syzbot


Unable to handle kernel write to read-only memory at virtual address ADDR

Status: upstream: reported C repro on 2022/09/26 16:43
Reported-by: syzbot+9831d4affe35bb65b891@syzkaller.appspotmail.com
First crash: 68d, last: 22d

Sample crash report:
Unable to handle kernel write to read-only memory at virtual address ffff0000cb245000
Mem abort info:
  ESR = 0x000000009600004f
  EC = 0x25: DABT (current EL), IL = 32 bits
  SET = 0, FnV = 0
  EA = 0, S1PTW = 0
  FSC = 0x0f: level 3 permission fault
Data abort info:
  ISV = 0, ISS = 0x0000004f
  CM = 0, WnR = 1
swapper pgtable: 4k pages, 48-bit VAs, pgdp=00000001c5820000
[ffff0000cb245000] pgd=180000023fff8003, p4d=180000023fff8003, pud=180000023f9f4003, pmd=180000023f99a003, pte=006000010b245787
Internal error: Oops: 000000009600004f [#1] PREEMPT SMP
Modules linked in:
CPU: 1 PID: 21 Comm: kworker/1:0 Not tainted 6.1.0-rc4-syzkaller-31872-g1621b6eaebf7 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/30/2022
Workqueue: events p9_read_work
pstate: 20400005 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : __memcpy+0x158/0x260 arch/arm64/lib/memcpy.S:175
lr : _copy_to_iter+0x45c/0x76c lib/iov_iter.c:527
sp : ffff80000f23ba30
x29: ffff80000f23ba80 x28: ffff0000cb6ac000 x27: 0000000000001000
x26: 0000000000000000 x25: ffff80000f23bc88 x24: ffff80000ceb2000
x23: 0000000000000b01 x22: 0000000000001000 x21: ffff0000cb6ac000
x20: 0000000000001000 x19: ffff80000f23bc30 x18: 00000000000000c0
x17: ffff80000dcdc198 x16: 0000000000000000 x15: 0000000000000000
x14: 0000000000000008 x13: 0000000000000000 x12: 0000000000000000
x11: 0000000000000000 x10: 0000000000000000 x9 : 0000000000000000
x8 : 0000000000000000 x7 : 0000000000000000 x6 : 0000000000000000
x5 : ffff0000cb245f08 x4 : ffff0000cb6ad000 x3 : ffff0000cb244fc0
x2 : 0000000000000eb8 x1 : ffff0000cb6ac0f8 x0 : ffff0000cb244f08
Call trace:
 __memcpy+0x158/0x260 arch/arm64/lib/memcpy.S:174
 copy_page_to_iter+0x2a0/0x354 lib/iov_iter.c:725
 pipe_read+0x20c/0x6d0 fs/pipe.c:307
 __kernel_read+0x128/0x2cc fs/read_write.c:428
 kernel_read+0xb8/0x150 fs/read_write.c:446
 p9_fd_read net/9p/trans_fd.c:266 [inline]
 p9_read_work+0xfc/0x61c net/9p/trans_fd.c:301
 process_one_work+0x2d8/0x504 kernel/workqueue.c:2289
 worker_thread+0x340/0x610 kernel/workqueue.c:2436
 kthread+0x12c/0x158 kernel/kthread.c:376
 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:863
Code: a9022468 a9422428 a9032c6a a9432c2a (a984346c) 
---[ end trace 0000000000000000 ]---
----------------
Code disassembly (best guess):
   0:	a9022468 	stp	x8, x9, [x3, #32]
   4:	a9422428 	ldp	x8, x9, [x1, #32]
   8:	a9032c6a 	stp	x10, x11, [x3, #48]
   c:	a9432c2a 	ldp	x10, x11, [x1, #48]
* 10:	a984346c 	stp	x12, x13, [x3, #64]! <-- trapping instruction

Crashes (3):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-gce-arm64 2022/11/11 03:26 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 1621b6eaebf7 3ead01ad .config log report syz C Unable to handle kernel write to read-only memory at virtual address ADDR
ci-upstream-gce-arm64 2022/09/25 23:43 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci c194837ebb57 0042f2b4 .config log report syz C Unable to handle kernel write to read-only memory at virtual address ADDR
ci-upstream-gce-arm64 2022/09/28 19:59 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci c194837ebb57 e2556bc3 .config log report info Unable to handle kernel write to read-only memory at virtual address ADDR
* Struck through repros no longer work on HEAD.