From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id 41FB0D43352 for ; Thu, 7 Nov 2024 12:11:26 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id B70286B0099; Thu, 7 Nov 2024 07:11:25 -0500 (EST) Received: by kanga.kvack.org (Postfix, from userid 40) id B20186B009B; Thu, 7 Nov 2024 07:11:25 -0500 (EST) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 9E7BE6B009D; Thu, 7 Nov 2024 07:11:25 -0500 (EST) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0017.hostedemail.com [216.40.44.17]) by kanga.kvack.org (Postfix) with ESMTP id 7FC1D6B0099 for ; Thu, 7 Nov 2024 07:11:25 -0500 (EST) Received: from smtpin28.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay10.hostedemail.com (Postfix) with ESMTP id F165AC068F for ; Thu, 7 Nov 2024 12:11:24 +0000 (UTC) X-FDA: 82759183752.28.8E6F997 Received: from mail-il1-f200.google.com (mail-il1-f200.google.com [209.85.166.200]) by imf08.hostedemail.com (Postfix) with ESMTP id 58995160018 for ; Thu, 7 Nov 2024 12:10:59 +0000 (UTC) Authentication-Results: imf08.hostedemail.com; dkim=none; dmarc=fail reason="SPF not aligned (relaxed), No valid DKIM" header.from=appspotmail.com (policy=none); spf=pass (imf08.hostedemail.com: domain of 3aa4sZwkbALgqwxiYjjcpYnngb.emmejcsqcpamlrclr.amk@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com designates 209.85.166.200 as permitted sender) smtp.mailfrom=3aa4sZwkbALgqwxiYjjcpYnngb.emmejcsqcpamlrclr.amk@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1730981398; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type:content-transfer-encoding:in-reply-to: references; bh=SAc+gN3U1lZ4dETJ1tEfH3oqqMme/6EXP07BmLXVE/k=; b=Rg64mF+2uo4iGzsOgyG4aLI4ZGug0/4y+Uq+y1USr7zu6/OCMrKAl8SHVvY13iANTNq2gC 5RQJ2na4hILvDO7GI6q1VzCERtO+DO1W596HuwtWlXYZ/HffnxLXKmuyN/1xyH4kKSXWDD qzmPW5XXZLiV5RCBfG1mwtySCYqRa44= ARC-Authentication-Results: i=1; imf08.hostedemail.com; dkim=none; dmarc=fail reason="SPF not aligned (relaxed), No valid DKIM" header.from=appspotmail.com (policy=none); spf=pass (imf08.hostedemail.com: domain of 3aa4sZwkbALgqwxiYjjcpYnngb.emmejcsqcpamlrclr.amk@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com designates 209.85.166.200 as permitted sender) smtp.mailfrom=3aa4sZwkbALgqwxiYjjcpYnngb.emmejcsqcpamlrclr.amk@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1730981398; a=rsa-sha256; cv=none; b=tzzGqJlxr9sHs4gIACastOUBF1UCuHVEal0wdg4sn/Y0rFoeiP7/rMwH1nWh1yo6ilgmmZ F5WgRZOtGA1BHLKN9T1SN71tlOFSmCZKz5pU/jet0pmsX/FvR9s5E7u3dr6kOGrxctmfHI fAi1n6K+QM9gUw97igiGptU2I713IAU= Received: by mail-il1-f200.google.com with SMTP id e9e14a558f8ab-3a6ca616500so9496385ab.2 for ; Thu, 07 Nov 2024 04:11:22 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1730981482; x=1731586282; h=to:from:subject:message-id:date:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=SAc+gN3U1lZ4dETJ1tEfH3oqqMme/6EXP07BmLXVE/k=; b=ODGZSLUsTUh1oQ9f+wmbTl/nGrf6uI91A3HLSGrz5xbui5odHNBq7Y8Nhv+ABOEHuI WHVSgS9omg+hMOWaxc0zpYj6Y+ScBb8jbWiV0YOyEw5asolDnaCCvMA4D+4seOgxwvBS xixiN7SeuxphwQji9lWP3FfruCXkDplHW9g50EzY7HdcW3Cmwg2/pm5apKPMe+sagZQj Mwr/gAqzDg4bSg6lEHCqgz66wkTRarmI8eOErzlJO4WGy2mzaJtzQQO9eACyUjFSH0wl lsL6yjqUkM2+J/ny6W5vpMsq3ZaBevGgJfyDmNP6BQM/4n/yq8fog7dDwZYeRtTmKgxg bgaQ== X-Forwarded-Encrypted: i=1; AJvYcCW7V1DmHjdfen1vTIyKA4079mi9O1RLQUx6yHZ1EZqNeK+qHdONCdHpFEYX5YNkmk40gW+gv69vZg==@kvack.org X-Gm-Message-State: AOJu0Yzi3YanwVh6nBG0QzXZ/+S6UvyT5HxKejlf4CMyqFnooGgHHs5P 0tjkH8BWVp5U16EtUaNC7xpKYLDYLRkoQMVfmvOljoZ/+9KZZG5Btfmr3p/pODiDKYhHWgZpDva u65VXLN0IWaTK9gdU1JA8ghcjAGiANknZJLgjwBzv+unnmXR3L7f7U9c= X-Google-Smtp-Source: AGHT+IGZVevAss48PSTHktohcmL7sCGUNN6VbrTZuUuWPMWwUi3mZvrDrA7itJWaqd/rNeHQxuzoUc4nlGJ1ikbOmLFP9ME5QXdJ MIME-Version: 1.0 X-Received: by 2002:a05:6e02:11a7:b0:3a6:aade:e30f with SMTP id e9e14a558f8ab-3a6aadee5ffmr194760835ab.3.1730981481900; Thu, 07 Nov 2024 04:11:21 -0800 (PST) Date: Thu, 07 Nov 2024 04:11:21 -0800 X-Google-Appengine-App-Id: s~syzkaller X-Google-Appengine-App-Id-Alias: syzkaller Message-ID: <672cae69.050a0220.2619e7.014f.GAE@google.com> Subject: [syzbot] [mm?] BUG: unable to handle kernel paging request in schedule From: syzbot To: akpm@linux-foundation.org, linux-kernel@vger.kernel.org, linux-mm@kvack.org, syzkaller-bugs@googlegroups.com Content-Type: text/plain; charset="UTF-8" X-Rspam-User: X-Rspamd-Server: rspam03 X-Rspamd-Queue-Id: 58995160018 X-Stat-Signature: kncwj3iq3amexwdw6tqd113kkhf5okb9 X-HE-Tag: 1730981459-243702 X-HE-Meta: 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 uvt+D/bH 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 +1YzqZQG zSU9BwfjB7cIirPsqvrJlzJPycf2G3Phj8l9/kkgq6/ViQyLfelPGDtaJwxJWc3s8WPnm9lISitK5UFFwDSoCM/R5x1dAvTNeqzv5+BYI9SiJWkX+C9JQOp5QK8aPTTJHbih7PHIUQSQ86zChmc4+QNar8vXAkbSFgMkEwfhhqgS8Panv54JQRR3z2Foon6EXUJtQIeLd6WIKBWz+Gh6kRF7PRPBj5sj9zKUgriwptSAIh2offiAv+XlJdvdzglhauxMxxrUWX0EFcDo9AH1+By7QQE6pjxSpPbllnIRioYk3EvoncLvvuI7z69BXVFCUZlaTbANi7UMqg0KrhI1x9myFWdIiPGmITFaYU3yb8qw/3hDggZLSA== X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: List-Subscribe: List-Unsubscribe: Hello, syzbot found the following issue on: HEAD commit: 3e5e6c9900c3 Merge tag 'nfsd-6.12-3' of git://git.kernel.o.. git tree: upstream console output: https://syzkaller.appspot.com/x/log.txt?x=11a96b40580000 kernel config: https://syzkaller.appspot.com/x/.config?x=672325e7ab17fdf7 dashboard link: https://syzkaller.appspot.com/bug?extid=acb4e7a57eadb542630f compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 Unfortunately, I don't have any reproducer for this issue yet. Downloadable assets: disk image (non-bootable): https://storage.googleapis.com/syzbot-assets/7feb34a89c2a/non_bootable_disk-3e5e6c99.raw.xz vmlinux: https://storage.googleapis.com/syzbot-assets/7df898d050b2/vmlinux-3e5e6c99.xz kernel image: https://storage.googleapis.com/syzbot-assets/630f9b55fdbc/bzImage-3e5e6c99.xz IMPORTANT: if you fix the issue, please add the following tag to the commit: Reported-by: syzbot+acb4e7a57eadb542630f@syzkaller.appspotmail.com loop0: detected capacity change from 0 to 4096 ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). BUG: unable to handle page fault for address: ffffed1103eab90f #PF: supervisor read access in kernel mode #PF: error_code(0x0000) - not-present page PGD 5ffcd067 P4D 5ffcd067 PUD 0 Oops: Oops: 0000 [#1] PREEMPT SMP KASAN NOPTI CPU: 0 UID: 16895 PID: 5323 Comm: syz.0.0 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0 Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 RIP: 0010:constant_test_bit arch/x86/include/asm/bitops.h:206 [inline] RIP: 0010:arch_test_bit arch/x86/include/asm/bitops.h:238 [inline] RIP: 0010:tif_need_resched include/linux/thread_info.h:184 [inline] RIP: 0010:need_resched include/linux/sched.h:2108 [inline] RIP: 0010:__schedule_loop kernel/sched/core.c:6769 [inline] RIP: 0010:schedule+0x155/0x320 kernel/sched/core.c:6782 Code: c1 eb 03 eb 0a 48 f7 45 00 08 00 00 00 74 2c bf 01 00 00 00 e8 ec e9 93 f5 31 ff e8 d5 b2 ff ff bf 01 00 00 00 e8 7b eb 93 f5 <42> 80 3c 23 00 74 d4 48 89 ef e8 bc 54 2f f6 eb ca 4c 8d 75 2c 4d RSP: 0018:ffffc90001797150 EFLAGS: 00010297 RAX: 0000000080000001 RBX: 1ffff11003eab910 RCX: 0000000000000001 RDX: 0000000000000001 RSI: 0000000000000004 RDI: 0000000000000001 RBP: ffff88801f55c880 R08: ffff888000ee5f03 R09: 1ffff110001dcbe0 R10: dffffc0000000000 R11: ffffed10001dcbe1 R12: dffffc00ffffffff R13: 0000000000000000 R14: ffffffff8bcf4350 R15: ffff88801f55daf8 FS: 00007fcccefc56c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: ffffed1103eab90f CR3: 000000003e6da000 CR4: 0000000000352ef0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: io_schedule+0x8d/0x110 kernel/sched/core.c:7574 folio_wait_bit_common+0x882/0x12b0 mm/filemap.c:1309 __filemap_get_folio+0xaf/0xbd0 mm/filemap.c:1900 filemap_lock_folio include/linux/pagemap.h:788 [inline] collapse_file mm/khugepaged.c:1895 [inline] hpage_collapse_scan_file+0x1d07/0x6880 mm/khugepaged.c:2317 madvise_collapse+0x602/0xd30 mm/khugepaged.c:2759 madvise_vma_behavior mm/madvise.c:1100 [inline] madvise_walk_vmas mm/madvise.c:1274 [inline] do_madvise+0xce7/0x4700 mm/madvise.c:1461 __do_sys_madvise mm/madvise.c:1477 [inline] __se_sys_madvise mm/madvise.c:1475 [inline] __x64_sys_madvise+0xa6/0xc0 mm/madvise.c:1475 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x77/0x7f RIP: 0033:0x7fccce17e719 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fcccefc5038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c RAX: ffffffffffffffda RBX: 00007fccce335f80 RCX: 00007fccce17e719 RDX: 0000000000000019 RSI: 0000000000800000 RDI: 00000000207fe000 RBP: 00007fccce1f132e R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 0000000000000000 R14: 00007fccce335f80 R15: 00007ffedc3723c8 Modules linked in: CR2: ffffed1103eab90f ---[ end trace 0000000000000000 ]--- RIP: 0010:constant_test_bit arch/x86/include/asm/bitops.h:206 [inline] RIP: 0010:arch_test_bit arch/x86/include/asm/bitops.h:238 [inline] RIP: 0010:tif_need_resched include/linux/thread_info.h:184 [inline] RIP: 0010:need_resched include/linux/sched.h:2108 [inline] RIP: 0010:__schedule_loop kernel/sched/core.c:6769 [inline] RIP: 0010:schedule+0x155/0x320 kernel/sched/core.c:6782 Code: c1 eb 03 eb 0a 48 f7 45 00 08 00 00 00 74 2c bf 01 00 00 00 e8 ec e9 93 f5 31 ff e8 d5 b2 ff ff bf 01 00 00 00 e8 7b eb 93 f5 <42> 80 3c 23 00 74 d4 48 89 ef e8 bc 54 2f f6 eb ca 4c 8d 75 2c 4d RSP: 0018:ffffc90001797150 EFLAGS: 00010297 RAX: 0000000080000001 RBX: 1ffff11003eab910 RCX: 0000000000000001 RDX: 0000000000000001 RSI: 0000000000000004 RDI: 0000000000000001 RBP: ffff88801f55c880 R08: ffff888000ee5f03 R09: 1ffff110001dcbe0 R10: dffffc0000000000 R11: ffffed10001dcbe1 R12: dffffc00ffffffff R13: 0000000000000000 R14: ffffffff8bcf4350 R15: ffff88801f55daf8 FS: 00007fcccefc56c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: ffffed1103eab90f CR3: 000000003e6da000 CR4: 0000000000352ef0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 ---------------- Code disassembly (best guess): 0: c1 eb 03 shr $0x3,%ebx 3: eb 0a jmp 0xf 5: 48 f7 45 00 08 00 00 testq $0x8,0x0(%rbp) c: 00 d: 74 2c je 0x3b f: bf 01 00 00 00 mov $0x1,%edi 14: e8 ec e9 93 f5 call 0xf593ea05 19: 31 ff xor %edi,%edi 1b: e8 d5 b2 ff ff call 0xffffb2f5 20: bf 01 00 00 00 mov $0x1,%edi 25: e8 7b eb 93 f5 call 0xf593eba5 * 2a: 42 80 3c 23 00 cmpb $0x0,(%rbx,%r12,1) <-- trapping instruction 2f: 74 d4 je 0x5 31: 48 89 ef mov %rbp,%rdi 34: e8 bc 54 2f f6 call 0xf62f54f5 39: eb ca jmp 0x5 3b: 4c 8d 75 2c lea 0x2c(%rbp),%r14 3f: 4d rex.WRB --- This report is generated by a bot. It may contain errors. See https://goo.gl/tpsmEJ for more information about syzbot. syzbot engineers can be reached at syzkaller@googlegroups.com. syzbot will keep track of this issue. See: https://goo.gl/tpsmEJ#status for how to communicate with syzbot. If the report is already addressed, let syzbot know by replying with: #syz fix: exact-commit-title If you want to overwrite report's subsystems, reply with: #syz set subsystems: new-subsystem (See the list of subsystem names on the web dashboard) If the report is a duplicate of another one, reply with: #syz dup: exact-subject-of-another-report If you want to undo deduplication, reply with: #syz undup