syzbot


kernel BUG in f2fs_evict_inode

Status: upstream: reported C repro on 2023/04/11 09:45
Bug presence: origin:upstream
[Documentation on labels]
Reported-by: syzbot+da6ec584691ea5a03cda@syzkaller.appspotmail.com
First crash: 403d, last: 6d05h
Bug presence (1)
Date Name Commit Repro Result
2024/05/12 upstream (ToT) a38297e3fb01 C [report] kernel BUG in f2fs_evict_inode
Similar bugs (6)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream kernel BUG in f2fs_evict_inode f2fs C error 135 234d 514d 23/26 fixed on 2023/10/12 12:47
linux-4.19 kernel BUG at fs/f2fs/inode.c:LINE! f2fs tmpfs C error 3 512d 1313d 0/1 upstream: reported C repro on 2020/10/13 04:23
upstream kernel BUG in f2fs_evict_inode (2) f2fs C error 155 5d05h 192d 0/26 upstream: reported C repro on 2023/11/08 15:01
linux-5.15 kernel BUG in f2fs_evict_inode (2) origin:upstream C 23 6d21h 194d 0/3 upstream: reported C repro on 2023/11/06 18:33
linux-4.14 kernel BUG in f2fs_evict_inode f2fs tmpfs C 1 442d 509d 0/1 upstream: reported C repro on 2022/12/26 05:49
linux-5.15 kernel BUG in f2fs_evict_inode 3 400d 421d 0/3 auto-obsoleted due to no activity on 2023/08/12 09:15
Fix bisection attempts (3)
Created Duration User Patch Repo Result
2024/02/08 15:03 2h05m bisect fix linux-6.1.y job log (0) log
2024/01/01 18:43 1h15m bisect fix linux-6.1.y job log (0) log
2023/10/07 19:27 1h41m bisect fix linux-6.1.y job log (0) log

Sample crash report:
F2FS-fs (loop0): Found nat_bits in checkpoint
F2FS-fs (loop0): recover fsync data on readonly fs
F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
F2FS-fs (loop0): Corrupted max_depth of 3: 127
------------[ cut here ]------------
kernel BUG at fs/f2fs/inode.c:842!
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
CPU: 1 PID: 3543 Comm: syz-executor161 Not tainted 6.1.90-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
RIP: 0010:f2fs_evict_inode+0x1765/0x17b0 fs/f2fs/inode.c:842
Code: 34 c8 fd 31 ff 89 de e8 f9 33 c8 fd 40 84 ed 75 27 e8 8f 31 c8 fd 4d 89 fc e9 e6 e9 ff ff e8 82 31 c8 fd 0f 0b e8 7b 31 c8 fd <0f> 0b e8 74 31 c8 fd 0f 0b e9 e8 fe ff ff e8 68 31 c8 fd e8 ab 38
RSP: 0018:ffffc9000392f878 EFLAGS: 00010293
RAX: ffffffff83c25bd5 RBX: 0000000000000002 RCX: ffff88802a0d0000
RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000000
RBP: dffffc0000000000 R08: ffffffff83c25451 R09: ffffed100ea0d2cf
R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888018388000
R13: ffff888018388000 R14: ffff8880750691c0 R15: ffff888075069670
FS:  0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f772a9ef130 CR3: 00000000243aa000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 evict+0x2a4/0x620 fs/inode.c:666
 dispose_list fs/inode.c:699 [inline]
 evict_inodes+0x601/0x6a0 fs/inode.c:749
 generic_shutdown_super+0x94/0x340 fs/super.c:480
 kill_block_super+0x7a/0xe0 fs/super.c:1459
 kill_f2fs_super+0x2ff/0x3c0 fs/f2fs/super.c:4652
 deactivate_locked_super+0xa0/0x110 fs/super.c:332
 cleanup_mnt+0x490/0x520 fs/namespace.c:1186
 task_work_run+0x246/0x300 kernel/task_work.c:179
 exit_task_work include/linux/task_work.h:38 [inline]
 do_exit+0xa73/0x26a0 kernel/exit.c:869
 do_group_exit+0x202/0x2b0 kernel/exit.c:1019
 __do_sys_exit_group kernel/exit.c:1030 [inline]
 __se_sys_exit_group kernel/exit.c:1028 [inline]
 __x64_sys_exit_group+0x3b/0x40 kernel/exit.c:1028
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x3b/0xb0 arch/x86/entry/common.c:81
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7f772a965789
Code: Unable to access opcode bytes at 0x7f772a96575f.
RSP: 002b:00007ffe8d02e838 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f772a965789
RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
RBP: 00007f772a9f12b0 R08: ffffffffffffffb8 R09: 00007ffe8d02e910
R10: 00007ffe8d02e760 R11: 0000000000000246 R12: 00007f772a9f12b0
R13: 0000000000000000 R14: 00007f772a9f2020 R15: 00007f772a933cb0
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:f2fs_evict_inode+0x1765/0x17b0 fs/f2fs/inode.c:842
Code: 34 c8 fd 31 ff 89 de e8 f9 33 c8 fd 40 84 ed 75 27 e8 8f 31 c8 fd 4d 89 fc e9 e6 e9 ff ff e8 82 31 c8 fd 0f 0b e8 7b 31 c8 fd <0f> 0b e8 74 31 c8 fd 0f 0b e9 e8 fe ff ff e8 68 31 c8 fd e8 ab 38
RSP: 0018:ffffc9000392f878 EFLAGS: 00010293
RAX: ffffffff83c25bd5 RBX: 0000000000000002 RCX: ffff88802a0d0000
RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000000
RBP: dffffc0000000000 R08: ffffffff83c25451 R09: ffffed100ea0d2cf
R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888018388000
R13: ffff888018388000 R14: ffff8880750691c0 R15: ffff888075069670
FS:  0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00005621b3aa0a20 CR3: 000000000ce8e000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400

Crashes (15):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/05/12 21:48 linux-6.1.y 909ba1f1b414 9026e142 .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan kernel BUG in f2fs_evict_inode
2024/03/17 11:53 linux-6.1.y d7543167affd d615901c .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan-arm64 kernel BUG in f2fs_evict_inode
2023/12/02 01:06 linux-6.1.y 6ac30d748bb0 f819d6f7 .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan-arm64 kernel BUG in f2fs_evict_inode
2023/08/15 21:40 linux-6.1.y 1321ab403b38 39990d51 .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan-arm64 kernel BUG in f2fs_evict_inode
2024/04/16 21:53 linux-6.1.y cd5d98c0556c 18f6e127 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan kernel BUG in f2fs_evict_inode
2023/11/04 16:23 linux-6.1.y 4a61839152cc 500bfdc4 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan kernel BUG in f2fs_evict_inode
2023/11/04 15:05 linux-6.1.y 4a61839152cc 500bfdc4 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan kernel BUG in f2fs_evict_inode
2024/04/23 13:29 linux-6.1.y 6741e066ec76 21339d7b .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 kernel BUG in f2fs_evict_inode
2024/04/23 13:26 linux-6.1.y 6741e066ec76 21339d7b .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 kernel BUG in f2fs_evict_inode
2024/04/08 06:47 linux-6.1.y 347385861c50 ca620dd8 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 kernel BUG in f2fs_evict_inode
2024/03/02 01:28 linux-6.1.y a3eb3a74aa8c 83acf9e0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 kernel BUG in f2fs_evict_inode
2023/11/04 20:10 linux-6.1.y 4a61839152cc 500bfdc4 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 kernel BUG in f2fs_evict_inode
2023/08/15 21:09 linux-6.1.y 1321ab403b38 39990d51 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 kernel BUG in f2fs_evict_inode
2023/04/19 15:37 linux-6.1.y 0102425ac76b 94b4184e .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 kernel BUG in f2fs_evict_inode
2023/04/11 09:45 linux-6.1.y 543aff194ab6 71147e29 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 kernel BUG in f2fs_evict_inode
* Struck through repros no longer work on HEAD.