syzbot

 sign-in | mailing list | source | docs
🐞 Open [132] 🐞 Fixed [269] 🐞 Invalid [577] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

assert "((flags & PGO_LOCKED) != NUM && rw_lock_held(uobj->vmobjlock)) || (flags & PGO_LOCKED) == NUM" failed in uvm_vno (4)

Status: upstream: reported on 2024/03/13 15:18
Reported-by: syzbot+a75e7174b254bdc350bd@syzkaller.appspotmail.com
First crash: 45d, last: 6d23h
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
openbsd assert "((flags & PGO_LOCKED) != NUM && rw_lock_held(uobj->vmobjlock)) || (flags & PGO_LOCKED) == NUM" failed in uvm_vno 1 565d 565d 0/3 auto-obsoleted due to no activity on 2023/01/08 11:37
openbsd assert "((flags & PGO_LOCKED) != NUM && rw_lock_held(uobj->vmobjlock)) || (flags & PGO_LOCKED) == NUM" failed in uvm_vno (2) 1 472d 472d 0/3 auto-obsoleted due to no activity on 2023/04/11 21:33
openbsd assert "((flags & PGO_LOCKED) != NUM && rw_lock_held(uobj->vmobjlock)) || (flags & PGO_LOCKED) == NUM" failed in uvm_vno (3) 4 170d 271d 0/3 auto-obsoleted due to no activity on 2024/02/07 12:57

Sample crash report:
panic: softclock: invalid to_clock: 2016419952
Starting stack trace...
panic(ffffffff8285c63b) at panic+0x16f sys/kern/subr_prf.c:229
softclock(0) at softclock+0x22d sys/kern/kern_timeout.c:759
softintr_dispatch(0) at softintr_dispatch+0xcd sys/arch/amd64/amd64/softintr.c:90
Xsoftclock() at Xsoftclock+0x27
acpicpu_idle() at acpicpu_idle+0x2f1 sys/dev/acpi/acpicpu.c:1206
sched_idle(ffffffff82cf4ff0) at sched_idle+0x41d sys/kern/kern_sched.c:183
end trace frame: 0x0, count: 251
End of stack trace.
syncing disks...panic: kernel diagnostic assertion "((flags & PGO_LOCKED) != 0 && rw_lock_held(uobj->vmobjlock)) || (flags & PGO_LOCKED) == 0" failed: file "/syzkaller/managers/multicore/kernel/sys/uvm/uvm_vnode.c", line 953
Starting stack trace...
panic(ffffffff8295aabf) at panic+0x16f sys/kern/subr_prf.c:229
__assert(ffffffff8290cb46,ffffffff82851a88,3b9,ffffffff8292dc1e) at __assert+0x29 sys/kern/subr_prf.c:157
uvn_get(fffffd8074540d90,0,ffff800030b130f0,ffff800030b12f6c,3,2,5007e3fbe7f31525,0) at uvn_get+0x4ca sys/uvm/uvm_vnode.c:952
uvm_fault_lower_lookup(ffff800030b13170,ffff800030b131a8,ffff800030b130f0) at uvm_fault_lower_lookup+0xf3 sys/uvm/uvm_fault.c:1128
uvm_fault_lower(ffff800030b13170,ffff800030b131a8,ffff800030b130f0,0) at uvm_fault_lower+0x62 sys/uvm/uvm_fault.c:1227
uvm_fault(fffffd8072203c18,1b32023000,0,2) at uvm_fault+0x255 sys/uvm/uvm_fault.c:637
upageflttrap(ffff800030b132f0,1b32023844) at upageflttrap+0x8e sys/arch/amd64/amd64/trap.c:188
usertrap(ffff800030b132f0) at usertrap+0x22a sys/arch/amd64/amd64/trap.c:436
recall_trap() at recall_trap+0x8
end of kernel
end trace frame: 0x7e91c86da6d0, count: 248
End of stack trace.

dump to dev 4,1 not possible

Crashes (4):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/04/21 04:43 openbsd a0c63bf7b3c7 af24b050 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore assert "((flags & PGO_LOCKED) != NUM && rw_lock_held(uobj->vmobjlock)) || (flags & PGO_LOCKED) == NUM" failed in uvm_vno
2024/04/18 05:31 openbsd 3a96f17f8ee6 bd38b692 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-setuid assert "((flags & PGO_LOCKED) != NUM && rw_lock_held(uobj->vmobjlock)) || (flags & PGO_LOCKED) == NUM" failed in uvm_vno
2024/04/07 00:04 openbsd 85fbf21ae5ae ca620dd8 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-setuid assert "((flags & PGO_LOCKED) != NUM && rw_lock_held(uobj->vmobjlock)) || (flags & PGO_LOCKED) == NUM" failed in uvm_vno
2024/03/13 15:17 openbsd 8f79da2a7ab2 6ee49f2e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore assert "((flags & PGO_LOCKED) != NUM && rw_lock_held(uobj->vmobjlock)) || (flags & PGO_LOCKED) == NUM" failed in uvm_vno
* Struck through repros no longer work on HEAD.