e9 cd fe ff ff e8 e3 64 c1 fa 48 c7 c7 40 e5 1e 8b c6 05 6b e1 a1 07 01 e8 10 1f 89 fa <0f> 0b e9 53 ff ff ff 66 0f 1f 84 00 00 00 00 00 41 57 41 56 41 55
RSP: 0018:ffffc90003a4f818 EFLAGS: 00010282
RAX: 0000000000000000 RBX: ffffc9000b400000 RCX: 0000000000000000
RDX: ffff8880281c1dc0 RSI: ffffffff814c03e7 RDI: 0000000000000001
RBP: ffffc9000b400004 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000001 R12: 00000000fffffff2
R13: 0000000000000000 R14: 0000000000000000 R15: ffff88807e132800
FS:  0000555555e16300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020000140 CR3: 000000007d9e2000 CR4: 0000000000350ef0
Call Trace:
 <TASK>
 vb2_create_framevec+0x62/0xd0 drivers/media/common/videobuf2/videobuf2-memops.c:52
 vb2_vmalloc_get_userptr+0x13b/0x530 drivers/media/common/videobuf2/videobuf2-vmalloc.c:89
 __prepare_userptr+0x6a6/0x1630 drivers/media/common/videobuf2/videobuf2-core.c:1180
 __buf_prepare+0x602/0x7d0 drivers/media/common/videobuf2/videobuf2-core.c:1422
 vb2_core_prepare_buf+0xe4/0x330 drivers/media/common/videobuf2/videobuf2-core.c:1561
 vb2_prepare_buf+0x103/0x190 drivers/media/common/videobuf2/videobuf2-v4l2.c:738
 v4l2_m2m_prepare_buf+0xe8/0x210 drivers/media/v4l2-core/v4l2-mem2mem.c:823
 v4l_prepare_buf drivers/media/v4l2-core/v4l2-ioctl.c:2156 [inline]
 v4l_prepare_buf+0x96/0xc0 drivers/media/v4l2-core/v4l2-ioctl.c:2150
 __video_do_ioctl+0xba6/0xf20 drivers/media/v4l2-core/v4l2-ioctl.c:3044
 video_usercopy+0x4bf/0x14c0 drivers/media/v4l2-core/v4l2-ioctl.c:3385
 v4l2_ioctl+0x1b7/0x250 drivers/media/v4l2-core/v4l2-dev.c:364
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:870 [inline]
 __se_sys_ioctl fs/ioctl.c:856 [inline]
 __x64_sys_ioctl+0x197/0x210 fs/ioctl.c:856
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x39/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd
RIP: 0033:0x7f7aaf219c49
Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffc38608d08 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7aaf219c49
RDX: 0000000020000300 RSI: 00000000c058565d RDI: 0000000000000003
RBP: 00007f7aaf1dddf0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f7aaf1dde80
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
 </TASK>

Crashes (1191):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets Manager Title
2023/05/29 02:14 upstream 7877cb91f108 cf184559 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root WARNING in get_vaddr_frames
2023/05/29 01:52 upstream 7877cb91f108 cf184559 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root WARNING in get_vaddr_frames
2023/05/11 15:42 upstream 80e62bc8487b 0fbd49f4 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root WARNING in get_vaddr_frames
2023/05/07 21:36 upstream fc4354c6e5c2 90c93c40 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root WARNING in get_vaddr_frames
2023/05/07 21:15 upstream fc4354c6e5c2 90c93c40 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root WARNING in get_vaddr_frames
2023/05/07 20:16 upstream fc4354c6e5c2 90c93c40 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root WARNING in get_vaddr_frames
2023/03/14 03:30 upstream fc89d7fb499b 026e2200 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce WARNING in get_vaddr_frames
2023/03/14 03:10 upstream fc89d7fb499b 026e2200 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce WARNING in get_vaddr_frames
2023/01/01 15:02 upstream e4cf7c25bae5 ab32d508 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root WARNING in get_vaddr_frames
2022/12/29 13:25 upstream 1b929c02afd3 44712fbc .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root WARNING in get_vaddr_frames
2022/12/29 12:12 upstream 1b929c02afd3 44712fbc .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root WARNING in get_vaddr_frames
2022/12/05 20:36 upstream 76dcd734eca2 045cbb84 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce WARNING in get_vaddr_frames
2022/12/03 22:54 upstream 97ee9d1c1696 e080de16 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce WARNING in get_vaddr_frames
2022/12/03 17:07 upstream a1e9185d20b5 e080de16 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root WARNING in get_vaddr_frames
2022/12/03 15:38 upstream a1e9185d20b5 e080de16 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root WARNING in get_vaddr_frames
2022/12/03 14:39 upstream bdaa78c6aa86 e080de16 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root WARNING in get_vaddr_frames
2023/01/25 04:56 linux-next 691781f561e9 9dfcf09c .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root WARNING in get_vaddr_frames
2023/01/23 02:03 linux-next d514392f17fd 559a440a .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root WARNING in get_vaddr_frames
2023/01/23 00:46 linux-next d514392f17fd 559a440a .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root WARNING in get_vaddr_frames
2023/06/01 20:54 upstream 929ed21dfdb6 a4ae4f42 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root WARNING in get_vaddr_frames
2023/06/01 19:42 upstream 929ed21dfdb6 a4ae4f42 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root WARNING in get_vaddr_frames
2023/06/01 19:06 upstream 929ed21dfdb6 a4ae4f42 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream WARNING in get_vaddr_frames
2023/05/28 18:09 upstream 416839029e38 cf184559 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root WARNING in get_vaddr_frames
2023/05/17 15:20 upstream f1fcbaa18b28 eaac4681 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce WARNING in get_vaddr_frames
2022/12/02 23:17 upstream bdaa78c6aa86 e080de16 .config console log report info ci-qemu-upstream WARNING in get_vaddr_frames
2023/01/01 13:31 upstream e4cf7c25bae5 ab32d508 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-386 WARNING in get_vaddr_frames
2023/06/01 22:45 linux-next 715abedee4cd a4ae4f42 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root WARNING in get_vaddr_frames
2023/06/02 22:11 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 a4ae4f42 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/06/01 17:14 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 a4ae4f42 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/06/01 15:32 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 a4ae4f42 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/06/01 05:21 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 babc4389 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/06/01 03:59 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 babc4389 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/06/01 02:16 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 babc4389 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/31 21:27 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 e2a77acd .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/31 16:54 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 e2a77acd .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/31 15:14 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 e2a77acd .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/31 13:42 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 e2a77acd .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/31 11:30 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 09898419 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/31 05:19 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 09898419 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/31 03:27 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 09898419 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/31 00:16 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 09898419 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/30 22:58 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 09898419 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/30 20:42 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 09898419 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/30 17:27 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 8d5c7541 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/30 11:31 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 8d5c7541 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/30 08:20 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 8d5c7541 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/30 05:37 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 cf184559 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/30 04:03 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 cf184559 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/29 08:31 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 cf184559 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/28 13:39 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 cf184559 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/28 12:28 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 cf184559 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/28 04:01 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 cf184559 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/27 19:47 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 cf184559 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/27 10:13 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 cf184559 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/26 18:25 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 cf184559 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/26 16:57 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 cf184559 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/26 14:35 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 b40ef614 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/26 11:26 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 b40ef614 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/26 07:02 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci f1fcbaa18b28 b40ef614 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/26 05:14 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci f1fcbaa18b28 b40ef614 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/26 03:56 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci f1fcbaa18b28 b40ef614 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/26 00:14 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci f1fcbaa18b28 0513b3e6 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/25 14:47 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci f1fcbaa18b28 0513b3e6 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/25 12:58 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci f1fcbaa18b28 0513b3e6 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/25 09:45 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci f1fcbaa18b28 51e154a0 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/24 22:13 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci f1fcbaa18b28 4bce1a3e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/24 16:50 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci f1fcbaa18b28 4bce1a3e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/24 15:48 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci f1fcbaa18b28 4bce1a3e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
2023/05/24 14:44 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci f1fcbaa18b28 4bce1a3e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 WARNING in get_vaddr_frames
* Struck through repros no longer work on HEAD.