syzbot


kernel BUG at arch/x86/mm/physaddr.c:LINE! (2)

Status: fixed on 2019/06/14 18:22
Reported-by: syzbot+6c0effb5877f6b0344e2@syzkaller.appspotmail.com
Fix commit: dad7e270ba71 media: vivid: use vfree() instead of kfree() for dev->bitmap_cap
First crash: 1319d, last: 1108d

Cause bisection: introduced by (bisect log) :
commit 6d469a202ee73196d0df76025af80bd6a379e658
Author: Mauro Carvalho Chehab <mchehab@s-opensource.com>
Date: Sun May 14 17:07:21 2017 +0000

  Merge tag 'v4.12-rc1' into patchwork

Crash: INFO: trying to register non-static key in can_notifier (log)
Repro: C syz .config
similar bugs (9):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream kernel BUG at arch/x86/mm/physaddr.c:LINE! (6) 90 200d 697d 0/22 auto-closed as invalid on 2022/04/07 07:37
linux-4.19 kernel BUG at arch/x86/mm/physaddr.c:LINE! (2) C done 82 766d 906d 1/1 fixed on 2020/06/20 23:56
linux-4.19 kernel BUG at arch/x86/mm/physaddr.c:LINE! syz done 1 1093d 1093d 1/1 fixed on 2019/12/16 09:09
linux-4.14 kernel BUG at arch/x86/mm/physaddr.c:LINE! C inconclusive 23 457d 913d 0/1 upstream: reported C repro on 2019/12/26 02:01
upstream kernel BUG at arch/x86/mm/physaddr.c:LINE! (5) C done 241 713d 786d 17/22 fixed on 2020/07/17 17:58
upstream kernel BUG at arch/x86/mm/physaddr.c:LINE! (3) 4 1099d 1099d 0/22 auto-closed as invalid on 2019/10/25 08:46
upstream kernel BUG at arch/x86/mm/physaddr.c:LINE! C 10 1323d 1355d 12/22 fixed on 2018/11/12 21:25
linux-4.19 kernel BUG at arch/x86/mm/physaddr.c:LINE! (3) 75 38d 712d 0/1 upstream: reported on 2020/07/14 16:42
upstream kernel BUG at arch/x86/mm/physaddr.c:LINE! (4) C 18 821d 855d 17/22 fixed on 2020/04/15 17:19

Sample crash report:
Enabling of bearer <udp:syz1> rejected, already enabled
Enabling of bearer <udp:syz1> rejected, already enabled
Enabling of bearer <udp:syz1> rejected, already enabled
Enabling of bearer <udp:syz1> rejected, already enabled
------------[ cut here ]------------
kernel BUG at arch/x86/mm/physaddr.c:27!
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
CPU: 0 PID: 2989 Comm: kworker/0:2 Not tainted 5.0.0+ #7
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: events cache_reap
RIP: 0010:__phys_addr+0xb3/0x120 arch/x86/mm/physaddr.c:27
Code: 08 4c 89 e3 31 ff 48 d3 eb 48 89 de e8 86 4c 3d 00 48 85 db 75 0f e8 dc 4a 3d 00 4c 89 e0 5b 41 5c 41 5d 5d c3 e8 cd 4a 3d 00 <0f> 0b e8 c6 4a 3d 00 48 c7 c0 10 90 87 88 48 ba 00 00 00 00 00 fc
RSP: 0018:ffff88809e4dfbd8 EFLAGS: 00010093
RAX: ffff88809e4b20c0 RBX: 0000000000000000 RCX: ffffffff81329952
RDX: 0000000000000000 RSI: ffffffff813299b3 RDI: 0000000000000006
RBP: ffff88809e4dfbf0 R08: ffff88809e4b20c0 R09: ffffed1013c9bf80
R10: ffffed1013c9bf7f R11: 0000000000000003 R12: 0000778000000000
R13: 0000000080000000 R14: ffff88809be77e00 R15: ffff88809be77e00
FS:  0000000000000000(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020000140 CR3: 00000000a1b9b000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 virt_to_head_page include/linux/mm.h:685 [inline]
 free_block+0xa8/0x250 mm/slab.c:3411
 drain_array_locked+0x36/0x90 mm/slab.c:2197
 drain_array+0x8c/0xb0 mm/slab.c:4016
 cache_reap+0xf4/0x280 mm/slab.c:4057
 process_one_work+0x98e/0x1790 kernel/workqueue.c:2173
 worker_thread+0x98/0xe40 kernel/workqueue.c:2319
 kthread+0x357/0x430 kernel/kthread.c:246
 ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:352
Modules linked in:
---[ end trace 0a9504383538e895 ]---
RIP: 0010:__phys_addr+0xb3/0x120 arch/x86/mm/physaddr.c:27
Code: 08 4c 89 e3 31 ff 48 d3 eb 48 89 de e8 86 4c 3d 00 48 85 db 75 0f e8 dc 4a 3d 00 4c 89 e0 5b 41 5c 41 5d 5d c3 e8 cd 4a 3d 00 <0f> 0b e8 c6 4a 3d 00 48 c7 c0 10 90 87 88 48 ba 00 00 00 00 00 fc
RSP: 0018:ffff88809e4dfbd8 EFLAGS: 00010093
RAX: ffff88809e4b20c0 RBX: 0000000000000000 RCX: ffffffff81329952
RDX: 0000000000000000 RSI: ffffffff813299b3 RDI: 0000000000000006
RBP: ffff88809e4dfbf0 R08: ffff88809e4b20c0 R09: ffffed1013c9bf80
R10: ffffed1013c9bf7f R11: 0000000000000003 R12: 0000778000000000
R13: 0000000080000000 R14: ffff88809be77e00 R15: ffff88809be77e00
FS:  0000000000000000(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020000140 CR3: 00000000a1b9b000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400

Crashes (522):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kasan-gce 2019/03/06 04:36 upstream 63bdf4284c38 16559f86 .config log report syz C
ci-upstream-kasan-gce 2019/02/19 22:01 upstream b5372fe5dc84 4df543c9 .config log report syz C
ci-upstream-kasan-gce-root 2019/02/19 20:14 upstream b5372fe5dc84 4df543c9 .config log report syz C
ci-upstream-kasan-gce 2018/11/18 20:08 upstream 1ce80e0fe98e adf636a8 .config log report syz C
ci-upstream-kasan-gce-386 2019/03/19 02:13 upstream 9e98c678c2d6 46264c32 .config log report syz C
ci-upstream-net-this-kasan-gce 2019/05/08 23:34 net 80f232121b69 1ab4c999 .config log report syz C
ci-upstream-net-kasan-gce 2019/03/10 19:30 net-next d9862cfbe209 12365b99 .config log report syz C
ci-upstream-kasan-gce-selinux-root 2019/05/16 05:10 upstream 2bbacd1a9278 051c49fe .config log report syz
ci-upstream-kasan-gce-selinux-root 2019/04/18 09:15 upstream fe5cdef29e41 b0e8efcb .config log report syz
ci-upstream-kasan-gce-root 2019/03/26 11:59 upstream a3ac7917b730 55684ce1 .config log report syz
ci-upstream-kasan-gce-root 2019/03/23 04:14 upstream fd1f297b794c 3361bde5 .config log report syz
ci-upstream-kasan-gce-smack-root 2019/03/12 03:26 upstream a089e4fed5c5 12365b99 .config log report syz
ci-upstream-kasan-gce-root 2019/03/11 05:26 upstream 065b6c4c913d 12365b99 .config log report syz
ci-upstream-kasan-gce-smack-root 2019/03/06 02:09 upstream 63bdf4284c38 16559f86 .config log report syz
ci-upstream-kasan-gce-root 2019/03/06 01:58 upstream 63bdf4284c38 16559f86 .config log report syz
ci-upstream-kasan-gce-root 2019/03/03 03:20 upstream c93d9218ea56 1c0e457a .config log report syz
ci-upstream-kasan-gce-root 2019/02/27 08:52 upstream 7d762d69145a f2468c12 .config log report syz
ci-upstream-kasan-gce-root 2019/02/20 05:29 upstream 40e196a906d9 4df543c9 .config log report syz
ci-upstream-kasan-gce 2019/02/20 03:30 upstream 40e196a906d9 4df543c9 .config log report syz
ci-upstream-kasan-gce-smack-root 2019/02/20 03:26 upstream 40e196a906d9 4df543c9 .config log report syz
ci-upstream-kasan-gce-root 2019/02/19 21:54 upstream b5372fe5dc84 4df543c9 .config log report syz
ci-upstream-kasan-gce-smack-root 2019/02/19 21:54 upstream b5372fe5dc84 4df543c9 .config log report syz
ci-upstream-kasan-gce-smack-root 2019/02/19 19:32 upstream b5372fe5dc84 4df543c9 .config log report syz
ci-upstream-kasan-gce-386 2019/03/24 07:11 upstream a5ed1e96cafd a2cef203 .config log report syz
ci-upstream-kasan-gce-386 2019/03/23 02:38 upstream fd1f297b794c 3361bde5 .config log report syz
ci-upstream-kasan-gce-386 2019/02/20 06:18 upstream 40e196a906d9 4df543c9 .config log report syz
ci-upstream-kasan-gce-386 2019/02/20 01:06 upstream b5372fe5dc84 4df543c9 .config log report syz
ci-upstream-net-this-kasan-gce 2019/05/15 21:58 net cb07d915bf27 3345130d .config log report syz
ci-upstream-net-this-kasan-gce 2019/04/12 02:15 net 988dc4a9a3b6 13030ef8 .config log report syz
ci-upstream-net-this-kasan-gce 2019/03/24 06:18 net c8248c6c1a3d a2cef203 .config log report syz
ci-upstream-net-this-kasan-gce 2019/03/23 02:16 net 5f543a54eec0 3361bde5 .config log report syz
ci-upstream-net-kasan-gce 2019/05/09 01:31 net-next 80f232121b69 1ab4c999 .config log report syz
ci-upstream-net-kasan-gce 2019/03/26 12:01 net-next 68cc2999f692 55684ce1 .config log report syz
ci-upstream-net-kasan-gce 2019/03/19 00:51 net-next 3b319ee220a8 46264c32 .config log report syz
ci-upstream-net-kasan-gce 2019/03/12 11:56 net-next d9862cfbe209 12365b99 .config log report syz
ci-upstream-net-kasan-gce 2019/03/11 23:44 net-next d9862cfbe209 12365b99 .config log report syz
ci-upstream-net-kasan-gce 2019/02/20 03:09 net-next c9b747dbc203 4df543c9 .config log report syz
ci-upstream-net-kasan-gce 2019/02/19 13:47 net-next c9b747dbc203 59f36113 .config log report syz
ci-upstream-net-kasan-gce 2019/02/19 11:19 net-next c9b747dbc203 59f36113 .config log report syz
ci-upstream-linux-next-kasan-gce-root 2019/05/08 23:56 linux-next 31ccad9ba503 1ab4c999 .config log report syz
ci-upstream-linux-next-kasan-gce-root 2019/04/12 13:18 linux-next bcb67f0fbce9 8916f5e1 .config log report syz
ci-upstream-linux-next-kasan-gce-root 2019/03/12 13:01 linux-next cf08baa29613 12365b99 .config log report syz
ci-upstream-linux-next-kasan-gce-root 2019/02/20 18:45 linux-next abf446c90405 c95f0707 .config log report syz
ci-upstream-kasan-gce 2019/05/03 04:43 upstream b7a5b22b0547 e9039493 .config log report
ci-upstream-kasan-gce-root 2019/05/02 14:53 upstream 459e3a21535a 7516d9fa .config log report
ci-upstream-kasan-gce-smack-root 2019/05/01 11:54 upstream f2bc9c908dfe 618456b4 .config log report
ci-upstream-kasan-gce-smack-root 2018/11/15 10:32 upstream 5929a1f0ff30 5f5f6d14 .config log report
ci-upstream-kasan-gce-386 2019/06/12 17:29 upstream 35110e38e6c5 794a1ad7 .config log report
ci-upstream-kasan-gce-386 2019/06/03 07:37 upstream f2c7c76c5d0a 53c81ea5 .config log report
ci-upstream-net-this-kasan-gce 2019/06/14 10:54 net b8003cef2e63 998ccc76 .config log report
ci-upstream-net-this-kasan-gce 2019/06/12 07:33 net 93c65f83f25b ea2f4006 .config log report
ci-upstream-net-this-kasan-gce 2019/06/10 00:43 net c3fee640bcf5 0159583c .config log report
ci-upstream-net-this-kasan-gce 2019/06/08 20:26 net 38e406f600a2 0159583c .config log report
ci-upstream-net-this-kasan-gce 2019/06/05 13:44 net f4cfcfbdf03c bfb4a51e .config log report
ci-upstream-net-this-kasan-gce 2019/06/05 06:31 net f4cfcfbdf03c bfb4a51e .config log report
ci-upstream-net-this-kasan-gce 2019/05/31 18:56 net 100f6d8e0990 142ce681 .config log report
ci-upstream-net-this-kasan-gce 2019/05/28 18:37 net d484e06e25eb 6bd61501 .config log report
ci-upstream-net-this-kasan-gce 2019/05/28 15:32 net 3e66b7cc50ef 6bd61501 .config log report
ci-upstream-net-this-kasan-gce 2019/05/27 21:30 net 3e66b7cc50ef 6bd61501 .config log report
ci-upstream-net-this-kasan-gce 2019/05/27 07:06 net 334031219a84 85c57315 .config log report
ci-upstream-net-this-kasan-gce 2019/05/26 13:38 net f4bcf14e3997 85c57315 .config log report
ci-upstream-net-this-kasan-gce 2019/05/26 12:26 net f4bcf14e3997 85c57315 .config log report
ci-upstream-net-this-kasan-gce 2019/05/25 15:51 net ce8d24f9a596 85c57315 .config log report
ci-upstream-net-this-kasan-gce 2019/05/24 19:52 net b5730061d105 0dadcd9d .config log report
ci-upstream-net-this-kasan-gce 2019/05/24 10:13 net b5730061d105 0dadcd9d .config log report
ci-upstream-net-this-kasan-gce 2019/05/16 07:10 net 858f50174467 051c49fe .config log report
ci-upstream-net-this-kasan-gce 2019/05/15 18:17 net cb07d915bf27 3345130d .config log report
ci-upstream-net-this-kasan-gce 2019/05/14 10:45 net 63863ee8e2f6 ada3c44c .config log report
ci-upstream-net-this-kasan-gce 2019/05/13 14:06 net 69dda13fdaff 16ab1e89 .config log report
ci-upstream-net-this-kasan-gce 2019/05/13 12:41 net 69dda13fdaff 16ab1e89 .config log report
ci-upstream-net-this-kasan-gce 2019/05/12 12:59 net 8f779443b440 c017728b .config log report
ci-upstream-net-this-kasan-gce 2019/05/09 19:09 net 5f05836831f6 6fc130d3 .config log report
ci-upstream-net-kasan-gce 2019/06/14 13:49 net-next 514fcaac371e 998ccc76 .config log report
ci-upstream-net-kasan-gce 2019/06/12 04:19 net-next 758a0a4d60ab ea2f4006 .config log report
ci-upstream-net-kasan-gce 2019/06/12 02:16 net-next 758a0a4d60ab ea2f4006 .config log report
ci-upstream-net-kasan-gce 2019/06/11 15:02 net-next 48debfd736d5 5b5826d0 .config log report
ci-upstream-net-kasan-gce 2019/06/11 05:54 net-next a248384e6420 0159583c .config log report
ci-upstream-net-kasan-gce 2019/06/09 05:29 net-next 8d94a8733c94 0159583c .config log report
ci-upstream-net-kasan-gce 2019/06/08 22:21 net-next a6cdeeb16bff 0159583c .config log report
ci-upstream-net-kasan-gce 2019/06/08 06:15 net-next a6cdeeb16bff cf9c3a50 .config log report
ci-upstream-net-kasan-gce 2019/06/08 00:44 net-next 96524ea4be04 ce9107d0 .config log report
ci-upstream-net-kasan-gce 2019/06/05 15:55 net-next 712246bc93cb bfb4a51e .config log report
ci-upstream-net-kasan-gce 2019/06/05 11:05 net-next 712246bc93cb bfb4a51e .config log report
ci-upstream-net-kasan-gce 2019/06/02 12:29 net-next c1e9e01d4233 53c81ea5 .config log report
ci-upstream-net-kasan-gce 2019/05/30 22:46 net-next 517f4c49aafc d9aaf3c2 .config log report
ci-upstream-net-kasan-gce 2019/05/30 12:19 net-next 7da33a8f87a4 d9aaf3c2 .config log report
ci-upstream-net-kasan-gce 2019/05/29 06:24 net-next c7ae09253cb8 6bd61501 .config log report
ci-upstream-net-kasan-gce 2019/05/27 03:51 net-next 9b3c520e9628 85c57315 .config log report
ci-upstream-net-kasan-gce 2019/05/26 14:58 net-next 22942498cceb 85c57315 .config log report
ci-upstream-net-kasan-gce 2019/05/25 14:23 net-next af5136f95045 85c57315 .config log report
ci-upstream-net-kasan-gce 2019/05/23 18:27 net-next 14a1eaa8820e 0dadcd9d .config log report