syzbot

 sign-in | mailing list | source | docs
🐞 Open [167]
🐞 Fixed [23]
🐞 Invalid [196]
Kernel Health Bugs/Month Bug Lifetimes Fuzzing Crashes
💬 Send us feedback

BUG: Bad page map

Status: premoderation: reported on 2024/07/05 11:03
Reported-by: syzbot+f371db205b68a6df7744@syzkaller.appspotmail.com
First crash: 73d, last: 73d
Similar bugs (18)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-5-10 BUG: Bad page map (3) 1 66d 66d 0/2 premoderation: reported on 2024/07/12 00:18
android-5-10 BUG: Bad page map 1 559d 559d 0/2 auto-obsoleted due to no activity on 2023/06/05 15:46
linux-4.19 BUG: Bad page map (3) 1 790d 790d 0/1 auto-obsoleted due to no activity on 2022/11/15 21:40
upstream BUG: Bad page map (5) mm io-uring C 35 611d 869d 22/28 fixed on 2023/02/24 13:50
linux-4.19 BUG: Bad page map (2) 10 977d 1157d 0/1 auto-closed as invalid on 2022/05/13 11:22
android-54 BUG: Bad page map (3) 10 102d 218d 0/2 auto-obsoleted due to no activity on 2024/09/04 10:38
upstream BUG: Bad page map (2) mm syz 127 2203d 2259d 0/28 closed as invalid on 2018/09/05 12:51
upstream BUG: Bad page map (8) mm C 1 63d 59d 0/28 upstream: reported C repro on 2024/07/18 22:51
android-5-10 BUG: Bad page map (2) 1 340d 340d 0/2 auto-obsoleted due to no activity on 2024/01/10 02:50
upstream BUG: Bad page map mm 1 2262d 2262d 0/28 closed as invalid on 2018/07/08 13:28
upstream BUG: Bad page map (3) kernel 4 2072d 2198d 0/28 auto-closed as invalid on 2019/07/13 00:02
linux-4.19 BUG: Bad page map 2 1474d 1532d 0/1 auto-closed as invalid on 2021/01/01 08:20
upstream BUG: Bad page map (7) mm C done 19 351d 373d 25/28 fixed on 2023/12/21 03:45
android-54 BUG: Bad page map (2) 7 340d 458d 0/2 auto-obsoleted due to no activity on 2024/01/10 18:32
upstream BUG: Bad page map (4) mm 39 1018d 1655d 0/28 auto-closed as invalid on 2022/04/02 04:25
linux-4.14 BUG: Bad page map 1 1520d 1520d 0/1 auto-closed as invalid on 2020/11/16 16:05
upstream BUG: Bad page map (6) mm 1 525d 521d 0/28 auto-obsoleted due to no activity on 2023/07/09 13:20
android-54 BUG: Bad page map 1 753d 753d 0/2 auto-obsoleted due to no activity on 2022/12/23 04:05

Sample crash report:
__swap_info_get: Bad swap file entry 4003ffffff7fffff
BUG: Bad page map in process syz.4.194  pte:8000000100000000 pmd:1159e2067
addr:00007f3eef201000 vm_flags:100400fb anon_vma:0000000000000000 mapping:ffff888109136e40 index:134
file:kcov fault:0x0 mmap:kcov_mmap readpage:0x0
CPU: 1 PID: 858 Comm: syz.4.194 Not tainted 5.15.150-syzkaller-00330-g9044d25b8ff5 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x151/0x1b7 lib/dump_stack.c:106
 dump_stack+0x15/0x17 lib/dump_stack.c:113
 print_bad_pte+0x575/0x590 mm/memory.c:619
 zap_pte_range mm/memory.c:1489 [inline]
 zap_pmd_range mm/memory.c:1559 [inline]
 zap_pud_range mm/memory.c:1588 [inline]
 zap_p4d_range mm/memory.c:1609 [inline]
 unmap_page_range+0x15f0/0x1ed0 mm/memory.c:1630
 unmap_single_vma mm/memory.c:1675 [inline]
 unmap_vmas+0x389/0x560 mm/memory.c:1707
 exit_mmap+0x3e4/0x940 mm/mmap.c:3215
 __mmput+0x95/0x310 kernel/fork.c:1179
 mmput+0x5b/0x170 kernel/fork.c:1202
 exit_mm kernel/exit.c:552 [inline]
 do_exit+0xb9c/0x2ca0 kernel/exit.c:865
 do_group_exit+0x141/0x310 kernel/exit.c:1000
 __do_sys_exit_group kernel/exit.c:1011 [inline]
 __se_sys_exit_group kernel/exit.c:1009 [inline]
 __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1009
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x61/0xcb
RIP: 0033:0x7f3eefa45bd9
Code: Unable to access opcode bytes at RIP 0x7f3eefa45baf.
RSP: 002b:00007ffc853382d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 00007ffc853383d0 RCX: 00007f3eefa45bd9
RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 0000000000000001 R08: 000000098533840f R09: 0000000000000000
R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
 </TASK>
BUG: Bad rss-counter state mm:ffff888125e10a80 type:MM_FILEPAGES val:1
BUG: Bad rss-counter state mm:ffff888125e10a80 type:MM_SWAPENTS val:-1

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/07/05 11:02 android13-5.15-lts 9044d25b8ff5 2a40360c .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-15 BUG: Bad page map
* Struck through repros no longer work on HEAD.