syzbot


linux-next boot error: general protection fault in _compound_head

Status: auto-obsoleted due to no activity on 2023/03/15 12:10
Subsystems: mm
[Documentation on labels]
Reported-by: syzbot+65231569237fd5c39d34@syzkaller.appspotmail.com
First crash: 468d, last: 466d
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] linux-next boot error: general protection fault in _compound_head 1 (2) 2023/01/13 14:13

Sample crash report:
debug_vm_pgtable: [debug_vm_pgtable         ]: Validating architecture page table helpers
Key type .fscrypt registered
Key type fscrypt-provisioning registered
kAFS: Red Hat AFS client v0.1 registering.
Btrfs loaded, crc32c=crc32c-intel, assert=on, ref-verify=on, zoned=yes, fsverity=yes
Key type big_key registered
Key type encrypted registered
AppArmor: AppArmor sha1 policy hashing enabled
ima: No TPM chip found, activating TPM-bypass!
Loading compiled-in module X.509 certificates
Loaded X.509 cert 'Build time autogenerated kernel key: a66b4bfa4209e60704b5524af8ee4d762c67759b'
ima: Allocated hash algorithm: sha256
ima: No architecture policies found
evm: Initialising EVM extended attributes:
evm: security.selinux (disabled)
evm: security.SMACK64 (disabled)
evm: security.SMACK64EXEC (disabled)
evm: security.SMACK64TRANSMUTE (disabled)
evm: security.SMACK64MMAP (disabled)
evm: security.apparmor
evm: security.ima
evm: security.capability
evm: HMAC attrs: 0x1
PM:   Magic number: 7:422:782
usb usb37-port6: hash matches
tty ptyq4: hash matches
printk: console [netcon0] enabled
netconsole: network logging started
gtp: GTP module loaded (pdp ctx size 104 bytes)
rdma_rxe: loaded
cfg80211: Loading compiled-in X.509 certificates for regulatory database
cfg80211: Loaded X.509 cert 'sforshee: 00b28ddf47aef9cea7'
ALSA device list:
  #0: Dummy 1
  #1: Loopback 1
  #2: Virtual MIDI Card 1
md: Waiting for all devices to be available before autodetect
md: If you don't use raid, use raid=noautodetect
md: Autodetecting RAID arrays.
md: autorun ...
md: ... autorun DONE.
EXT4-fs (sda1): mounted filesystem 9ce8f422-5403-4bd0-ab21-1df2c0fc2934 with ordered data mode. Quota mode: none.
VFS: Mounted root (ext4 filesystem) readonly on device 8:1.
devtmpfs: mounted
Freeing unused kernel image (initmem) memory: 2928K
Write protecting the kernel read-only data: 184320k
Freeing unused kernel image (rodata/data gap) memory: 1256K
x86/mm: Checked W+X mappings: passed, no W+X pages found.
Failed to set sysctl parameter 'max_rcu_stall_to_panic=1': parameter not found
Run /sbin/init as init process
general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN
KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f]
CPU: 1 PID: 1 Comm: init Not tainted 6.2.0-rc3-next-20230113-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
RIP: 0010:_compound_head+0x21/0x150 include/linux/page-flags.h:251
Code: e8 34 6a 14 00 eb ee 66 90 41 54 55 53 48 89 fb e8 44 a2 c6 ff 48 8d 7b 08 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 fd 00 00 00 48 8b 6b 08 31 ff 49 89 ec 41 83 e4
RSP: 0000:ffffc90000067bb0 EFLAGS: 00010202
RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000
RDX: 0000000000000001 RSI: ffffffff81bb265c RDI: 0000000000000008
RBP: ffff88802998e460 R08: 0000000000000000 R09: ffff88802c3b69c3
R10: ffffed1005876d38 R11: 0000000000000000 R12: 0000000000000000
R13: ffffc90000067da8 R14: ffffc90000067d80 R15: 0000000000000000
FS:  00007f7b2856c800(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f7b285f8300 CR3: 0000000029d2d000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 wp_page_copy mm/memory.c:3047 [inline]
 do_wp_page+0x749/0x3880 mm/memory.c:3425
 handle_pte_fault mm/memory.c:4937 [inline]
 __handle_mm_fault+0x2183/0x3eb0 mm/memory.c:5061
 handle_mm_fault+0x1b6/0x850 mm/memory.c:5207
 do_user_addr_fault+0x475/0x1210 arch/x86/mm/fault.c:1407
 handle_page_fault arch/x86/mm/fault.c:1498 [inline]
 exc_page_fault+0x98/0x170 arch/x86/mm/fault.c:1554
 asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:570
RIP: 0033:0x7f7b285d9f98
Code: 0b 8b 3d 6f d3 01 00 e9 9e ff ff ff c3 55 53 48 8d 1d 9c e3 01 00 52 48 8b 3d 74 e3 01 00 48 8d ab 00 01 00 00 e8 08 f1 ff ff <48> c7 05 5d e3 01 00 00 00 00 00 48 8b 3b 48 83 c3 08 e8 f1 f0 ff
RSP: 002b:00007fff9addfcf0 EFLAGS: 00010206
RAX: 0000000000000000 RBX: 00007f7b285f8320 RCX: 0000562bc835a480
RDX: 0000000000000007 RSI: 0000562bc835a480 RDI: 0000000000000000
RBP: 00007f7b285f8420 R08: 0000000000000000 R09: 0000562bc835a4d0
R10: 0000000000000011 R11: 000000000000000c R12: 0000000000000000
R13: 00007fff9addfd7c R14: 0000000000000000 R15: 0000000000000000
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:_compound_head+0x21/0x150 include/linux/page-flags.h:251
Code: e8 34 6a 14 00 eb ee 66 90 41 54 55 53 48 89 fb e8 44 a2 c6 ff 48 8d 7b 08 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 fd 00 00 00 48 8b 6b 08 31 ff 49 89 ec 41 83 e4
RSP: 0000:ffffc90000067bb0 EFLAGS: 00010202
RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000
RDX: 0000000000000001 RSI: ffffffff81bb265c RDI: 0000000000000008
RBP: ffff88802998e460 R08: 0000000000000000 R09: ffff88802c3b69c3
R10: ffffed1005876d38 R11: 0000000000000000 R12: 0000000000000000
R13: ffffc90000067da8 R14: ffffc90000067d80 R15: 0000000000000000
FS:  00007f7b2856c800(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f7b285cf690 CR3: 0000000029d2d000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
----------------
Code disassembly (best guess):
   0:	e8 34 6a 14 00       	callq  0x146a39
   5:	eb ee                	jmp    0xfffffff5
   7:	66 90                	xchg   %ax,%ax
   9:	41 54                	push   %r12
   b:	55                   	push   %rbp
   c:	53                   	push   %rbx
   d:	48 89 fb             	mov    %rdi,%rbx
  10:	e8 44 a2 c6 ff       	callq  0xffc6a259
  15:	48 8d 7b 08          	lea    0x8(%rbx),%rdi
  19:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
  20:	fc ff df
  23:	48 89 fa             	mov    %rdi,%rdx
  26:	48 c1 ea 03          	shr    $0x3,%rdx
* 2a:	80 3c 02 00          	cmpb   $0x0,(%rdx,%rax,1) <-- trapping instruction
  2e:	0f 85 fd 00 00 00    	jne    0x131
  34:	48 8b 6b 08          	mov    0x8(%rbx),%rbp
  38:	31 ff                	xor    %edi,%edi
  3a:	49 89 ec             	mov    %rbp,%r12
  3d:	41                   	rex.B
  3e:	83                   	.byte 0x83
  3f:	e4                   	.byte 0xe4

Crashes (9):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/01/14 12:09 linux-next 6b31ffe9c8b9 a63719e7 .config console log report ci-upstream-linux-next-kasan-gce-root linux-next boot error: general protection fault in _compound_head
2023/01/14 12:09 linux-next 6b31ffe9c8b9 a63719e7 .config console log report ci-upstream-linux-next-kasan-gce-root linux-next boot error: general protection fault in _compound_head
2023/01/14 12:09 linux-next 6b31ffe9c8b9 a63719e7 .config console log report ci-upstream-linux-next-kasan-gce-root linux-next boot error: general protection fault in _compound_head
2023/01/13 14:04 linux-next 6b31ffe9c8b9 529798b0 .config console log report ci-upstream-linux-next-kasan-gce-root linux-next boot error: general protection fault in _compound_head
2023/01/13 14:04 linux-next 6b31ffe9c8b9 529798b0 .config console log report ci-upstream-linux-next-kasan-gce-root linux-next boot error: general protection fault in _compound_head
2023/01/13 14:04 linux-next 6b31ffe9c8b9 529798b0 .config console log report ci-upstream-linux-next-kasan-gce-root linux-next boot error: general protection fault in _compound_head
2023/01/13 04:56 linux-next 6b31ffe9c8b9 96166539 .config console log report ci-upstream-linux-next-kasan-gce-root linux-next boot error: general protection fault in _compound_head
2023/01/13 04:56 linux-next 6b31ffe9c8b9 96166539 .config console log report ci-upstream-linux-next-kasan-gce-root linux-next boot error: general protection fault in _compound_head
2023/01/13 04:56 linux-next 6b31ffe9c8b9 96166539 .config console log report ci-upstream-linux-next-kasan-gce-root linux-next boot error: general protection fault in _compound_head
* Struck through repros no longer work on HEAD.