kernel BUG at fs/buffer.c:LINE!

kernel BUG at fs/buffer.c:LINE!
Status: upstream: reported C repro on 2018/04/19 16:02
Reported-by: syzbot+cfed5b56649bddf80d6e@syzkaller.appspotmail.com
First crash: 1304d, last: 3d16h

Cause bisection: introduced by (bisect log) :
commit 5db470e229e22b7eda6e23b5566e532c96fb5bc3
Author: Jaegeuk Kim <jaegeuk@kernel.org>
Date: Thu Jan 10 03:17:14 2019 +0000

loop: drop caches if offset or block_size are changed

Crash: kernel BUG at fs/buffer.c:LINE! (log)
Repro: C syz .config

Fix bisection: failed (bisect log)

similar bugs (5):
Kernel	Title	Repro	Fix bisect	Count	Last	Reported	Patched	Status
android-49	kernel BUG at fs/buffer.c:LINE!			5	1186d	1241d	0/3	auto-closed as invalid on 2019/02/22 13:09
linux-4.14	kernel BUG at fs/buffer.c:LINE!	C	error	55	200d	914d	0/1	upstream: reported C repro on 2019/04/27 19:47
linux-4.19	kernel BUG at fs/buffer.c:LINE!	syz	done	23	452d	905d	1/1	fixed on 2020/09/01 18:34
linux-4.19	kernel BUG at fs/buffer.c:LINE! (2)	C		8	8d19h	341d	0/1	upstream: reported C repro on 2020/11/21 07:48
android-54	kernel BUG at fs/buffer.c:LINE!	C		44	4d12h	646d	0/1	upstream: reported C repro on 2020/01/21 13:12

Sample crash report:

------------[ cut here ]------------
kernel BUG at fs/buffer.c:3094!
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
CPU: 0 PID: 9180 Comm: syz-executor393 Not tainted 5.5.0-rc2-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:submit_bh_wbc+0x71c/0x900 fs/buffer.c:3094
Code: 14 e5 ff f0 80 63 01 f7 e9 ab fa ff ff e8 bc a5 a7 ff 41 81 cd 00 10 00 00 e9 4d fe ff ff e8 ab a5 a7 ff 0f 0b e8 a4 a5 a7 ff <0f> 0b e8 9d a5 a7 ff 0f 0b e8 96 a5 a7 ff 0f 0b e8 8f a5 a7 ff 0f
RSP: 0018:ffffc90001d77bf8 EFLAGS: 00010293
RAX: ffff888094538640 RBX: ffff88809218a5e8 RCX: ffffffff81cd7f8d
RDX: 0000000000000000 RSI: ffffffff81cd85fc RDI: 0000000000000001
RBP: ffffc90001d77c40 R08: ffff888094538640 R09: ffffed10124314be
R10: ffffed10124314bd R11: ffff88809218a5ef R12: 0000000000000000
R13: 0000000000000800 R14: 0000000000000001 R15: 0000000000000000
FS:  0000000001561940(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00000000006d1090 CR3: 00000000a0539000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 submit_bh fs/buffer.c:3141 [inline]
 __sync_dirty_buffer+0x12b/0x350 fs/buffer.c:3227
 sync_dirty_buffer+0x1b/0x20 fs/buffer.c:3240
 fat_set_state+0x242/0x330 fs/fat/inode.c:708
 fat_put_super+0x46/0xd0 fs/fat/inode.c:734
 generic_shutdown_super+0x14c/0x370 fs/super.c:462
 kill_block_super+0xa0/0x100 fs/super.c:1442
 deactivate_locked_super+0x95/0x100 fs/super.c:335
 deactivate_super fs/super.c:366 [inline]
 deactivate_super+0x1b2/0x1d0 fs/super.c:362
 cleanup_mnt+0x351/0x4c0 fs/namespace.c:1102
 __cleanup_mnt+0x16/0x20 fs/namespace.c:1109
 task_work_run+0x145/0x1c0 kernel/task_work.c:113
 tracehook_notify_resume include/linux/tracehook.h:188 [inline]
 exit_to_usermode_loop+0x316/0x380 arch/x86/entry/common.c:164
 prepare_exit_to_usermode arch/x86/entry/common.c:195 [inline]
 syscall_return_slowpath arch/x86/entry/common.c:278 [inline]
 do_syscall_64+0x676/0x790 arch/x86/entry/common.c:304
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x448c07
Code: 00 00 00 b8 08 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 5d a2 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 3d a2 fb ff c3 66 2e 0f 1f 84 00 00 00 00
RSP: 002b:00007ffee36fc1a8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a6
RAX: 0000000000000000 RBX: 0000000000018755 RCX: 0000000000448c07
RDX: 0000000000400c80 RSI: 0000000000000002 RDI: 00007ffee36fc250
RBP: 00000000000023e2 R08: 0000000000000000 R09: 0000000000000009
R10: 0000000000000005 R11: 0000000000000202 R12: 00007ffee36fd2b0
R13: 0000000001562940 R14: 0000000000000000 R15: 0000000000000000
Modules linked in:
---[ end trace cba1ad7e39cd7b0f ]---
RIP: 0010:submit_bh_wbc+0x71c/0x900 fs/buffer.c:3094
Code: 14 e5 ff f0 80 63 01 f7 e9 ab fa ff ff e8 bc a5 a7 ff 41 81 cd 00 10 00 00 e9 4d fe ff ff e8 ab a5 a7 ff 0f 0b e8 a4 a5 a7 ff <0f> 0b e8 9d a5 a7 ff 0f 0b e8 96 a5 a7 ff 0f 0b e8 8f a5 a7 ff 0f
RSP: 0018:ffffc90001d77bf8 EFLAGS: 00010293
RAX: ffff888094538640 RBX: ffff88809218a5e8 RCX: ffffffff81cd7f8d
RDX: 0000000000000000 RSI: ffffffff81cd85fc RDI: 0000000000000001
RBP: ffffc90001d77c40 R08: ffff888094538640 R09: ffffed10124314be
R10: ffffed10124314bd R11: ffff88809218a5ef R12: 0000000000000000
R13: 0000000000000800 R14: 0000000000000001 R15: 0000000000000000
FS:  0000000001561940(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f0aadca9000 CR3: 00000000a0539000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400

Crashes (134):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro	VM info	Title
ci-upstream-kasan-gce-root	2019/12/18 11:56	upstream	2187f215ebaa	f2fe0772	.config	log	report	syz	C
ci-upstream-kasan-gce-selinux-root	2019/12/18 11:35	upstream	2187f215ebaa	f2fe0772	.config	log	report	syz	C
ci-upstream-linux-next-kasan-gce-root	2019/12/27 06:54	linux-next	7ddd09fc4b74	be5c2c81	.config	log	report	syz	C
ci-upstream-kasan-gce-root	2021/08/16 09:02	upstream	7c60610d4767	2489ab88	.config	log	report	syz			kernel BUG in __block_commit_write
ci-upstream-linux-next-kasan-gce-root	2020/07/03 02:09	linux-next	aab2003999e7	bed10395	.config	log	report	syz
ci-upstream-kasan-gce	2021/10/24 23:04	upstream	6c62666d8879	282f03fb	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-selinux-root	2021/10/20 08:10	upstream	d9abdee5fd5a	466b7db1	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-selinux-root	2021/10/19 22:13	upstream	d9abdee5fd5a	466b7db1	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce	2021/10/15 01:46	upstream	26d657410983	7aa5fe41	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-root	2021/10/10 10:27	upstream	7fd2bf83d59a	838e7e2c	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-smack-root	2021/10/01 07:16	upstream	4de593fb965f	1d849ab4	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce	2021/09/26 15:47	upstream	a3b397b4fffb	8cac236e	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce	2021/09/17 11:10	upstream	bdb575f87217	5b989942	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce	2021/09/17 00:32	upstream	ff1ffd71d5f0	aae492f2	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-selinux-root	2021/09/07 21:39	upstream	a2b28235335f	064c9eb7	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-selinux-root	2021/09/07 10:33	upstream	4b93c544e90e	6ca60148	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-selinux-root	2021/08/28 17:47	upstream	64b4fc45bea6	be2c130d	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-selinux-root	2021/08/19 21:43	upstream	d6d09a694205	b599f2fc	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce	2021/08/14 11:40	upstream	dfa377c35d70	2489ab88	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce	2021/07/18 12:33	upstream	ccbb22b9ab86	f115ae98	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-smack-root	2020/07/03 03:32	upstream	cd77006e01b3	bed10395	.config	log	report
ci-upstream-kasan-gce-root	2020/06/03 19:09	upstream	d6f9469a03d8	a5ce5de0	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/05/31 16:19	upstream	ffeb595d8481	a0331e89	.config	log	report
ci-upstream-kasan-gce-root	2020/05/23 01:03	upstream	051143e1602d	9682898d	.config	log	report
ci-upstream-kasan-gce-root	2020/05/17 05:07	upstream	3d1c1e5931ce	37bccd4e	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/05/09 20:03	upstream	d5eeab8d7e26	88cb3e92	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/04/15 19:03	upstream	8632e9b5645b	3f3c5574	.config	log	report
ci-upstream-kasan-gce-root	2020/04/09 07:29	upstream	ae46d2aa6a7f	a8c6a3f8	.config	log	report
ci-upstream-kasan-gce-selinux-root	2020/04/03 18:03	upstream	bef7b2a7be28	5ed396e6	.config	log	report
ci-upstream-kasan-gce-selinux-root	2020/04/02 17:27	upstream	919dce24701f	a34e2c33	.config	log	report
ci-upstream-kasan-gce-root	2020/04/01 14:01	upstream	56a451b78067	a34e2c33	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/03/09 08:40	upstream	2c523b344dfa	2e9971bb	.config	log	report
ci-upstream-kasan-gce-selinux-root	2020/02/27 02:34	upstream	f8788d86ab28	59b57593	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/02/26 18:46	upstream	f8788d86ab28	59b57593	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/02/21 00:48	upstream	ca7e1fd1026c	bd2a74a3	.config	log	report
ci-upstream-kasan-gce-selinux-root	2020/02/18 07:54	upstream	11a48a5a18c6	1ce142dc	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/02/07 15:22	upstream	90568ecf5615	06150bf1	.config	log	report
ci-upstream-kasan-gce-selinux-root	2020/01/27 18:22	upstream	d5226fa6dbae	dd56146d	.config	log	report
ci-upstream-kasan-gce-root	2019/12/16 21:55	upstream	510c9788991c	b80769fc	.config	log	report
ci-upstream-kasan-gce-root	2019/11/03 21:49	upstream	56cfd2507d3e	c9610487	.config	log	report
ci-upstream-kasan-gce-smack-root	2019/11/01 12:09	upstream	e472c64aa4fa	a41ca8fa	.config	log	report
ci-upstream-kasan-gce-selinux-root	2019/09/30 13:01	upstream	97f9a3c4eee5	c7a4fb99	.config	log	report
ci-upstream-kasan-gce-root	2019/09/28 07:37	upstream	8f744bdee4fe	d8074e0b	.config	log	report
ci-upstream-kasan-gce-smack-root	2019/09/25 20:01	upstream	f41def397161	a3355dba	.config	log	report
ci-upstream-kasan-gce-smack-root	2019/09/23 03:04	upstream	f7c3bf8fa7e5	d96e88f3	.config	log	report
ci-upstream-kasan-gce-smack-root	2019/09/22 03:46	upstream	227c3e9eb5cf	d96e88f3	.config	log	report
ci-upstream-kasan-gce-root	2018/04/02 20:37	upstream	86bbbebac193	676bd07e	.config	log	report
ci-upstream-kasan-gce-386	2021/09/27 17:16	upstream	5816b3e6577e	78494d16	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-386	2021/09/26 11:52	upstream	a5e0aceabef6	8cac236e	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-386	2021/09/25 06:01	upstream	4c4f0c2bf341	8cac236e	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-386	2021/09/17 06:10	upstream	bdb575f87217	5b989942	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-386	2021/08/26 03:29	upstream	fe67f4dd8daa	b599f2fc	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-386	2021/08/20 17:32	upstream	d992fe5318d8	b599f2fc	.config	log	report			info	kernel BUG in block_invalidatepage
ci-upstream-linux-next-kasan-gce-root	2020/05/15 06:58	linux-next	ac935d227366	2d572622	.config	log	report
ci-upstream-linux-next-kasan-gce-root	2019/11/16 20:59	linux-next	5a6fcbeabe3e	d5696d51	.config	log	report
ci-upstream-linux-next-kasan-gce-root	2019/10/14 12:31	linux-next	4eeb5abd245d	a6aef847	.config	log	report