syzbot


Internal error in io_serial_out (2)

Status: upstream: reported on 2022/07/15 06:23
Reported-by: syzbot+26e067dfa81f748d3210@syzkaller.appspotmail.com
First crash: 137d, last: 116d
similar bugs (1):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream Internal error in io_serial_out 707 244d 668d 0/24 auto-closed as invalid on 2022/06/26 21:55

Sample crash report:
Internal error: synchronous external abort: 97140050 [#1] PREEMPT SMP
Modules linked in:
CPU: 1 PID: 31321 Comm: syz-executor.0 Not tainted 5.19.0-syzkaller-02972-g200e340f2196 #0
Hardware name: linux,dummy-virt (DT)
pstate: 804000c9 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : __raw_writeb arch/arm64/include/asm/io.h:27 [inline]
pc : _outb include/asm-generic/io.h:501 [inline]
pc : logic_outb+0x3c/0xa4 lib/logic_pio.c:302
lr : io_serial_out+0x2c/0x3c drivers/tty/serial/8250/8250_port.c:466
sp : ffff80000c593b40
x29: ffff80000c593b40 x28: f4ff00000653b000 x27: 0000000000000000
x26: f6ff000003b60528 x25: f6ff000026816000 x24: f5ff000027d82100
x23: f6ff000003b60528 x22: 0000000000000000 x21: ffff80000a638108
x20: 0000000000000008 x19: fffffbfffe800001 x18: 00000000fffffffb
x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000020
x14: 0000000000000000 x13: ffff80000c593d78 x12: ffff80000c593d3a
x11: 0000000000000000 x10: 0000000000000066 x9 : 000000000000005c
x8 : ffff8000080102a0 x7 : ffff80000c5938f4 x6 : 0000000000641cb1
x5 : 0000000000005452 x4 : 0000000000000000 x3 : ffff80000a638108
x2 : 0000000000000000 x1 : fffffbfffe800000 x0 : 0000000000ffbffe
Call trace:
 _outb include/asm-generic/io.h:501 [inline]
 logic_outb+0x3c/0xa4 lib/logic_pio.c:302
 io_serial_out+0x2c/0x3c drivers/tty/serial/8250/8250_port.c:466
 serial_port_out include/linux/serial_core.h:270 [inline]
 serial8250_enable_ms drivers/tty/serial/8250/8250_port.c:1728 [inline]
 serial8250_enable_ms+0x68/0xa0 drivers/tty/serial/8250/8250_port.c:1715
 uart_enable_ms drivers/tty/serial/serial_core.c:1179 [inline]
 uart_wait_modem_status+0xcc/0x2a0 drivers/tty/serial/serial_core.c:1207
 uart_ioctl+0x1ec/0x894 drivers/tty/serial/serial_core.c:1437
 tty_ioctl+0x1f4/0xd44 drivers/tty/tty_io.c:2778
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:870 [inline]
 __se_sys_ioctl fs/ioctl.c:856 [inline]
 __arm64_sys_ioctl+0xa8/0xf0 fs/ioctl.c:856
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52
 el0_svc_common.constprop.0+0x44/0xec arch/arm64/kernel/syscall.c:142
 do_el0_svc+0xa0/0xc0 arch/arm64/kernel/syscall.c:206
 el0_svc+0x44/0xb0 arch/arm64/kernel/entry-common.c:624
 el0t_64_sync_handler+0x1ac/0x1b0 arch/arm64/kernel/entry-common.c:642
 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:581
Code: d2bfd001 f2df7fe1 f2ffffe1 8b010273 (39000274) 
---[ end trace 0000000000000000 ]---
----------------
Code disassembly (best guess):
   0:	d2bfd001 	mov	x1, #0xfe800000            	// #4269801472
   4:	f2df7fe1 	movk	x1, #0xfbff, lsl #32
   8:	f2ffffe1 	movk	x1, #0xffff, lsl #48
   c:	8b010273 	add	x19, x19, x1
* 10:	39000274 	strb	w20, [x19] <-- trapping instruction

Crashes (2):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-qemu2-arm64-mte 2022/08/04 05:50 upstream 200e340f2196 1c9013ac .config log report info Internal error in io_serial_out
ci-qemu2-arm64-mte 2022/07/14 16:07 upstream 4a57a8400075 5d921b08 .config log report info Internal error in io_serial_out
* Struck through repros no longer work on HEAD.