From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id B3E6EC25B76 for ; Tue, 11 Jun 2024 10:34:30 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id 51B2D6B00A6; Tue, 11 Jun 2024 06:34:30 -0400 (EDT) Received: by kanga.kvack.org (Postfix, from userid 40) id 4A1FA6B00A7; Tue, 11 Jun 2024 06:34:30 -0400 (EDT) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 31BAA6B00A9; Tue, 11 Jun 2024 06:34:30 -0400 (EDT) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0013.hostedemail.com [216.40.44.13]) by kanga.kvack.org (Postfix) with ESMTP id 0E02F6B00A6 for ; Tue, 11 Jun 2024 06:34:30 -0400 (EDT) Received: from smtpin13.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay08.hostedemail.com (Postfix) with ESMTP id 338CC140614 for ; Tue, 11 Jun 2024 10:34:29 +0000 (UTC) X-FDA: 82218248658.13.CC67181 Received: from mail-il1-f206.google.com (mail-il1-f206.google.com [209.85.166.206]) by imf11.hostedemail.com (Postfix) with ESMTP id 923B640002 for ; Tue, 11 Jun 2024 10:34:26 +0000 (UTC) Authentication-Results: imf11.hostedemail.com; dkim=none; spf=pass (imf11.hostedemail.com: domain of 3MShoZgkbAFwMSTE4FF8L4JJC7.AIIAF8OM8L6IHN8HN.6IG@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com designates 209.85.166.206 as permitted sender) smtp.mailfrom=3MShoZgkbAFwMSTE4FF8L4JJC7.AIIAF8OM8L6IHN8HN.6IG@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com; dmarc=fail reason="SPF not aligned (relaxed), No valid DKIM" header.from=appspotmail.com (policy=none) ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1718102066; a=rsa-sha256; cv=none; b=hJztymHuM+x8pKl9l77/mvlhMProY+AtkKF6t9QD1P8o1BgljlgP2rPYllz0yXlEnPOIeD 7xYV+HQmjqXZmyp7FYGhPlog7vOUIR4T6/D1rsjYTI+3i5Mx8DSS5DPhcv5IHE4CSXdnHT GDyx8zgXMi62fc90CbWkPmSaZpntoQ4= ARC-Authentication-Results: i=1; imf11.hostedemail.com; dkim=none; spf=pass (imf11.hostedemail.com: domain of 3MShoZgkbAFwMSTE4FF8L4JJC7.AIIAF8OM8L6IHN8HN.6IG@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com designates 209.85.166.206 as permitted sender) smtp.mailfrom=3MShoZgkbAFwMSTE4FF8L4JJC7.AIIAF8OM8L6IHN8HN.6IG@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com; dmarc=fail reason="SPF not aligned (relaxed), No valid DKIM" header.from=appspotmail.com (policy=none) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1718102066; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type:content-transfer-encoding:in-reply-to: references; bh=K0IQqv9KqFj11BocG4s0Pz4yp+q9Far854P6moXfG1o=; b=Zv7pjMtXsidqgDATEn25bNUPL03o84tcTaClpnJPgfJQV4hab8JpQBCs6F1e8uWpsRQk4b 7MQjeTchIt/zVEr36XKOnohm2P27aUb4QHwyBw7hLSieHfcSfKEpGtTDaCuwbuHe7Fp6ib SQTfOJpoJ2o1QI14Rp1Y2fNJXnYdlXA= Received: by mail-il1-f206.google.com with SMTP id e9e14a558f8ab-3759fa002c1so23115365ab.2 for ; Tue, 11 Jun 2024 03:34:26 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1718102065; x=1718706865; h=to:from:subject:message-id:date:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=K0IQqv9KqFj11BocG4s0Pz4yp+q9Far854P6moXfG1o=; b=c+cIkotF+CnPzan3UtcwbfVkT4beNbCb8vqETpc/cF5EP/ApXHx1u/kZ0Ssl0bruCV RDmT30Rrjdb43AUMOQd2mYRebvehkENR9ggoLMM8ieRii5dZMMPu/fvQLYoLDTq/SZ/4 sNVwqz1klg70TQC89xhV7Er0ytkPUFjII0TbNODPbW0jgpoNuwTxQ9lP+5Es7VWuuGa7 2Q/Pce/vj0DKv3ymC/qFcSlf5JyJQz/uC617tOmFgPCKGYZxv0qyWE0yfElgeYe5Bfc6 2bYPOEBkqzl50r1KL5lZeH+sPSAgTb0EODZIJvlCs/26N6FQMj5dvATcTQQvyhF0efYb JI8A== X-Forwarded-Encrypted: i=1; AJvYcCXJ8+XkIrFtEXFsMqiGim+vvdHQ3yzNxi7CBBFyZrK1oRuMnijRpwGA54kPinwHxMvojRpezjx107R3jFCSNFWF0Qo= X-Gm-Message-State: AOJu0YwXrfVDFbq3cNb3EFu56v0GL+dOftQ1VZA2e4lID7Dxq8SEsc0H 8qBrXVohyyTXYamkBJynVIH2uuEXC/c0C5pCrQ6ajY01oABmJlVVzycNnHCd7ImgDEdy3JbG8DM ZzUlxV1lfh8WVmDPYULiUKLvGffle2uJmfJKtHSLHooCeD5KJf3gQiUM= X-Google-Smtp-Source: AGHT+IE1jKA6jRl5lFabUppzbVmpAkrc/Htj2NFMHxp6Jdd45yLPOX/S1ZuGnkYIQAT/D0BX+vYqlqYBGDLj9gvCPEVCzELSsYLP MIME-Version: 1.0 X-Received: by 2002:a05:6e02:1487:b0:36c:4b17:e05d with SMTP id e9e14a558f8ab-375803cf3abmr7259195ab.4.1718102065609; Tue, 11 Jun 2024 03:34:25 -0700 (PDT) Date: Tue, 11 Jun 2024 03:34:25 -0700 X-Google-Appengine-App-Id: s~syzkaller X-Google-Appengine-App-Id-Alias: syzkaller Message-ID: <0000000000004f12bb061a9acf07@google.com> Subject: [syzbot] [mm?] general protection fault in dequeue_hugetlb_folio_nodemask (2) From: syzbot To: akpm@linux-foundation.org, linux-kernel@vger.kernel.org, linux-mm@kvack.org, muchun.song@linux.dev, syzkaller-bugs@googlegroups.com Content-Type: text/plain; charset="UTF-8" X-Rspamd-Queue-Id: 923B640002 X-Rspam-User: X-Rspamd-Server: rspam12 X-Stat-Signature: a6i6w41crsfqhde5q8nj89n4gnrshbok X-HE-Tag: 1718102066-689453 X-HE-Meta: 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 uiOqWHmL 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 nUAozAuy ZFThKpRRf2UfWcRAFdfIx84+YzDYqsEqLOSiK0GwXHduJ1XCYOERwwzXjNofLduqJRQSZ4gtPrRe0SBKPS6oG0K7KP68xrWx6kSPwUNd1OoGhbxKTtKkpec/bSmotjOPUBKtpMxVq+tlXZs/wMXIHJEQXLHxXfYne96LGdGuOZnt1ahdtcowX7kVoWRFfDnrHzXPZE7493HSZVkw2Jn6cBWatYLQ0Sm736KKLm4JPz5eDB0+lXlyWkrjIFYXR44GGXwYjbf2oylYKdapb4e1oTyBfr6EXNpuhyz19Rwh5NdVfyKw15EV6KSJ3nwTycqPth6pdzVsHEhvRbzYXeyFvNocbo15+auFG1ABHEd5uJA= X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: List-Subscribe: List-Unsubscribe: Hello, syzbot found the following issue on: HEAD commit: d35b2284e966 Add linux-next specific files for 20240607 git tree: linux-next console+strace: https://syzkaller.appspot.com/x/log.txt?x=161352e2980000 kernel config: https://syzkaller.appspot.com/x/.config?x=d8bf5cd6bcca7343 dashboard link: https://syzkaller.appspot.com/bug?extid=569ed13f4054f271087b compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 syz repro: https://syzkaller.appspot.com/x/repro.syz?x=15eb5e86980000 C reproducer: https://syzkaller.appspot.com/x/repro.c?x=15db597e980000 Downloadable assets: disk image: https://storage.googleapis.com/syzbot-assets/e0055a00a2cb/disk-d35b2284.raw.xz vmlinux: https://storage.googleapis.com/syzbot-assets/192cbb8cf833/vmlinux-d35b2284.xz kernel image: https://storage.googleapis.com/syzbot-assets/57804c9c9319/bzImage-d35b2284.xz IMPORTANT: if you fix the issue, please add the following tag to the commit: Reported-by: syzbot+569ed13f4054f271087b@syzkaller.appspotmail.com Oops: general protection fault, probably for non-canonical address 0xdffffc0000000489: 0000 [#1] PREEMPT SMP KASAN PTI KASAN: probably user-memory-access in range [0x0000000000002448-0x000000000000244f] CPU: 1 PID: 5095 Comm: syz-executor603 Not tainted 6.10.0-rc2-next-20240607-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 RIP: 0010:zonelist_zone_idx include/linux/mmzone.h:1613 [inline] RIP: 0010:next_zones_zonelist include/linux/mmzone.h:1644 [inline] RIP: 0010:first_zones_zonelist include/linux/mmzone.h:1670 [inline] RIP: 0010:dequeue_hugetlb_folio_nodemask+0x193/0xe40 mm/hugetlb.c:1362 Code: 93 7a a0 ff c7 44 24 14 00 00 00 00 83 7c 24 40 00 0f 85 97 0c 00 00 48 83 7c 24 20 00 0f 85 45 09 00 00 48 89 d8 48 c1 e8 03 <42> 0f b6 04 28 84 c0 0f 85 58 09 00 00 44 8b 33 44 89 f7 8b 5c 24 RSP: 0018:ffffc900035bf720 EFLAGS: 00010002 RAX: 0000000000000489 RBX: 0000000000002448 RCX: ffff88807651bc00 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc900035bf858 R08: ffffffff81f5e800 R09: fffff520006b7ee8 R10: dffffc0000000000 R11: fffff520006b7ee8 R12: 00000000ffffffff R13: dffffc0000000000 R14: 0000000000000000 R15: 0000000000000000 FS: 000055558f377380(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000000005fdeb8 CR3: 000000001cfda000 CR4: 00000000003506f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: alloc_hugetlb_folio_nodemask+0xae/0x3f0 mm/hugetlb.c:2603 memfd_alloc_folio+0x15e/0x390 mm/memfd.c:75 memfd_pin_folios+0x1066/0x1720 mm/gup.c:3864 udmabuf_create+0x658/0x11c0 drivers/dma-buf/udmabuf.c:353 udmabuf_ioctl_create drivers/dma-buf/udmabuf.c:420 [inline] udmabuf_ioctl+0x304/0x4f0 drivers/dma-buf/udmabuf.c:451 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:907 [inline] __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x77/0x7f RIP: 0033:0x7fb1c16b4ab9 Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fff21e63e48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb1c16b4ab9 RDX: 0000000020000000 RSI: 0000000040187542 RDI: 0000000000000003 RBP: 00007fb1c17275f0 R08: 0000000000000006 R09: 0000000000000006 R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001 R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 Modules linked in: ---[ end trace 0000000000000000 ]--- RIP: 0010:zonelist_zone_idx include/linux/mmzone.h:1613 [inline] RIP: 0010:next_zones_zonelist include/linux/mmzone.h:1644 [inline] RIP: 0010:first_zones_zonelist include/linux/mmzone.h:1670 [inline] RIP: 0010:dequeue_hugetlb_folio_nodemask+0x193/0xe40 mm/hugetlb.c:1362 Code: 93 7a a0 ff c7 44 24 14 00 00 00 00 83 7c 24 40 00 0f 85 97 0c 00 00 48 83 7c 24 20 00 0f 85 45 09 00 00 48 89 d8 48 c1 e8 03 <42> 0f b6 04 28 84 c0 0f 85 58 09 00 00 44 8b 33 44 89 f7 8b 5c 24 RSP: 0018:ffffc900035bf720 EFLAGS: 00010002 RAX: 0000000000000489 RBX: 0000000000002448 RCX: ffff88807651bc00 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffc900035bf858 R08: ffffffff81f5e800 R09: fffff520006b7ee8 R10: dffffc0000000000 R11: fffff520006b7ee8 R12: 00000000ffffffff R13: dffffc0000000000 R14: 0000000000000000 R15: 0000000000000000 FS: 000055558f377380(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000000005fdeb8 CR3: 000000001cfda000 CR4: 00000000003506f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 ---------------- Code disassembly (best guess): 0: 93 xchg %eax,%ebx 1: 7a a0 jp 0xffffffa3 3: ff c7 inc %edi 5: 44 24 14 rex.R and $0x14,%al 8: 00 00 add %al,(%rax) a: 00 00 add %al,(%rax) c: 83 7c 24 40 00 cmpl $0x0,0x40(%rsp) 11: 0f 85 97 0c 00 00 jne 0xcae 17: 48 83 7c 24 20 00 cmpq $0x0,0x20(%rsp) 1d: 0f 85 45 09 00 00 jne 0x968 23: 48 89 d8 mov %rbx,%rax 26: 48 c1 e8 03 shr $0x3,%rax * 2a: 42 0f b6 04 28 movzbl (%rax,%r13,1),%eax <-- trapping instruction 2f: 84 c0 test %al,%al 31: 0f 85 58 09 00 00 jne 0x98f 37: 44 8b 33 mov (%rbx),%r14d 3a: 44 89 f7 mov %r14d,%edi 3d: 8b .byte 0x8b 3e: 5c pop %rsp 3f: 24 .byte 0x24 --- This report is generated by a bot. It may contain errors. See https://goo.gl/tpsmEJ for more information about syzbot. syzbot engineers can be reached at syzkaller@googlegroups.com. syzbot will keep track of this issue. See: https://goo.gl/tpsmEJ#status for how to communicate with syzbot. If the report is already addressed, let syzbot know by replying with: #syz fix: exact-commit-title If you want syzbot to run the reproducer, reply with: #syz test: git://repo/address.git branch-or-commit-hash If you attach or paste a git patch, syzbot will apply it before testing. If you want to overwrite report's subsystems, reply with: #syz set subsystems: new-subsystem (See the list of subsystem names on the web dashboard) If the report is a duplicate of another one, reply with: #syz dup: exact-subject-of-another-report If you want to undo deduplication, reply with: #syz undup