syzbot


kernel BUG at fs/buffer.c:LINE!

Status: upstream: reported C repro on 2018/04/19 16:02
Reported-by: syzbot+cfed5b56649bddf80d6e@syzkaller.appspotmail.com
First crash: 1770d, last: 2d08h

Cause bisection: introduced by (bisect log) :
commit 5db470e229e22b7eda6e23b5566e532c96fb5bc3
Author: Jaegeuk Kim <jaegeuk@kernel.org>
Date: Thu Jan 10 03:17:14 2019 +0000

  loop: drop caches if offset or block_size are changed

Crash: kernel BUG at fs/buffer.c:LINE! (log)
Repro: C syz .config

Fix bisection: failed (bisect log)
similar bugs (5):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-49 kernel BUG at fs/buffer.c:LINE! 5 1652d 1706d 0/3 auto-closed as invalid on 2019/02/22 13:09
linux-4.14 kernel BUG at fs/buffer.c:LINE! C error 58 113d 1380d 0/1 upstream: reported C repro on 2019/04/27 19:47
linux-4.19 kernel BUG at fs/buffer.c:LINE! syz done 23 917d 1371d 1/1 fixed on 2020/09/01 18:34
linux-4.19 kernel BUG at fs/buffer.c:LINE! (2) udf C error 30 44d 806d 0/1 upstream: reported C repro on 2020/11/21 07:48
android-54 kernel BUG at fs/buffer.c:LINE! ext4 C 73 7d10h 1111d 0/2 upstream: reported C repro on 2020/01/21 13:12
Last patch testing requests:
Created Duration User Patch Repo Result
2022/09/29 10:30 18m retest repro upstream OK log

Sample crash report:
NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024
NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024
NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024
------------[ cut here ]------------
kernel BUG at fs/buffer.c:2685!
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
CPU: 0 PID: 3633 Comm: syz-executor141 Not tainted 6.0.0-syzkaller-07994-ge8bc52cb8df8 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
RIP: 0010:submit_bh_wbc+0x125/0x650 fs/buffer.c:2685
Code: c1 ea 03 80 3c 02 00 0f 85 3f 04 00 00 48 8b 2b 31 ff 48 c1 ed 08 83 e5 01 89 ee e8 d5 93 94 ff 40 84 ed 74 07 e8 4b 97 94 ff <0f> 0b e8 44 97 94 ff be 08 00 00 00 48 89 df e8 77 af e1 ff 48 89
RSP: 0018:ffffc90003f5f398 EFLAGS: 00010293
RAX: 0000000000000000 RBX: ffff88806fc28e80 RCX: 0000000000000000
RDX: ffff88801f9f1d80 RSI: ffffffff81e67fe5 RDI: 0000000000000001
RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
R13: 0000000000000000 R14: ffff88806fc28e80 R15: 0000000000000000
FS:  0000555557531300(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055d729914258 CR3: 000000001ec4b000 CR4: 0000000000350ef0
Call Trace:
 <TASK>
 submit_bh fs/buffer.c:2724 [inline]
 block_read_full_folio+0x63e/0x9d0 fs/buffer.c:2340
 do_mpage_readpage+0x39f/0x19e0 fs/mpage.c:304
 mpage_read_folio+0xa5/0x140 fs/mpage.c:379
 filemap_read_folio+0xdb/0x2c0 mm/filemap.c:2399
 filemap_fault+0x1f47/0x2640 mm/filemap.c:3212
 __do_fault+0x10d/0x610 mm/memory.c:4173
 do_read_fault mm/memory.c:4524 [inline]
 do_fault mm/memory.c:4653 [inline]
 handle_pte_fault mm/memory.c:4917 [inline]
 __handle_mm_fault+0x2130/0x39b0 mm/memory.c:5059
 handle_mm_fault+0x1c8/0x780 mm/memory.c:5157
 faultin_page mm/gup.c:990 [inline]
 __get_user_pages+0x4f3/0xfd0 mm/gup.c:1219
 populate_vma_page_range+0x23d/0x320 mm/gup.c:1576
 __mm_populate+0x1ea/0x3d0 mm/gup.c:1689
 mm_populate include/linux/mm.h:2663 [inline]
 vm_mmap_pgoff+0x1fd/0x270 mm/util.c:557
 ksys_mmap_pgoff+0x41b/0x5a0 mm/mmap.c:1586
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd
RIP: 0033:0x7f49d5970b89
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fff05db1d08 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
RAX: ffffffffffffffda RBX: 0000000000009191 RCX: 00007f49d5970b89
RDX: 00000000027fffff RSI: 0000000000600000 RDI: 0000000020000000
RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000000
R10: 0000000004002011 R11: 0000000000000246 R12: 00007fff05db1d3c
R13: 00007fff05db1d70 R14: 00007fff05db1d50 R15: 000000000000000e
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:submit_bh_wbc+0x125/0x650 fs/buffer.c:2685
Code: c1 ea 03 80 3c 02 00 0f 85 3f 04 00 00 48 8b 2b 31 ff 48 c1 ed 08 83 e5 01 89 ee e8 d5 93 94 ff 40 84 ed 74 07 e8 4b 97 94 ff <0f> 0b e8 44 97 94 ff be 08 00 00 00 48 89 df e8 77 af e1 ff 48 89
RSP: 0018:ffffc90003f5f398 EFLAGS: 00010293
RAX: 0000000000000000 RBX: ffff88806fc28e80 RCX: 0000000000000000
RDX: ffff88801f9f1d80 RSI: ffffffff81e67fe5 RDI: 0000000000000001
RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
R13: 0000000000000000 R14: ffff88806fc28e80 R15: 0000000000000000
FS:  0000555557531300(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055d729914258 CR3: 000000001ec4b000 CR4: 0000000000350ef0

Crashes (170):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets Title
ci-upstream-kasan-gce-root 2022/10/08 20:16 upstream e8bc52cb8df8 aea5da89 .config strace log report syz C [disk image] [vmlinux] [mounted in repro] kernel BUG in submit_bh_wbc
ci-upstream-kasan-gce-root 2019/12/18 11:56 upstream 2187f215ebaa f2fe0772 .config console log report syz C
ci-upstream-linux-next-kasan-gce-root 2019/12/27 06:54 linux-next 7ddd09fc4b74 be5c2c81 .config console log report syz C
ci-upstream-gce-arm64 2022/10/02 11:40 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 feb56351 .config console log report syz C [disk image] [vmlinux] kernel BUG in submit_bh_wbc
ci-upstream-kasan-gce-root 2021/08/16 09:02 upstream 7c60610d4767 2489ab88 .config console log report syz kernel BUG in __block_commit_write
ci-upstream-linux-next-kasan-gce-root 2020/07/03 02:09 linux-next aab2003999e7 bed10395 .config console log report syz
ci-upstream-kasan-gce-selinux-root 2019/12/18 11:35 upstream 2187f215ebaa f2fe0772 .config console log report syz C
ci2-upstream-fs 2023/02/03 16:44 upstream 66a87fff1a87 1b2f701a .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci2-upstream-fs 2023/01/31 22:25 upstream 22b8077d0fce b68fb8d6 .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci2-upstream-fs 2023/01/28 02:34 upstream 83abd4d4c4be 9dfcf09c .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci-upstream-kasan-gce-selinux-root 2023/01/21 10:11 upstream ff83fec8179e 559a440a .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci2-upstream-fs 2023/01/16 17:03 upstream 5dc4c995db9e a63719e7 .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci2-upstream-fs 2023/01/12 07:08 upstream 7dd4b804e080 96166539 .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci2-upstream-fs 2023/01/11 09:08 upstream 40c18f363a08 48bc529a .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci2-upstream-fs 2023/01/10 19:08 upstream 5a41237ad1d4 48bc529a .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci2-upstream-fs 2023/01/10 00:13 upstream 1fe4fd6f5cad 48bc529a .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci2-upstream-fs 2022/12/13 07:24 upstream 830b3c68c1fb 67be1ae7 .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci2-upstream-fs 2022/12/11 08:05 upstream 296a7b7eb792 67be1ae7 .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci2-upstream-fs 2022/11/22 20:45 upstream eb7081409f94 9da37ae8 .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci2-upstream-fs 2022/10/16 16:56 upstream 493ffd6605b2 67cb024c .config console log report info [disk image] [vmlinux] kernel BUG in submit_bh_wbc
ci-upstream-kasan-gce 2021/10/29 02:19 upstream 411a44c24a56 be531bb4 .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce 2021/10/24 23:04 upstream 6c62666d8879 282f03fb .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-selinux-root 2021/10/20 08:10 upstream d9abdee5fd5a 466b7db1 .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-selinux-root 2021/10/19 22:13 upstream d9abdee5fd5a 466b7db1 .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce 2021/10/15 01:46 upstream 26d657410983 7aa5fe41 .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-root 2021/10/10 10:27 upstream 7fd2bf83d59a 838e7e2c .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-smack-root 2021/10/01 07:16 upstream 4de593fb965f 1d849ab4 .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce 2021/09/26 15:47 upstream a3b397b4fffb 8cac236e .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce 2021/09/17 11:10 upstream bdb575f87217 5b989942 .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce 2021/09/17 00:32 upstream ff1ffd71d5f0 aae492f2 .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-selinux-root 2021/09/07 21:39 upstream a2b28235335f 064c9eb7 .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-selinux-root 2021/09/07 10:33 upstream 4b93c544e90e 6ca60148 .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-selinux-root 2021/08/28 17:47 upstream 64b4fc45bea6 be2c130d .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-selinux-root 2021/08/19 21:43 upstream d6d09a694205 b599f2fc .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce 2021/08/14 11:40 upstream dfa377c35d70 2489ab88 .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce 2021/07/18 12:33 upstream ccbb22b9ab86 f115ae98 .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-smack-root 2020/07/03 03:32 upstream cd77006e01b3 bed10395 .config console log report
ci-upstream-kasan-gce-root 2020/06/03 19:09 upstream d6f9469a03d8 a5ce5de0 .config console log report
ci-upstream-kasan-gce-smack-root 2020/05/31 16:19 upstream ffeb595d8481 a0331e89 .config console log report
ci-upstream-kasan-gce-root 2020/05/23 01:03 upstream 051143e1602d 9682898d .config console log report
ci-upstream-kasan-gce-root 2020/05/17 05:07 upstream 3d1c1e5931ce 37bccd4e .config console log report
ci-upstream-kasan-gce-root 2018/04/02 20:37 upstream 86bbbebac193 676bd07e .config console log report
ci-upstream-kasan-gce-386 2021/09/27 17:16 upstream 5816b3e6577e 78494d16 .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-386 2021/09/26 11:52 upstream a5e0aceabef6 8cac236e .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-386 2021/09/25 06:01 upstream 4c4f0c2bf341 8cac236e .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-386 2021/09/17 06:10 upstream bdb575f87217 5b989942 .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-386 2021/08/26 03:29 upstream fe67f4dd8daa b599f2fc .config console log report info kernel BUG in block_invalidatepage
ci-upstream-kasan-gce-386 2021/08/20 17:32 upstream d992fe5318d8 b599f2fc .config console log report info kernel BUG in block_invalidatepage
ci-upstream-gce-arm64 2022/12/30 14:45 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci a5541c0811a0 44712fbc .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/12/30 12:30 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci a5541c0811a0 44712fbc .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/12/29 14:31 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci a5541c0811a0 44712fbc .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/12/27 07:20 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci a5541c0811a0 9da18ae8 .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/12/25 13:25 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci a5541c0811a0 9da18ae8 .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/12/24 21:47 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci a5541c0811a0 9da18ae8 .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/12/17 10:52 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci a5541c0811a0 05494336 .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/12/16 02:31 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci a5541c0811a0 6f9c033e .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/12/12 15:01 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci a5541c0811a0 67be1ae7 .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/12/04 07:33 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci e3cb714fb489 e080de16 .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/12/03 00:09 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci e3cb714fb489 e080de16 .config console log report info [disk image] [vmlinux] [kernel image] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/11/05 16:32 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 6d752409 .config console log report info [disk image] [vmlinux] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/10/31 16:09 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 2a71366b .config console log report info [disk image] [vmlinux] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/10/31 07:07 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 2a71366b .config console log report info [disk image] [vmlinux] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/10/24 18:11 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 ff2fe65d .config console log report info [disk image] [vmlinux] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/10/22 18:23 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 c0b80a55 .config console log report info [disk image] [vmlinux] kernel BUG in submit_bh_wbc
ci-upstream-gce-arm64 2022/10/02 11:27 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 feb56351 .config console log report info [disk image] [vmlinux] kernel BUG in submit_bh_wbc
* Struck through repros no longer work on HEAD.