syzbot


WARNING in __brelse

Status: upstream: reported on 2024/03/03 15:14
Reported-by: syzbot+bcb509d47bddc5f9a0be@syzkaller.appspotmail.com
First crash: 113d, last: 55d
Similar bugs (8)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream WARNING in __brelse (3) fs C done done 21 70d 334d 0/27 upstream: reported C repro on 2023/07/26 14:30
android-49 WARNING in __brelse C 6 1909d 1899d 0/3 public: reported C repro on 2019/04/14 00:00
upstream WARNING in __brelse udf C inconclusive 22 493d 635d 22/27 fixed on 2023/02/24 13:50
linux-4.14 WARNING in __brelse vfs udf C 6 495d 602d 0/1 upstream: reported C repro on 2022/10/31 19:01
android-414 WARNING in __brelse C 10 1909d 1901d 0/1 public: reported C repro on 2019/04/12 00:00
upstream WARNING in __brelse (2) udf 1 485d 481d 0/27 auto-obsoleted due to no activity on 2023/06/25 16:51
linux-5.15 WARNING in __brelse 1 435d 435d 0/3 auto-obsoleted due to no activity on 2023/08/14 05:07
linux-4.19 WARNING in __brelse vfs reiserfs ext4 udf C 43 477d 633d 0/1 upstream: reported C repro on 2022/10/01 01:04

Sample crash report:
------------[ cut here ]------------
VFS: brelse: Trying to free free buffer
WARNING: CPU: 1 PID: 7931 at fs/buffer.c:1145 __brelse+0x84/0xd8 fs/buffer.c:1145
Modules linked in:
CPU: 1 PID: 7931 Comm: syz-executor.3 Not tainted 6.1.89-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
pstate: 60401005 (nZCv daif +PAN -UAO -TCO -DIT +SSBS BTYPE=--)
pc : __brelse+0x84/0xd8 fs/buffer.c:1145
lr : __brelse+0x84/0xd8 fs/buffer.c:1145
sp : ffff800020707940
x29: ffff800020707940 x28: ffff800012542380 x27: 0000000000000000
x26: ffff0000fb4db9f8 x25: ffff0000fb4db9f8 x24: 0000000000000002
x23: ffff0000f8208160 x22: ffff0000f130d040 x21: 0000000000000000
x20: 0000000000000000 x19: ffff0000fb4dba58 x18: ffff800020706d40
x17: 0000000000000000 x16: ffff8000121618dc x15: 0000000000000002
x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000040000
x11: 000000000001d6d1 x10: ffff80002646e000 x9 : 3c8674bf923c6800
x8 : 3c8674bf923c6800 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff800020707238 x4 : ffff800015932b00 x3 : ffff80000858856c
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000
Call trace:
 __brelse+0x84/0xd8 fs/buffer.c:1145
 brelse include/linux/buffer_head.h:326 [inline]
 sysv_fill_super+0x510/0x5f8 fs/sysv/super.c:417
 mount_bdev+0x274/0x370 fs/super.c:1432
 sysv_mount+0x44/0x58 fs/sysv/super.c:534
 legacy_get_tree+0xd4/0x16c fs/fs_context.c:632
 vfs_get_tree+0x90/0x274 fs/super.c:1562
 do_new_mount+0x278/0x8fc fs/namespace.c:3051
 path_mount+0x590/0xe5c fs/namespace.c:3381
 do_mount fs/namespace.c:3394 [inline]
 __do_sys_mount fs/namespace.c:3602 [inline]
 __se_sys_mount fs/namespace.c:3579 [inline]
 __arm64_sys_mount+0x45c/0x594 fs/namespace.c:3579
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x98/0x2c0 arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
 do_el0_svc+0x64/0x218 arch/arm64/kernel/syscall.c:206
 el0_svc+0x58/0x168 arch/arm64/kernel/entry-common.c:637
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:585
irq event stamp: 1304
hardirqs last  enabled at (1303): [<ffff800008343d08>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:261
hardirqs last disabled at (1304): [<ffff80001215d594>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last  enabled at (858): [<ffff800008033178>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:32
softirqs last disabled at (856): [<ffff800008033144>] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:19
---[ end trace 0000000000000000 ]---
oldfs: cannot read superblock

Crashes (8):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/04/30 10:25 linux-6.1.y dcbc050cb0d3 f10afd69 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in __brelse
2024/04/29 16:25 linux-6.1.y dcbc050cb0d3 27e33c58 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in __brelse
2024/04/27 05:33 linux-6.1.y 6741e066ec76 07b455f9 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in __brelse
2024/04/24 14:42 linux-6.1.y 6741e066ec76 21339d7b .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in __brelse
2024/04/18 11:15 linux-6.1.y 6741e066ec76 af24b050 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in __brelse
2024/04/16 17:50 linux-6.1.y cd5d98c0556c 18f6e127 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in __brelse
2024/04/16 03:23 linux-6.1.y cd5d98c0556c 0d592ce4 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in __brelse
2024/03/03 15:13 linux-6.1.y a3eb3a74aa8c 25905f5d .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in __brelse
* Struck through repros no longer work on HEAD.