syzbot

 sign-in | mailing list | source | docs
🐞 Open [166]
🐞 Fixed [270]
🐞 Invalid [679]
Kernel Health Bugs/Month Bug Lifetimes Fuzzing Crashes
💬 Send us feedback

assert "start >= vm_map_min(map) && end <= vm_map_max(map)" failed in uvm_fault.c

Status: upstream: reported on 2024/08/13 16:39
Reported-by: syzbot+f1983c4da5d759ab9e4a@syzkaller.appspotmail.com
First crash: 34d, last: 34d

Sample crash report:
panic: kernel diagnostic assertion "start >= vm_map_min(map) && end <= vm_map_max(map)" failed: file "/syzkaller/managers/multicore/kernel/sys/uvm/uvm_fault.c", line 1652
Starting stack trace...
panic(ffffffff830de359) at panic+0x1d0 sys/kern/subr_prf.c:229
__assert(ffffffff83094712,ffffffff8303a9bc,674,ffffffff83066185) at __assert+0x29
uvm_fault_unwire_locked(fffffd806a6f4c18,0,0) at uvm_fault_unwire_locked+0x46b sys/uvm/uvm_fault.c:1654
uvm_unmap_kill_entry_withlock(fffffd806a6f4c18,fffffd806081d258,0) at uvm_unmap_kill_entry_withlock+0x86 sys/uvm/uvm_map.c:1862
uvm_map_teardown(fffffd806a6f4c18) at uvm_map_teardown+0x1c7 sys/uvm/uvm_map.c:2498
uvmspace_free(fffffd806a6f4c18) at uvmspace_free+0xcd sys/uvm/uvm_map.c:3422
reaper(ffff800029fd91c0) at reaper+0x256 sys/kern/kern_exit.c:483
end trace frame: 0x0, count: 250
End of stack trace.

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/08/13 16:38 openbsd 7606e65bc74a f21a18ca .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore assert "start >= vm_map_min(map) && end <= vm_map_max(map)" failed in uvm_fault.c
* Struck through repros no longer work on HEAD.