From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id 1592DC5472C for ; Tue, 27 Aug 2024 09:55:27 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id 359BC6B007B; Tue, 27 Aug 2024 05:55:27 -0400 (EDT) Received: by kanga.kvack.org (Postfix, from userid 40) id 309C76B0082; Tue, 27 Aug 2024 05:55:27 -0400 (EDT) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 1F8986B0083; Tue, 27 Aug 2024 05:55:27 -0400 (EDT) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0011.hostedemail.com [216.40.44.11]) by kanga.kvack.org (Postfix) with ESMTP id F19F86B007B for ; Tue, 27 Aug 2024 05:55:26 -0400 (EDT) Received: from smtpin05.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay01.hostedemail.com (Postfix) with ESMTP id 677861C4A5C for ; Tue, 27 Aug 2024 09:55:26 +0000 (UTC) X-FDA: 82497567852.05.B3A60C0 Received: from mail-il1-f198.google.com (mail-il1-f198.google.com [209.85.166.198]) by imf25.hostedemail.com (Postfix) with ESMTP id A7DCAA0015 for ; Tue, 27 Aug 2024 09:55:23 +0000 (UTC) Authentication-Results: imf25.hostedemail.com; dkim=none; dmarc=fail reason="SPF not aligned (relaxed), No valid DKIM" header.from=appspotmail.com (policy=none); spf=pass (imf25.hostedemail.com: domain of 3iqLNZgkbAEMx34pfqqjwfuuni.lttlqjzxjwhtsyjsy.htr@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com designates 209.85.166.198 as permitted sender) smtp.mailfrom=3iqLNZgkbAEMx34pfqqjwfuuni.lttlqjzxjwhtsyjsy.htr@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1724752504; a=rsa-sha256; cv=none; b=No1jOfZ/zhaomhk18dHOR/dGaSV8PAKiXu76svl3OOSkpvtuRMjs9suHD1152hS+fGPBpp Hx06l9HkkXA4/EKQam+khfm3Lu7G94CmqopQZQgcttfCTVVebU/JgQ5/E4KZm1LoHBAYmB O9Wp50uob89R3uSTRbjFL3Tg6k6qyKY= ARC-Authentication-Results: i=1; imf25.hostedemail.com; dkim=none; dmarc=fail reason="SPF not aligned (relaxed), No valid DKIM" header.from=appspotmail.com (policy=none); spf=pass (imf25.hostedemail.com: domain of 3iqLNZgkbAEMx34pfqqjwfuuni.lttlqjzxjwhtsyjsy.htr@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com designates 209.85.166.198 as permitted sender) smtp.mailfrom=3iqLNZgkbAEMx34pfqqjwfuuni.lttlqjzxjwhtsyjsy.htr@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1724752504; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type:content-transfer-encoding:in-reply-to: references; bh=y0kNyv7fNXRKOPzrM+ThwbmBEMrRU1hCayUpBO5ejJ0=; b=4cTpiUiX3VNuET6P6HS3X9jx7pGxtLKZEWK9zVqbYlWRe+5n2fqDOWWfISz015wZs7Rlyu kqoP3LtnX2/NyuMst6JJjQtLchS8hzNxVXjZ4/OWwFPSka8xyqB1583hqALFh/Xc99bN2z KvQ4YxTeAkynmbTsjb5hVacTL+uKoZk= Received: by mail-il1-f198.google.com with SMTP id e9e14a558f8ab-39d4c0fc036so66677585ab.2 for ; Tue, 27 Aug 2024 02:55:23 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1724752522; x=1725357322; h=to:from:subject:message-id:date:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=y0kNyv7fNXRKOPzrM+ThwbmBEMrRU1hCayUpBO5ejJ0=; b=E7CofxhHrG/RkMxp4wfiukj8fHJ7vJU3il2lkmIdXVAXK+xUDgnVNZikKyGpnXhLzm aMDcYYWso25+LElUDvM35MPFdTjHVY8/YGh/kyC+6wIEyHNy78MqTQ/B8EYNt93SJ8Ft kGsLo9ldEd0ZcKCTTMPOhZqvwRXF+ey/EJ1QmhpPnUgrb8KWT+1MYN5QzKOPYOVA0pcu 08xdjew5I7X1RgrG9ABC9OWU51mjlUGkFy+c9pgOBhKnTSAcqo7CCg1ZCCaqbPeA930Y FXol2zPLoGnUbQUvui2LagAMYU+usFuGU/r4hY4ryQoHDXb+nhUEylLQcJyrhw9AkPFQ awoQ== X-Forwarded-Encrypted: i=1; AJvYcCXmhNUW7uS+jc315qfqGrumHnKFyAZGD8GEkW/UBz7mi1mBdlJ1Iajbkz3xLpdt2foHwlNcrbLzZA==@kvack.org X-Gm-Message-State: AOJu0Yx+gtazc4JXJILxrbsWIHDjiqmiEC6OK5CWCExrh6WIRgdCMpk4 ijBJfSUGRMR7ptYJ4OSWWOr7DCrh4pcQd/0VBsT4MlYi2Nbuizw9aH7RzIh4rQ6b5QNxg77ez93 lxRRmoq1JcYtG2QSwD/RunvNH6/0OPpqlUcH3yDQFn1vxmcvU6q75rh8= X-Google-Smtp-Source: AGHT+IE5oFjr2H4O3YDKEgFXHtzDMB9o0CBTA893gxQPt3zb5iv06tv44u2SVyPDiMUlyeRbJCqvfH1m/YdcN7LVdekvB0LsXjvQ MIME-Version: 1.0 X-Received: by 2002:a05:6e02:20c2:b0:395:fa9a:318e with SMTP id e9e14a558f8ab-39e3c8e3417mr9353125ab.0.1724752522567; Tue, 27 Aug 2024 02:55:22 -0700 (PDT) Date: Tue, 27 Aug 2024 02:55:22 -0700 X-Google-Appengine-App-Id: s~syzkaller X-Google-Appengine-App-Id-Alias: syzkaller Message-ID: <0000000000006ef2e80620a73de3@google.com> Subject: [syzbot] [mm?] general protection fault in ksm_do_scan From: syzbot To: akpm@linux-foundation.org, linux-kernel@vger.kernel.org, linux-mm@kvack.org, syzkaller-bugs@googlegroups.com Content-Type: text/plain; charset="UTF-8" X-Rspam-User: X-Rspamd-Queue-Id: A7DCAA0015 X-Rspamd-Server: rspam01 X-Stat-Signature: dntku4bcc5ur6yb53n6pgzkdbbjidmuu X-HE-Tag: 1724752523-906035 X-HE-Meta: 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 Ise+KPuo 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 ZHswQO+8 YvufIa/wcHwE2t6+P94lfyU9bUIm8862olDU4RKvfR3Ck3G9/KWUGJxdWWt6+AWC8h0YLULCDQgMdQ1cTnIqT5uG8l2Y2/R7fwR0VWghYOWSLzkgWd4Mz+FictO4eCicel0/3iltvDXROUtLqWC7MijN4/kmY8FpO10WseII7O7m6IPNrsCEHw5DZk4sElTaMRhewZExIB8qOWmN6/VSMlneF8G1/JRyiLo4DYovzVAg0snOrRQaR5l2/8DX/ZfQETGo+J6BLnKXSmHJBlIzoiNi1167fMcZwAoWeMR1YbWEGujnfb2st/fbBnNMhB/hd8c6+yl+B/ge2TsKol/AjIWqS/XoOEvnH16JgNSOpH0/hRhVpZB7fBFRUA7Nnm7n X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: List-Subscribe: List-Unsubscribe: Hello, syzbot found the following issue on: HEAD commit: 3e9bff3bbe13 Merge tag 'vfs-6.11-rc6.fixes' of gitolite.ke.. git tree: upstream console output: https://syzkaller.appspot.com/x/log.txt?x=1112122b980000 kernel config: https://syzkaller.appspot.com/x/.config?x=8605cd35ddc8ff3c dashboard link: https://syzkaller.appspot.com/bug?extid=ab2cf748d72119c9c291 compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 Unfortunately, I don't have any reproducer for this issue yet. Downloadable assets: disk image: https://storage.googleapis.com/syzbot-assets/93f88e5414fe/disk-3e9bff3b.raw.xz vmlinux: https://storage.googleapis.com/syzbot-assets/0e9efe39c78f/vmlinux-3e9bff3b.xz kernel image: https://storage.googleapis.com/syzbot-assets/9963bfff0cc9/bzImage-3e9bff3b.xz IMPORTANT: if you fix the issue, please add the following tag to the commit: Reported-by: syzbot+ab2cf748d72119c9c291@syzkaller.appspotmail.com Oops: general protection fault, probably for non-canonical address 0xdffffc0000000084: 0000 [#1] PREEMPT SMP KASAN NOPTI KASAN: null-ptr-deref in range [0x0000000000000420-0x0000000000000427] CPU: 0 UID: 0 PID: 36 Comm: ksmd Not tainted 6.11.0-rc5-syzkaller-00015-g3e9bff3bbe13 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 RIP: 0010:scan_get_next_rmap_item mm/ksm.c:2557 [inline] RIP: 0010:ksm_do_scan+0x792/0x6700 mm/ksm.c:2669 Code: 89 e7 48 c7 c6 ff ff ff ff e8 8a 72 b2 09 49 89 c6 48 85 c0 4c 89 7c 24 58 0f 84 c9 0a 00 00 49 8d 5e 20 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 ff 60 01 00 48 8b 1b be 00 00 00 RSP: 0018:ffffc90000ac7b60 EFLAGS: 00010217 RAX: 0000000000000084 RBX: 0000000000000426 RCX: ffff88801b6b8000 RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 RBP: ffffc90000ac7d90 R08: ffffffff8babb624 R09: ffffffff8babb4a9 R10: 0000000000000004 R11: ffff88801b6b8000 R12: ffffc90000ac7ce0 R13: dffffc0000000000 R14: 0000000000000406 R15: ffff8880628826c4 FS: 0000000000000000(0000) GS:ffff8880b9200000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055556f065808 CR3: 000000006e7c6000 CR4: 0000000000350ef0 Call Trace: ksm_scan_thread+0x110/0x490 mm/ksm.c:2694 kthread+0x2f2/0x390 kernel/kthread.c:389 ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244 Modules linked in: ---[ end trace 0000000000000000 ]--- RIP: 0010:scan_get_next_rmap_item mm/ksm.c:2557 [inline] RIP: 0010:ksm_do_scan+0x792/0x6700 mm/ksm.c:2669 Code: 89 e7 48 c7 c6 ff ff ff ff e8 8a 72 b2 09 49 89 c6 48 85 c0 4c 89 7c 24 58 0f 84 c9 0a 00 00 49 8d 5e 20 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 ff 60 01 00 48 8b 1b be 00 00 00 RSP: 0018:ffffc90000ac7b60 EFLAGS: 00010217 RAX: 0000000000000084 RBX: 0000000000000426 RCX: ffff88801b6b8000 RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 RBP: ffffc90000ac7d90 R08: ffffffff8babb624 R09: ffffffff8babb4a9 R10: 0000000000000004 R11: ffff88801b6b8000 R12: ffffc90000ac7ce0 R13: dffffc0000000000 R14: 0000000000000406 R15: ffff8880628826c4 FS: 0000000000000000(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007fdc1b0e7ab8 CR3: 0000000023394000 CR4: 0000000000350ef0 ---------------- Code disassembly (best guess): 0: 89 e7 mov %esp,%edi 2: 48 c7 c6 ff ff ff ff mov $0xffffffffffffffff,%rsi 9: e8 8a 72 b2 09 call 0x9b27298 e: 49 89 c6 mov %rax,%r14 11: 48 85 c0 test %rax,%rax 14: 4c 89 7c 24 58 mov %r15,0x58(%rsp) 19: 0f 84 c9 0a 00 00 je 0xae8 1f: 49 8d 5e 20 lea 0x20(%r14),%rbx 23: 48 89 d8 mov %rbx,%rax 26: 48 c1 e8 03 shr $0x3,%rax * 2a: 42 80 3c 28 00 cmpb $0x0,(%rax,%r13,1) <-- trapping instruction 2f: 74 08 je 0x39 31: 48 89 df mov %rbx,%rdi 34: e8 ff 60 01 00 call 0x16138 39: 48 8b 1b mov (%rbx),%rbx 3c: be .byte 0xbe 3d: 00 00 add %al,(%rax) --- This report is generated by a bot. It may contain errors. See https://goo.gl/tpsmEJ for more information about syzbot. syzbot engineers can be reached at syzkaller@googlegroups.com. syzbot will keep track of this issue. See: https://goo.gl/tpsmEJ#status for how to communicate with syzbot. If the report is already addressed, let syzbot know by replying with: #syz fix: exact-commit-title If you want to overwrite report's subsystems, reply with: #syz set subsystems: new-subsystem (See the list of subsystem names on the web dashboard) If the report is a duplicate of another one, reply with: #syz dup: exact-subject-of-another-report If you want to undo deduplication, reply with: #syz undup