kernel BUG at arch/x86/mm/physaddr.c:LINE! (3)

kernel BUG at arch/x86/mm/physaddr.c:LINE! (3)
Status: upstream: reported on 2020/07/14 16:42
Reported-by: syzbot+d229bfbdb33b5139e86f@syzkaller.appspotmail.com
First crash: 510d, last: 2d10h

similar bugs (9):
Kernel	Title	Repro	Cause bisect	Fix bisect	Count	Last	Reported	Patched	Status
upstream	kernel BUG at arch/x86/mm/physaddr.c:LINE! (2)	C	done		522	906d	1115d	13/22	fixed on 2019/06/14 18:22
upstream	kernel BUG at arch/x86/mm/physaddr.c:LINE! (6)				89	5d14h	495d	0/22	upstream: reported on 2020/07/29 21:34
linux-4.19	kernel BUG at arch/x86/mm/physaddr.c:LINE! (2)	C		done	82	564d	704d	1/1	fixed on 2020/06/20 23:56
linux-4.19	kernel BUG at arch/x86/mm/physaddr.c:LINE!	syz		done	1	891d	891d	1/1	fixed on 2019/12/16 09:09
linux-4.14	kernel BUG at arch/x86/mm/physaddr.c:LINE!	C		inconclusive	23	255d	711d	0/1	upstream: reported C repro on 2019/12/26 02:01
upstream	kernel BUG at arch/x86/mm/physaddr.c:LINE! (5)	C	done		241	511d	584d	17/22	fixed on 2020/07/17 17:58
upstream	kernel BUG at arch/x86/mm/physaddr.c:LINE! (3)				4	897d	897d	0/22	auto-closed as invalid on 2019/10/25 08:46
upstream	kernel BUG at arch/x86/mm/physaddr.c:LINE!	C			10	1121d	1153d	12/22	fixed on 2018/11/12 21:25
upstream	kernel BUG at arch/x86/mm/physaddr.c:LINE! (4)	C			18	619d	653d	17/22	fixed on 2020/04/15 17:19

Sample crash report:

------------[ cut here ]------------
kernel BUG at arch/x86/mm/physaddr.c:27!
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
CPU: 1 PID: 30955 Comm: systemd-udevd Not tainted 4.19.211-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:__phys_addr+0xa7/0x110 arch/x86/mm/physaddr.c:27
Code: 67 fb 09 4c 89 e3 31 ff 48 d3 eb 48 89 de e8 40 28 37 00 48 85 db 75 0d e8 a6 26 37 00 4c 89 e0 5b 5d 41 5c c3 e8 99 26 37 00 <0f> 0b e8 92 26 37 00 48 c7 c0 10 30 e7 89 48 ba 00 00 00 00 00 fc
RSP: 0018:ffff888232aff518 EFLAGS: 00010293
RAX: ffff8880a2346100 RBX: ffff000000000000 RCX: ffffffff812b5e78
RDX: 0000000000000000 RSI: ffffffff812b5ed7 RDI: 0000000000000006
RBP: ffff000080000000 R08: 0000000000000000 R09: ffff000080000000
R10: 0000000000000006 R11: 0000000000000000 R12: ffff778000000000
R13: ffff888232aff570 R14: 0000000000000000 R15: 0000000000000286
FS:  00007fc26a0e28c0(0000) GS:ffff8880ba100000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fc269eca028 CR3: 00000000b15a5000 CR4: 00000000003426e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 virt_to_head_page include/linux/mm.h:665 [inline]
 qlink_to_cache mm/kasan/quarantine.c:127 [inline]
 qlist_free_all+0xbb/0x140 mm/kasan/quarantine.c:163
 quarantine_reduce+0x1a9/0x230 mm/kasan/quarantine.c:259
 kasan_kmalloc+0xa2/0x160 mm/kasan/kasan.c:538
 slab_post_alloc_hook mm/slab.h:445 [inline]
 slab_alloc_node mm/slab.c:3340 [inline]
 kmem_cache_alloc_node+0x133/0x3b0 mm/slab.c:3647
 __alloc_skb+0x71/0x560 net/core/skbuff.c:193
 alloc_skb include/linux/skbuff.h:995 [inline]
 alloc_skb_with_frags+0x92/0x570 net/core/skbuff.c:5333
 sock_alloc_send_pskb+0x6e1/0x830 net/core/sock.c:2108
 unix_dgram_sendmsg+0x3a5/0x12c0 net/unix/af_unix.c:1718
 sock_sendmsg_nosec net/socket.c:651 [inline]
 sock_sendmsg+0xc3/0x120 net/socket.c:661
 sock_write_iter+0x287/0x3c0 net/socket.c:966
 call_write_iter include/linux/fs.h:1821 [inline]
 new_sync_write fs/read_write.c:474 [inline]
 __vfs_write+0x51b/0x770 fs/read_write.c:487
 vfs_write+0x1f3/0x540 fs/read_write.c:549
 ksys_write+0x12b/0x2a0 fs/read_write.c:599
 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7fc2692281b0
Code: 2e 0f 1f 84 00 00 00 00 00 90 48 8b 05 19 7e 20 00 c3 0f 1f 84 00 00 00 00 00 83 3d 19 c2 20 00 00 75 10 b8 01 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 ae fc ff ff 48 89 04 24
RSP: 002b:00007ffc03017488 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
RAX: ffffffffffffffda RBX: 000055687c830880 RCX: 00007fc2692281b0
RDX: 0000000000000000 RSI: 00007ffc03017540 RDI: 0000000000000008
RBP: 00007ffc03017600 R08: 000055687c832184 R09: 0000000000000000
R10: 0000000000000018 R11: 0000000000000246 R12: 00007ffc03017550
R13: 000000000aba9500 R14: 0000000000000003 R15: 000000000000000e
Modules linked in:
---[ end trace d1d721d2142a70af ]---
RIP: 0010:__phys_addr+0xa7/0x110 arch/x86/mm/physaddr.c:27
Code: 67 fb 09 4c 89 e3 31 ff 48 d3 eb 48 89 de e8 40 28 37 00 48 85 db 75 0d e8 a6 26 37 00 4c 89 e0 5b 5d 41 5c c3 e8 99 26 37 00 <0f> 0b e8 92 26 37 00 48 c7 c0 10 30 e7 89 48 ba 00 00 00 00 00 fc
RSP: 0018:ffff888232aff518 EFLAGS: 00010293
RAX: ffff8880a2346100 RBX: ffff000000000000 RCX: ffffffff812b5e78
RDX: 0000000000000000 RSI: ffffffff812b5ed7 RDI: 0000000000000006
RBP: ffff000080000000 R08: 0000000000000000 R09: ffff000080000000
R10: 0000000000000006 R11: 0000000000000000 R12: ffff778000000000
R13: ffff888232aff570 R14: 0000000000000000 R15: 0000000000000286
FS:  00007fc26a0e28c0(0000) GS:ffff8880ba100000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fc269eca028 CR3: 00000000b15a5000 CR4: 00000000003426e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400

Crashes (56):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	VM info	Title
ci2-linux-4-19	2021/12/04 11:29	linux-4.19.y	3f8a27f9e27b	a617004c	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/11/19 03:07	linux-4.19.y	3f8a27f9e27b	31a30fc0	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/11/18 09:35	linux-4.19.y	3f8a27f9e27b	cafff8b6	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/11/18 07:57	linux-4.19.y	3f8a27f9e27b	cafff8b6	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/11/09 21:51	linux-4.19.y	3f8a27f9e27b	59bcaf9a	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/11/06 16:54	linux-4.19.y	3f8a27f9e27b	4c1be0be	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/11/05 13:14	linux-4.19.y	3f8a27f9e27b	4c1be0be	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/11/04 19:53	linux-4.19.y	3f8a27f9e27b	4c1be0be	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/10/26 11:12	linux-4.19.y	3f8a27f9e27b	c1132b49	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/10/23 08:05	linux-4.19.y	3f8a27f9e27b	282f03fb	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/09/09 21:50	linux-4.19.y	b172b44fcb17	e2776ee4	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/09/01 09:31	linux-4.19.y	e23d55af0e1f	7eb7e152	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/08/31 14:08	linux-4.19.y	e23d55af0e1f	8f58a0ef	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/08/23 09:30	linux-4.19.y	59456c9cc40c	b599f2fc	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/08/22 01:31	linux-4.19.y	59456c9cc40c	b599f2fc	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/08/16 02:43	linux-4.19.y	59456c9cc40c	2489ab88	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/08/11 09:25	linux-4.19.y	5c66974a6304	6972b106	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/08/09 05:56	linux-4.19.y	5c66974a6304	6972b106	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/08/02 09:59	linux-4.19.y	53bd76690e27	6c236867	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/07/27 16:55	linux-4.19.y	4938296e03bd	17d6ab15	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/07/27 04:11	linux-4.19.y	4938296e03bd	fd511809	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/07/23 18:58	linux-4.19.y	4938296e03bd	bc5f1d88	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/07/20 22:49	linux-4.19.y	4938296e03bd	1b201b48	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/07/18 11:54	linux-4.19.y	fcfbdfe9626e	f115ae98	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/07/16 23:52	linux-4.19.y	fcfbdfe9626e	f115ae98	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/07/12 06:43	linux-4.19.y	fcfbdfe9626e	a4869c92	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/07/11 05:50	linux-4.19.y	9f84340f012e	8f5a7b8c	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/07/10 18:39	linux-4.19.y	9f84340f012e	8f5a7b8c	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/07/07 07:34	linux-4.19.y	9f84340f012e	4846d5c1	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/06/30 10:06	linux-4.19.y	eb575cd5d7f6	84fd4c77	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/06/17 23:39	linux-4.19.y	eb575cd5d7f6	aba2b2fb	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/06/06 04:45	linux-4.19.y	1722257b8ece	500c2339	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/05/29 17:38	linux-4.19.y	6b7b0056defc	325a8dab	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/04/19 22:16	linux-4.19.y	2965db2e004c	4285c989	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/03/31 17:57	linux-4.19.y	2034d6f0838e	6a81331a	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2021/03/17 21:59	linux-4.19.y	ac3af4beac43	fdb2bb2c	.config	log	report	info	kernel BUG in __phys_addr
ci2-linux-4-19	2020/12/26 03:25	linux-4.19.y	13d2ce42de8c	821e0b09	.config	log	report	info
ci2-linux-4-19	2020/12/06 00:55	linux-4.19.y	daefdc9eb24b	50503117	.config	log	report	info
ci2-linux-4-19	2020/11/25 17:09	linux-4.19.y	0c88e405c97e	3f581b43	.config	log	report	info
ci2-linux-4-19	2020/09/10 12:42	linux-4.19.y	67957f12548c	ac7ca78e	.config	log	report
ci2-linux-4-19	2020/09/09 18:15	linux-4.19.y	67957f12548c	ac7ca78e	.config	log	report
ci2-linux-4-19	2020/09/09 11:22	linux-4.19.y	c37da90efff5	0ea7a887	.config	log	report
ci2-linux-4-19	2020/09/09 10:33	linux-4.19.y	c37da90efff5	0ea7a887	.config	log	report
ci2-linux-4-19	2020/09/08 20:41	linux-4.19.y	c37da90efff5	abf9ba4f	.config	log	report
ci2-linux-4-19	2020/09/08 09:28	linux-4.19.y	c37da90efff5	abf9ba4f	.config	log	report
ci2-linux-4-19	2020/09/07 20:00	linux-4.19.y	c37da90efff5	abf9ba4f	.config	log	report
ci2-linux-4-19	2020/09/06 11:01	linux-4.19.y	c37da90efff5	abf9ba4f	.config	log	report
ci2-linux-4-19	2020/09/04 00:02	linux-4.19.y	c37da90efff5	abf9ba4f	.config	log	report
ci2-linux-4-19	2020/09/02 07:27	linux-4.19.y	f6d5cb9e2c06	abf9ba4f	.config	log	report
ci2-linux-4-19	2020/09/01 01:05	linux-4.19.y	f6d5cb9e2c06	d5a3ae1f	.config	log	report
ci2-linux-4-19	2020/08/23 22:43	linux-4.19.y	d18b78abc0c6	cef5ae68	.config	log	report
ci2-linux-4-19	2020/08/04 22:35	linux-4.19.y	13af6c74b14a	02034dac	.config	log	report
ci2-linux-4-19	2020/08/04 22:03	linux-4.19.y	13af6c74b14a	02034dac	.config	log	report
ci2-linux-4-19	2020/08/04 07:26	linux-4.19.y	13af6c74b14a	96dd3623	.config	log	report
ci2-linux-4-19	2020/07/21 02:32	linux-4.19.y	17a87580a885	d88894e6	.config	log	report
ci2-linux-4-19	2020/07/14 16:42	linux-4.19.y	dce0f88600e4	6f458026	.config	log	report