general protection fault in diUpdatePMap

Title	Replies (including bot)	Last reply
[syzbot] general protection fault in diUpdatePMap	0 (1)	2022/09/29 20:40

Title

Replies (including bot)

Last reply

[syzbot] general protection fault in diUpdatePMap

0 (1)

2022/09/29 20:40

Kernel	Title	Repro	Cause bisect	Fix bisect	Count	Last	Reported	Patched	Status
linux-4.19	general protection fault in diUpdatePMap	C		error	1	573d	573d	0/1	upstream: reported C repro on 2022/09/29 12:21
linux-4.14	general protection fault in diUpdatePMap	C			1	430d	573d	0/1	upstream: reported C repro on 2022/09/30 10:17

linux-4.19

general protection fault in diUpdatePMap

error

573d

0/1

upstream: reported C repro on 2022/09/29 12:21

linux-4.14

general protection fault in diUpdatePMap

430d

573d

0/1

upstream: reported C repro on 2022/09/30 10:17


Created	Duration	User	Repo	Result
2024/02/17 02:19	17m	retest repro	upstream	OK log
2024/01/17 05:30	20m	retest repro	upstream	OK log
2023/12/09 01:52	19m	retest repro	upstream	report log
2023/11/22 05:28	26m	retest repro	linux-next	OK log
2023/11/08 04:56	17m	retest repro	upstream	report log
2023/09/30 01:17	10m	retest repro	upstream	report log
2023/08/30 02:59	49m	retest repro	upstream	report log
2023/08/30 02:59	28m	retest repro	linux-next	report log
2023/07/21 23:35	24m	retest repro	upstream	report log
2023/05/12 22:57	24m	retest repro	upstream	report log

general protection fault, probably for non-canonical address 0xfbd59c0000000021: 0000 [#1] PREEMPT SMP KASAN KASAN: maybe wild-memory-access in range [0xdead000000000108-0xdead00000000010f] CPU: 1 PID: 121 Comm: jfsCommit Not tainted 6.0.0-rc7-syzkaller-00029-g3800a713b607 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 RIP: 0010:__list_add_valid+0x39/0x100 lib/list_debug.c:27 Code: 00 00 00 49 89 d6 48 85 d2 0f 84 9b 00 00 00 49 89 f4 49 89 ff 49 bd 00 00 00 00 00 fc ff df 49 8d 5e 08 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 f8 40 a5 fd 48 8b 13 4c 39 e2 75 RSP: 0018:ffffc9000225fc10 EFLAGS: 00010806 RAX: 1bd5a00000000021 RBX: dead000000000108 RCX: dffffc0000000000 RDX: dead000000000100 RSI: ffffc90002271120 RDI: ffff88801d761da0 RBP: ffff88801d761d90 R08: ffffffff82fc6834 R09: fffff5200044bf64 R10: fffff5200044bf65 R11: 1ffff9200044bf64 R12: ffffc90002271120 R13: dffffc0000000000 R14: dead000000000100 R15: ffff88801d761da0 FS: 0000000000000000(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f86dc15d290 CR3: 0000000025a6f000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: <TASK> __list_add include/linux/list.h:69 [inline] list_add include/linux/list.h:88 [inline] diUpdatePMap+0x5d6/0xda0 fs/jfs/jfs_imap.c:2821 txUpdateMap+0x7c4/0xaa0 fs/jfs/jfs_txnmgr.c:2351 txLazyCommit fs/jfs/jfs_txnmgr.c:2659 [inline] jfs_lazycommit+0x433/0xba0 fs/jfs/jfs_txnmgr.c:2727 kthread+0x266/0x300 kernel/kthread.c:376 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306 </TASK> Modules linked in: ---[ end trace 0000000000000000 ]--- RIP: 0010:__list_add_valid+0x39/0x100 lib/list_debug.c:27 Code: 00 00 00 49 89 d6 48 85 d2 0f 84 9b 00 00 00 49 89 f4 49 89 ff 49 bd 00 00 00 00 00 fc ff df 49 8d 5e 08 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 f8 40 a5 fd 48 8b 13 4c 39 e2 75 RSP: 0018:ffffc9000225fc10 EFLAGS: 00010806 RAX: 1bd5a00000000021 RBX: dead000000000108 RCX: dffffc0000000000 RDX: dead000000000100 RSI: ffffc90002271120 RDI: ffff88801d761da0 RBP: ffff88801d761d90 R08: ffffffff82fc6834 R09: fffff5200044bf64 R10: fffff5200044bf65 R11: 1ffff9200044bf64 R12: ffffc90002271120 R13: dffffc0000000000 R14: dead000000000100 R15: ffff88801d761da0 FS: 0000000000000000(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f86dc15d290 CR3: 0000000025a6f000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 ---------------- Code disassembly (best guess), 1 bytes skipped: 0: 00 00 add %al,(%rax) 2: 49 89 d6 mov %rdx,%r14 5: 48 85 d2 test %rdx,%rdx 8: 0f 84 9b 00 00 00 je 0xa9 e: 49 89 f4 mov %rsi,%r12 11: 49 89 ff mov %rdi,%r15 14: 49 bd 00 00 00 00 00 movabs $0xdffffc0000000000,%r13 1b: fc ff df 1e: 49 8d 5e 08 lea 0x8(%r14),%rbx 22: 48 89 d8 mov %rbx,%rax 25: 48 c1 e8 03 shr $0x3,%rax * 29: 42 80 3c 28 00 cmpb $0x0,(%rax,%r13,1) <-- trapping instruction 2e: 74 08 je 0x38 30: 48 89 df mov %rbx,%rdi 33: e8 f8 40 a5 fd callq 0xfda54130 38: 48 8b 13 mov (%rbx),%rdx 3b: 4c 39 e2 cmp %r12,%rdx 3e: 75 .byte 0x75

Crashes (4):
Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro	Assets (help?)	Manager	Title
2022/09/27 21:06	upstream	3800a713b607	10323ddf	.config	strace log	report	syz	C		ci2-upstream-fs	general protection fault in diUpdatePMap
2022/09/30 05:02	upstream	c3e0e1e23c70	45fd7169	.config	strace log	report	syz	C	[disk image] [vmlinux]	ci2-upstream-fs	BUG: corrupted list in diUpdatePMap
2022/09/29 21:51	upstream	c3e0e1e23c70	1d385642	.config	strace log	report	syz	C	[disk image] [vmlinux]	ci-upstream-kasan-gce-root	BUG: corrupted list in diUpdatePMap
2022/10/30 08:48	linux-next	4d48f589d294	2a71366b	.config	strace log	report	syz	C	[disk image] [vmlinux] [mounted in repro]	ci-upstream-linux-next-kasan-gce-root	BUG: corrupted list in diUpdatePMap

Crashes (4):

Assets (help?)