syzbot


BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio

Status: upstream: reported on 2022/10/04 09:53
Reported-by: syzbot+c3616973d9db2b0cff65@syzkaller.appspotmail.com
First crash: 55d, last: 6d19h

Sample crash report:
loop5: detected capacity change from 0 to 4096
ntfs: volume version 3.1.
Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000
Mem abort info:
  ESR = 0x0000000086000006
  EC = 0x21: IABT (current EL), IL = 32 bits
  SET = 0, FnV = 0
  EA = 0, S1PTW = 0
  FSC = 0x06: level 2 translation fault
user pgtable: 4k pages, 48-bit VAs, pgdp=0000000167786000
[0000000000000000] pgd=0800000158418003, p4d=0800000158418003, pud=08000001648b6003, pmd=0000000000000000
Internal error: Oops: 0000000086000006 [#1] PREEMPT SMP
Modules linked in:
CPU: 0 PID: 26384 Comm: syz-executor.5 Not tainted 6.1.0-rc5-syzkaller-32269-g9500fc6e9e60 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/30/2022
pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : 0x0
lr : filemap_read_folio+0xc4/0x468 mm/filemap.c:2407
sp : ffff800014f43920
x29: ffff800014f43930 x28: 00000000ffffffff x27: 0000000000080001
x26: 0000000000001000 x25: 0000000000000000 x24: 0000000000000000
x23: fffffc00046eae00 x22: 0000000000000000 x21: 0000000000000000
x20: 0000000000000000 x19: fffffc00046eae00 x18: fffffffffffffff5
x17: ffff80000c0ed83c x16: 0000000000000068 x15: 000000000000000c
x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000040000
x11: 000000000003c70d x10: ffff800013166000 x9 : ffff8000083df2cc
x8 : 000000000003c70e x7 : 545b5d3231383830 x6 : ffff8000083fc418
x5 : 0000000000000000 x4 : 0000000000000001 x3 : 0000000000000000
x2 : fffffc00046eae00 x1 : fffffc00046eae00 x0 : 0000000000000000
Call trace:
 0x0
 do_read_cache_folio+0x1c8/0x588 mm/filemap.c:3534
 do_read_cache_page mm/filemap.c:3576 [inline]
 read_cache_page+0x40/0x174 mm/filemap.c:3585
 read_mapping_page include/linux/pagemap.h:756 [inline]
 ntfs_map_page fs/ntfs/aops.h:75 [inline]
 ntfs_check_logfile+0x2a4/0x8cc fs/ntfs/logfile.c:532
 load_and_check_logfile+0x5c/0xcc fs/ntfs/super.c:1215
 load_system_files+0x7d0/0x1248 fs/ntfs/super.c:1941
 ntfs_fill_super+0xbac/0x1030 fs/ntfs/super.c:2892
 mount_bdev+0x1b8/0x210 fs/super.c:1401
 ntfs_mount+0x44/0x58 fs/ntfs/super.c:3049
 legacy_get_tree+0x30/0x74 fs/fs_context.c:610
 vfs_get_tree+0x40/0x140 fs/super.c:1531
 do_new_mount+0x1dc/0x4e4 fs/namespace.c:3040
 path_mount+0x358/0x890 fs/namespace.c:3370
 do_mount fs/namespace.c:3383 [inline]
 __do_sys_mount fs/namespace.c:3591 [inline]
 __se_sys_mount fs/namespace.c:3568 [inline]
 __arm64_sys_mount+0x2c4/0x3c4 fs/namespace.c:3568
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall arch/arm64/kernel/syscall.c:52 [inline]
 el0_svc_common+0x138/0x220 arch/arm64/kernel/syscall.c:142
 do_el0_svc+0x48/0x164 arch/arm64/kernel/syscall.c:206
 el0_svc+0x58/0x150 arch/arm64/kernel/entry-common.c:637
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:584
Code: bad PC value
---[ end trace 0000000000000000 ]---

Crashes (51):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-gce-arm64 2022/11/20 07:55 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 9500fc6e9e60 5bb70014 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/19 20:13 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 9500fc6e9e60 5bb70014 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/19 16:33 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 9500fc6e9e60 5bb70014 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/19 14:49 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 9500fc6e9e60 5bb70014 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/19 10:45 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 9500fc6e9e60 5bb70014 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/19 03:44 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 9500fc6e9e60 5bb70014 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/16 17:04 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 9500fc6e9e60 3a127a31 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/16 04:42 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 9500fc6e9e60 3a127a31 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/15 09:33 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 9e4ce762f0e7 97de9cfc .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/14 04:00 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 1621b6eaebf7 3ead01ad .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/13 04:02 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 1621b6eaebf7 3ead01ad .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/10 22:35 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 1621b6eaebf7 3ead01ad .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/09 16:04 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci 56751c56c2a2 5fa28208 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/07 13:46 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci f0c4d9fc9cc9 a779b11a .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/06 19:04 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 6d752409 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/05 23:36 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 6d752409 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/05 19:11 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 6d752409 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/05 12:02 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 6d752409 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/03 20:56 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 6d752409 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/03 08:15 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 7a2ebf95 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/02 09:18 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 edac4fd1 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/02 03:31 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 edac4fd1 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/01 18:10 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 edac4fd1 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/01 11:12 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 a1d8560a .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/11/01 05:33 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 a1d8560a .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/31 10:22 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 2a71366b .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/31 00:01 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 2a71366b .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/30 22:43 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 2a71366b .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/30 14:37 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 2a71366b .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/29 21:56 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 899d812a .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/29 05:22 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 ea12ae9b .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/28 18:04 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 ea12ae9b .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/24 00:55 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 23bf86af .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/23 21:21 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 23bf86af .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/21 07:24 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 63e790dd .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/20 19:19 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 a0fd4dab .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/19 08:21 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 b31320fc .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/19 07:37 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 b31320fc .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/19 06:37 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 b31320fc .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/19 05:26 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 b31320fc .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/19 02:13 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 b31320fc .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/17 20:51 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 67cb024c .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/17 12:33 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 67cb024c .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/17 00:17 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 67cb024c .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/15 22:37 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 67cb024c .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/15 01:49 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 67cb024c .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/12 22:00 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 89b5a509 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/12 17:23 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 89b5a509 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/09 07:17 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 aea5da89 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/09 02:06 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 aea5da89 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
ci-upstream-gce-arm64 2022/10/02 15:41 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci bbed346d5a96 feb56351 .config log report info BUG: unable to handle kernel NULL pointer dereference in do_read_cache_folio
* Struck through repros no longer work on HEAD.