syzbot


BUG: unable to handle kernel paging request in free_block (2)

Status: closed as invalid on 2018/03/21 12:59
Subsystems: mm
[Documentation on labels]
First crash: 2400d, last: 2400d
Similar bugs (4)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.19 BUG: unable to handle kernel paging request in free_block 1 1548d 1548d 0/1 auto-closed as invalid on 2020/11/18 03:09
upstream BUG: unable to handle kernel paging request in free_block (4) kernel 2 2071d 2101d 0/28 closed as dup on 2019/01/14 17:27
upstream BUG: unable to handle kernel paging request in free_block (3) fs 11 2363d 2392d 0/28 closed as invalid on 2018/09/05 11:23
upstream BUG: unable to handle kernel paging request in free_block (5) mm syz done done 3 1608d 2007d 0/28 auto-obsoleted due to no activity on 2022/09/07 17:26

Sample crash report:
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=34590 sclass=netlink_route_socket pig=23173 comm=syz-executor5
BUG: unable to handle kernel paging request at ffff8802d6ea29ff
IP: slab_put_obj mm/slab.c:2612 [inline]
IP: free_block+0x158/0x280 mm/slab.c:3405
PGD 8fee067 P4D 8fee067 PUD 0 
Oops: 0002 [#1] SMP KASAN
Dumping ftrace buffer:
   (ftrace buffer empty)
Modules linked in:
CPU: 0 PID: 23191 Comm: modprobe Not tainted 4.16.0-rc4+ #275
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:slab_put_obj mm/slab.c:2612 [inline]
RIP: 0010:free_block+0x158/0x280 mm/slab.c:3405
RSP: 0018:ffff8801a831fa18 EFLAGS: 00010086
RAX: 00000000000f0f0e RBX: ffffe8ffffc042b8 RCX: 00000000ffffffff
RDX: ffff8801d6ea2a00 RSI: ffff8801d6ea2a00 RDI: 0000000000000000
RBP: ffff8801a831fa60 R08: 00000000075ba880 R09: ffff8801da5d0158
R10: ffff8801a831f928 R11: 0000000000000000 R12: ffff8801da5d6600
R13: ffffea00075ba8a0 R14: ffff8801da5d0100 R15: ffffea00075ba880
FS:  00007f83886b3700(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffff8802d6ea29ff CR3: 00000001d4a4c006 CR4: 00000000001606f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 cache_flusharray mm/slab.c:3456 [inline]
 ___cache_free+0x20a/0x2f0 mm/slab.c:3514
 qlink_free mm/kasan/quarantine.c:147 [inline]
 qlist_free_all+0x8c/0x160 mm/kasan/quarantine.c:166
 quarantine_reduce+0x141/0x170 mm/kasan/quarantine.c:259
 kasan_kmalloc+0xca/0xe0 mm/kasan/kasan.c:537
 kasan_slab_alloc+0x12/0x20 mm/kasan/kasan.c:489
 slab_post_alloc_hook mm/slab.h:443 [inline]
 slab_alloc mm/slab.c:3379 [inline]
 kmem_cache_alloc+0x11b/0x760 mm/slab.c:3539
 __split_vma+0x10b/0x7b0 mm/mmap.c:2564
 do_munmap+0xb54/0xdf0 mm/mmap.c:2687
 vm_munmap+0x10b/0x180 mm/mmap.c:2745
 SYSC_munmap mm/mmap.c:2755 [inline]
 SyS_munmap+0x25/0x30 mm/mmap.c:2752
 do_syscall_64+0x281/0x940 arch/x86/entry/common.c:287
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x7f8387fd3d37
RSP: 002b:00007fff6f8fad38 EFLAGS: 00000206 ORIG_RAX: 000000000000000b
RAX: ffffffffffffffda RBX: 0000555b28931260 RCX: 00007f8387fd3d37
RDX: 0000000000000000 RSI: 0000000000001000 RDI: 00007f83886b8000
RBP: 0000000000000000 R08: 00007f83886b3700 R09: 00007f838801e090
R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
R13: 0000555b28939210 R14: 0000555b28931210 R15: 00007fff6f8fafc0
Code: 0f b6 4c 24 1c 48 c1 ee 20 29 f0 d3 e8 41 0f b6 4c 24 1d 01 f0 49 8b 77 10 d3 e8 8d 4f ff 48 85 f6 41 89 4f 18 0f 84 05 01 00 00 <88> 04 0e 41 8b 47 18 85 c0 0f 84 e0 fe ff ff 49 8b 4e 40 4d 8d 
RIP: slab_put_obj mm/slab.c:2612 [inline] RSP: ffff8801a831fa18
RIP: free_block+0x158/0x280 mm/slab.c:3405 RSP: ffff8801a831fa18
CR2: ffff8802d6ea29ff
---[ end trace 3754799ee6a15427 ]---

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2018/03/21 11:49 net-next-old 0466080c751e f63eeee9 .config console log report ci-upstream-net-kasan-gce
* Struck through repros no longer work on HEAD.