From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id EBF3FC4332F for ; Mon, 19 Dec 2022 03:18:48 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id 7B5D68E0002; Sun, 18 Dec 2022 22:18:48 -0500 (EST) Received: by kanga.kvack.org (Postfix, from userid 40) id 73E948E0001; Sun, 18 Dec 2022 22:18:48 -0500 (EST) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 5DEE78E0002; Sun, 18 Dec 2022 22:18:48 -0500 (EST) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0016.hostedemail.com [216.40.44.16]) by kanga.kvack.org (Postfix) with ESMTP id 4820E8E0001 for ; Sun, 18 Dec 2022 22:18:48 -0500 (EST) Received: from smtpin13.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay08.hostedemail.com (Postfix) with ESMTP id 1FBE21401A4 for ; Mon, 19 Dec 2022 03:18:48 +0000 (UTC) X-FDA: 80257598736.13.5A5024C Received: from mail-il1-f198.google.com (mail-il1-f198.google.com [209.85.166.198]) by imf23.hostedemail.com (Postfix) with ESMTP id 966AC140003 for ; Mon, 19 Dec 2022 03:18:46 +0000 (UTC) Authentication-Results: imf23.hostedemail.com; dkim=none; dmarc=fail reason="SPF not aligned (relaxed), No valid DKIM" header.from=appspotmail.com (policy=none); spf=pass (imf23.hostedemail.com: domain of 3FdifYwkbAGgYefQGRRKXGVVOJ.MUUMRKaYKXIUTZKTZ.IUS@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com designates 209.85.166.198 as permitted sender) smtp.mailfrom=3FdifYwkbAGgYefQGRRKXGVVOJ.MUUMRKaYKXIUTZKTZ.IUS@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1671419926; a=rsa-sha256; cv=none; b=dLa8Nu7Usx0Nyqekh/S6Y/5GyZ0MsuP3RHZP/Yb9cNO36DdWkoQpecViU8rENgMQqf3DL+ 7BP+BlgZ/UhtvnQpdavb/FcZPkrfmzpXyF9195lrg8uXhC72CEC8EyXfUuYC7J9z20ZPUO LRJRwKawnS/v2RvdMMGjaQUj7kmeLn0= ARC-Authentication-Results: i=1; imf23.hostedemail.com; dkim=none; dmarc=fail reason="SPF not aligned (relaxed), No valid DKIM" header.from=appspotmail.com (policy=none); spf=pass (imf23.hostedemail.com: domain of 3FdifYwkbAGgYefQGRRKXGVVOJ.MUUMRKaYKXIUTZKTZ.IUS@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com designates 209.85.166.198 as permitted sender) smtp.mailfrom=3FdifYwkbAGgYefQGRRKXGVVOJ.MUUMRKaYKXIUTZKTZ.IUS@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1671419926; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type:content-transfer-encoding:in-reply-to: references; bh=Mkk0r7s32VnhsK8f0b281jDggdvjHhxrJJu5EjZFaaI=; b=J17vT6G9g36mYmKxT6JDJfYXoPwQ4x2plPt+QdrpS5LKEB6JAo/ljAzG3fysKXU9zzBOwk HxYx0qkDxjboDv1eCJ9rpcmsskR0er/b9Az3t7Ifn7XuQzXhryby0QFU7ygZyjLMezG4pz 6vtK2tTZOecK7B4M/m7T26NSMcZ2Zg8= Received: by mail-il1-f198.google.com with SMTP id l16-20020a056e02067000b0030325bbd570so5900913ilt.0 for ; Sun, 18 Dec 2022 19:18:46 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=to:from:subject:message-id:date:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=Mkk0r7s32VnhsK8f0b281jDggdvjHhxrJJu5EjZFaaI=; b=0zLiPmeaJQBTcEwQ7TtOjiZ1pb6X7oPAsPBDke0IsGM9O2FUIOOr71S1klE++4rW4C H/447DsEjD+OIz6I0aWwxiNXMtLSDQOPR8zo1bYHqQjprt3DZdCAvXEcucwLZ+CYhZHZ LS5AqAV2Ut150tOUoijMaNVv5WZSp+AjlsYx+V/J6N7T9TruNyP66s6emThqQuc6OZzb /LQRYXMQSga1yz4oNkkv1wSt9XUIWg5uTN4jsR/cU+mSPnQVh5H+YP+LT8uPU9IrOiAq m9p64QQ/BGhpkDwRdLcBvxKCLsq0/3N/BDYRCgQWfjzx2thQZcNvbTtGdb8X2wJ9qaBj MGzA== X-Gm-Message-State: ANoB5pl0gUhixyOMja7h5/L9UsedE/LxV2HMAmnM3FpUlR3u+KKWQfi5 obp04PLYSzoJrEK99Ipn6ROHmFOjDPylhx2iaB5GifOjUTF8 X-Google-Smtp-Source: AA0mqf7ZkE66DByY7xjoi4uDMrkpRbI1CLWhgl8v03Eheq8xW2Te9AsMx59qwnOdHBTZoCfMK3QmnRN6Yl6mll/TIANYucK55oWX MIME-Version: 1.0 X-Received: by 2002:a6b:fd0e:0:b0:6df:5e6c:f5c7 with SMTP id c14-20020a6bfd0e000000b006df5e6cf5c7mr27082566ioi.207.1671419925866; Sun, 18 Dec 2022 19:18:45 -0800 (PST) Date: Sun, 18 Dec 2022 19:18:45 -0800 X-Google-Appengine-App-Id: s~syzkaller X-Google-Appengine-App-Id-Alias: syzkaller Message-ID: <000000000000f3aeec05f025c6b8@google.com> Subject: [syzbot] BUG: unable to handle kernel NULL pointer dereference in unlock_page (2) From: syzbot To: akpm@linux-foundation.org, linux-kernel@vger.kernel.org, linux-mm@kvack.org, syzkaller-bugs@googlegroups.com Content-Type: text/plain; charset="UTF-8" X-Rspam-User: X-Rspamd-Server: rspam03 X-Rspamd-Queue-Id: 966AC140003 X-Stat-Signature: udukpfs6oryg749ootqqb71mtwb5juax X-HE-Tag: 1671419926-912196 X-HE-Meta: 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 BHpJsjCu 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 X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: Hello, syzbot found the following issue on: HEAD commit: a5541c0811a0 Merge branch 'for-next/core' into for-kernelci git tree: git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci console output: https://syzkaller.appspot.com/x/log.txt?x=10d2ebe0480000 kernel config: https://syzkaller.appspot.com/x/.config?x=cbd4e584773e9397 dashboard link: https://syzkaller.appspot.com/bug?extid=9d014e6e0df70d97c103 compiler: Debian clang version 13.0.1-++20220126092033+75e33f71c2da-1~exp1~20220126212112.63, GNU ld (GNU Binutils for Debian) 2.35.2 userspace arch: arm64 syz repro: https://syzkaller.appspot.com/x/repro.syz?x=107f999d880000 C reproducer: https://syzkaller.appspot.com/x/repro.c?x=170205af880000 Downloadable assets: disk image: https://storage.googleapis.com/syzbot-assets/4b7702208fb9/disk-a5541c08.raw.xz vmlinux: https://storage.googleapis.com/syzbot-assets/9ec0153ec051/vmlinux-a5541c08.xz kernel image: https://storage.googleapis.com/syzbot-assets/6f8725ad290a/Image-a5541c08.gz.xz mounted in repro: https://storage.googleapis.com/syzbot-assets/327f2cb22964/mount_0.gz IMPORTANT: if you fix the issue, please add the following tag to the commit: Reported-by: syzbot+9d014e6e0df70d97c103@syzkaller.appspotmail.com ksys_pread64 fs/read_write.c:665 [inline] __do_sys_pread64 fs/read_write.c:675 [inline] __se_sys_pread64 fs/read_write.c:672 [inline] __arm64_sys_pread64+0xbc/0x11c fs/read_write.c:672 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall arch/arm64/kernel/syscall.c:52 [inline] el0_svc_common+0x138/0x220 arch/arm64/kernel/syscall.c:142 do_el0_svc+0x48/0x140 arch/arm64/kernel/syscall.c:197 el0_svc+0x58/0x150 arch/arm64/kernel/entry-common.c:637 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:584 Unable to handle kernel NULL pointer dereference at virtual address 0000000000000008 Mem abort info: ESR = 0x0000000096000006 EC = 0x25: DABT (current EL), IL = 32 bits SET = 0, FnV = 0 EA = 0, S1PTW = 0 FSC = 0x06: level 2 translation fault Data abort info: ISV = 0, ISS = 0x00000006 CM = 0, WnR = 0 user pgtable: 4k pages, 48-bit VAs, pgdp=000000010adf6000 [0000000000000008] pgd=0800000106a37003, p4d=0800000106a37003, pud=0800000106a36003, pmd=0000000000000000 Internal error: Oops: 0000000096000006 [#1] PREEMPT SMP Modules linked in: CPU: 1 PID: 3072 Comm: syz-executor288 Not tainted 6.1.0-rc8-syzkaller-33330-ga5541c0811a0 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : _compound_head include/linux/page-flags.h:253 [inline] pc : unlock_page+0x18/0xb8 mm/folio-compat.c:20 lr : unlock_page+0x18/0xb8 mm/folio-compat.c:19 sp : ffff80000ff1b910 x29: ffff80000ff1b910 x28: 0000000000000007 x27: fffffc000330a480 x26: 00000000ffffffff x25: 0000000000000000 x24: 0000000000000000 x23: 0000000000000001 x22: 0000000000000000 x21: 00000000fffffff4 x20: ffff0000c95b4880 x19: 0000000000000000 x18: 0000000000000073 x17: 6e69676e45206574 x16: ffff80000dbe6158 x15: ffff0000c4423480 x14: 0000000000000000 x13: 00000000ffffffff x12: ffff0000c4423480 x11: ff808000083f6804 x10: 0000000000000000 x9 : ffff8000083f6804 x8 : ffff0000c4423480 x7 : ffff80000c091ebc x6 : 0000000000000000 x5 : 0000000000000080 x4 : 0000000000000001 x3 : 0000000000000000 x2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000000 Call trace: unlock_page+0x18/0xb8 mm/folio-compat.c:19 ni_readpage_cmpr+0x328/0x7cc fs/ntfs3/frecord.c:2139 ntfs_read_folio+0xd8/0x128 fs/ntfs3/inode.c:697 filemap_read_folio+0xc4/0x468 mm/filemap.c:2407 filemap_create_folio+0xc0/0x1b4 mm/filemap.c:2536 filemap_get_pages+0x388/0x598 mm/filemap.c:2588 filemap_read+0x14c/0x6f4 mm/filemap.c:2675 generic_file_read_iter+0x6c/0x25c mm/filemap.c:2821 ntfs_file_read_iter+0xe4/0x118 fs/ntfs3/file.c:853 call_read_iter include/linux/fs.h:2193 [inline] new_sync_read fs/read_write.c:389 [inline] vfs_read+0x2d4/0x448 fs/read_write.c:470 ksys_pread64 fs/read_write.c:665 [inline] __do_sys_pread64 fs/read_write.c:675 [inline] __se_sys_pread64 fs/read_write.c:672 [inline] __arm64_sys_pread64+0xbc/0x11c fs/read_write.c:672 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall arch/arm64/kernel/syscall.c:52 [inline] el0_svc_common+0x138/0x220 arch/arm64/kernel/syscall.c:142 do_el0_svc+0x48/0x140 arch/arm64/kernel/syscall.c:197 el0_svc+0x58/0x150 arch/arm64/kernel/entry-common.c:637 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:584 Code: a9014ff4 910003fd aa0003f3 97fac089 (f9400674) ---[ end trace 0000000000000000 ]--- ---------------- Code disassembly (best guess): 0: a9014ff4 stp x20, x19, [sp, #16] 4: 910003fd mov x29, sp 8: aa0003f3 mov x19, x0 c: 97fac089 bl 0xffffffffffeb0230 * 10: f9400674 ldr x20, [x19, #8] <-- trapping instruction --- This report is generated by a bot. It may contain errors. See https://goo.gl/tpsmEJ for more information about syzbot. syzbot engineers can be reached at syzkaller@googlegroups.com. syzbot will keep track of this issue. See: https://goo.gl/tpsmEJ#status for how to communicate with syzbot. syzbot can test patches for this issue, for details see: https://goo.gl/tpsmEJ#testing-patches