syzbot

 sign-in | mailing list | source | docs
🐞 Open [712]
🐞 Fixed [53]
🐞 Invalid [548]
Missing Backports [52]
Kernel Health Bugs/Month Bug Lifetimes Fuzzing Crashes
💬 Send us feedback

BUG: unable to handle kernel paging request in diRead

Status: upstream: reported C repro on 2024/10/06 20:00
Bug presence: origin:upstream
[Documentation on labels]
Reported-by: syzbot+dea26bb7ef49ab312263@syzkaller.appspotmail.com
First crash: 16d, last: 10d
Bug presence (1)
Date Name Commit Repro Result
2024/10/12 upstream (ToT) 7234e2ea0edd C [report] BUG: unable to handle kernel paging request in diRead
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream general protection fault in diRead (2) jfs C error 72 14h36m 274d 0/28 upstream: reported C repro on 2024/01/22 18:21
linux-6.1 general protection fault in diRead 2 160d 163d 0/3 auto-obsoleted due to no activity on 2024/08/23 04:03
upstream general protection fault in diRead jfs C error error 4 515d 682d 0/28 auto-obsoleted due to no activity on 2023/09/03 06:21

Sample crash report:
Unable to handle kernel paging request at virtual address dfff800000000104
Mem abort info:
  ESR = 0x0000000096000006
  EC = 0x25: DABT (current EL), IL = 32 bits
  SET = 0, FnV = 0
  EA = 0, S1PTW = 0
  FSC = 0x06: level 2 translation fault
Data abort info:
  ISV = 0, ISS = 0x00000006
  CM = 0, WnR = 0
[dfff800000000104] address between user and kernel address ranges
Internal error: Oops: 0000000096000006 [#1] PREEMPT SMP
Modules linked in:
CPU: 1 PID: 4816 Comm: syz-executor259 Not tainted 5.15.167-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
pstate: 00400005 (nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : diIAGRead fs/jfs/jfs_imap.c:2665 [inline]
pc : diRead+0x140/0xa40 fs/jfs/jfs_imap.c:316
lr : diRead+0x138/0xa40 fs/jfs/jfs_imap.c:315
sp : ffff800021c67410
x29: ffff800021c67460 x28: dfff800000000000 x27: 1ffff0000438ceca
x26: ffff0000e1bc4e58 x25: ffff70000438cea4 x24: 0000000000000820
x23: ffff0000e19a9c88 x22: ffff0000e19a9ff0 x21: ffff0000e1bc4e70
x20: 0000000000000000 x19: 0000000000000004 x18: ffff800021c670e0
x17: 0000000000000000 x16: ffff800011ac2570 x15: 000000000001043e
x14: ffff80001713e500 x13: dfff800000000000 x12: 0000000000000001
x11: 0000000000000001 x10: 0000000000000000 x9 : 0000000000000000
x8 : 0000000000000104 x7 : 0000000000000000 x6 : 0000000000000000
x5 : 0000000000000020 x4 : 0000000000000000 x3 : ffff8000082e3f1c
x2 : 0000000000000001 x1 : 0000000000000008 x0 : 0000000000000001
Call trace:
 diIAGRead fs/jfs/jfs_imap.c:2665 [inline]
 diRead+0x140/0xa40 fs/jfs/jfs_imap.c:316
 jfs_iget+0x88/0x364 fs/jfs/inode.c:35
 jfs_lookup+0x1e8/0x39c fs/jfs/namei.c:1467
 lookup_open fs/namei.c:3440 [inline]
 open_last_lookups fs/namei.c:3532 [inline]
 path_openat+0xd9c/0x26cc fs/namei.c:3739
 do_filp_open+0x1a8/0x3b4 fs/namei.c:3769
 do_sys_openat2+0x128/0x3e0 fs/open.c:1253
 do_sys_open fs/open.c:1269 [inline]
 __do_sys_openat fs/open.c:1285 [inline]
 __se_sys_openat fs/open.c:1280 [inline]
 __arm64_sys_openat+0x1f0/0x240 fs/open.c:1280
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
 do_el0_svc+0x58/0x14c arch/arm64/kernel/syscall.c:181
 el0_svc+0x7c/0x1f0 arch/arm64/kernel/entry-common.c:608
 el0t_64_sync_handler+0x84/0xe4 arch/arm64/kernel/entry-common.c:626
 el0t_64_sync+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584
Code: f85802d4 97a8bf15 91208298 d343ff08 (387c6908) 
---[ end trace eeb226db4c5fd611 ]---
----------------
Code disassembly (best guess):
   0:	f85802d4 	ldur	x20, [x22, #-128]
   4:	97a8bf15 	bl	0xfffffffffea2fc58
   8:	91208298 	add	x24, x20, #0x820
   c:	d343ff08 	lsr	x8, x24, #3
* 10:	387c6908 	ldrb	w8, [x8, x28] <-- trapping instruction

Crashes (9):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/10/07 06:00 linux-5.15.y 3a5928702e71 d7906eff .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan-arm64 BUG: unable to handle kernel paging request in diRead
2024/10/07 02:35 linux-5.15.y 3a5928702e71 d7906eff .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1] [mounted in repro #2] ci2-linux-5-15-kasan-arm64 BUG: unable to handle kernel paging request in diRead
2024/10/07 00:55 linux-5.15.y 3a5928702e71 d7906eff .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro #1] [mounted in repro #2] ci2-linux-5-15-kasan-arm64 BUG: unable to handle kernel paging request in diRead
2024/10/06 23:14 linux-5.15.y 3a5928702e71 d7906eff .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan-arm64 BUG: unable to handle kernel paging request in diRead
2024/10/07 07:26 linux-5.15.y 3a5928702e71 d7906eff .config console log report syz / log [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan-arm64 BUG: unable to handle kernel paging request in diRead
2024/10/07 03:59 linux-5.15.y 3a5928702e71 d7906eff .config console log report syz / log [disk image] [vmlinux] [kernel image] [mounted in repro #1] [mounted in repro #2] ci2-linux-5-15-kasan-arm64 BUG: unable to handle kernel paging request in diRead
2024/10/06 21:49 linux-5.15.y 3a5928702e71 d7906eff .config console log report syz / log [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-5-15-kasan-arm64 BUG: unable to handle kernel paging request in diRead
2024/10/06 20:00 linux-5.15.y 3a5928702e71 d7906eff .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 BUG: unable to handle kernel paging request in diRead
2024/10/12 07:12 linux-5.15.y 3a5928702e71 084d8178 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan general protection fault in diRead
* Struck through repros no longer work on HEAD.