From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id 537A2D3B7E7 for ; Mon, 25 Nov 2024 07:54:12 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id 812246B0082; Mon, 25 Nov 2024 02:54:11 -0500 (EST) Received: by kanga.kvack.org (Postfix, from userid 40) id 79A646B0083; Mon, 25 Nov 2024 02:54:11 -0500 (EST) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 613EE6B0085; Mon, 25 Nov 2024 02:54:11 -0500 (EST) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0013.hostedemail.com [216.40.44.13]) by kanga.kvack.org (Postfix) with ESMTP id 3A8106B0082 for ; Mon, 25 Nov 2024 02:54:11 -0500 (EST) Received: from smtpin18.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay09.hostedemail.com (Postfix) with ESMTP id 93D7A80484 for ; Mon, 25 Nov 2024 07:54:10 +0000 (UTC) X-FDA: 82823854218.18.D23C5A3 Received: from mail-ed1-f41.google.com (mail-ed1-f41.google.com [209.85.208.41]) by imf27.hostedemail.com (Postfix) with ESMTP id 850E840005 for ; Mon, 25 Nov 2024 07:54:03 +0000 (UTC) Authentication-Results: imf27.hostedemail.com; dkim=pass header.d=gmail.com header.s=20230601 header.b=NjnH6B7Q; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (imf27.hostedemail.com: domain of surajsonawane0215@gmail.com designates 209.85.208.41 as permitted sender) smtp.mailfrom=surajsonawane0215@gmail.com ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1732521246; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type:content-transfer-encoding: in-reply-to:in-reply-to:references:references:dkim-signature; bh=9gLzOuV0gwyD3NLThhPXWiqu1pqHsgae7wwu9mj4qOw=; b=Sc3Y89s+2SlF4jkFXnNH7EomfMQuucl+7B6F01wsrGtqoDY7TWqLWB7cV16QCgtu0fvPgV waURPi9dDMJlc0A6xZvsC+wbCSYxJZUz49DPgMQay4zLGMaLSp81RfUbrarl5483Ef6Rfl LwVbVDj5vOtTZaqBl5bkzQsp3mnKaIY= ARC-Authentication-Results: i=1; imf27.hostedemail.com; dkim=pass header.d=gmail.com header.s=20230601 header.b=NjnH6B7Q; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (imf27.hostedemail.com: domain of surajsonawane0215@gmail.com designates 209.85.208.41 as permitted sender) smtp.mailfrom=surajsonawane0215@gmail.com ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1732521246; a=rsa-sha256; cv=none; b=OjnzwNMlxnd/Y10Yci6KrV7SbbbpTxA0+/+GsWS3qGXOfvkjara2jCaaso8H7j36OTADoL tKh6RDtTfWZkSZ2oL2QVHAMfrn0yCm5G7E0LztJSJ3iBsMwziAkEDlj0DjuCCA7oimjL6k c/ZKiCTMJpiLokGmMMi7esg+XElLLys= Received: by mail-ed1-f41.google.com with SMTP id 4fb4d7f45d1cf-5cfbeed072dso5229679a12.3 for ; Sun, 24 Nov 2024 23:54:08 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1732521247; x=1733126047; darn=kvack.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=9gLzOuV0gwyD3NLThhPXWiqu1pqHsgae7wwu9mj4qOw=; b=NjnH6B7QzePqal56g8kBXGVFwNYq1hCkez+JZLq5MF079r3UX8tA2r1atW7BV1r62k 4yEmUot3Hg5HcOsrvjr7OT1TVwAUEasVYsbdEcMez1TI3ucRQjhilJpLUZiCXbFFScnu kYXzqiM6sSwv0qArP3/k4vqmvgYIeWe/Ke7yhaKH1+zG0BaLhxyE3GJ6HCPlgCyaJxFU KW82lSL5zCs3/VT4hpV8JhdUQM1jAhBYRgzHCqbpVQ66uj0et7Qv1kXIhx1x+fHzHP1r GdmlQI4b8QHxvF++Fqa+2bvKJauOzzvd7fSDAiGI3uUNu5ekgqaofqcYW+C4SylVlxgv Ff5w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1732521247; x=1733126047; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=9gLzOuV0gwyD3NLThhPXWiqu1pqHsgae7wwu9mj4qOw=; b=LMTwg7eEMnZYrpqHo8027JEllVjd+j9A4k1Wj2Ih8g+movl/xsnhRfJZQyFRDv+uYu xu8ppnPtMnfXIZTgny5+Y+4jhfG8NhJalCJST5efZJDfZtEK/p1Vk37FGxkCt8vfjRwI uiIyEPKL6FdQwtRr1pUyNYAPzg14WDV7QJQ0H+LqHVhcsiXAx1H+8Df2O6PB0fFf7Oo5 iMeIKBDw+Ocz9/yYFMBw216QeOU+SgHqtooySPe4NCs4E0aSEURf2xX3sWh6PjMSVMCs HchGsZHDZuyrvz/Uf9XJzAqJcq3lUZql2TDz0Wh2SnRSdS1JWr2fnfBPx3Vd6fi327QQ SBNg== X-Forwarded-Encrypted: i=1; AJvYcCX8b6JOK0BvIga7aHpwUtildCG/wTrya7XQjD6lkWsRM+pxqV2Uk2H4DdEnAtfph8hx/CdYOdB6Aw==@kvack.org X-Gm-Message-State: AOJu0YwfcF5o3o3px0q1tJfWkHSIVtf4i1HzOte5f1PyD/A+2U1tDKuc h6LwVXSUCx3NAdcmmZJh0slVoXKNErXhjSsKf+uD+29SxNhAC01AMg02lJQfCHMGPSTKytVP/3J BVgl6nEZpD++OAPPHh7rZxaovfeI= X-Gm-Gg: ASbGncsvCCq+OLixjuy83gl4YwrBBJrbmaXbR9hCSXEdxzG4d4IJE8SdmYJLOWUPEMw lOpGHwdFgW17Uo0HmSDOm7XidDCjac5g= X-Google-Smtp-Source: AGHT+IEmMJ+qgoTX7kHdW7fVTt+TN27nSz+KOkb+Ss9ktxOrzYiZ30NBD0irXMW2gRhteaZDFDx0NcMK3NRgyKfOetE= X-Received: by 2002:a05:6402:1e8a:b0:5cf:e218:a4b2 with SMTP id 4fb4d7f45d1cf-5d02079aa9fmr11243748a12.27.1732521246882; Sun, 24 Nov 2024 23:54:06 -0800 (PST) MIME-Version: 1.0 References: <674184c9.050a0220.1cc393.0001.GAE@google.com> In-Reply-To: <674184c9.050a0220.1cc393.0001.GAE@google.com> From: Suraj Sonawane Date: Mon, 25 Nov 2024 13:23:28 +0530 Message-ID: Subject: Re: [syzbot] [mm?] kernel BUG in const_folio_flags (2) To: syzbot Cc: akpm@linux-foundation.org, linux-kernel@vger.kernel.org, linux-mm@kvack.org, syzkaller-bugs@googlegroups.com Content-Type: multipart/mixed; boundary="0000000000007cb8cc0627b809cc" X-Rspamd-Server: rspam04 X-Rspamd-Queue-Id: 850E840005 X-Stat-Signature: ztaaqcw1h1wgcojpa7qiy6fsebbo6hie X-Rspam-User: X-HE-Tag: 1732521243-526055 X-HE-Meta: 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 HMqb9hHw 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 UsOWHwih 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 X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: List-Subscribe: List-Unsubscribe: --0000000000007cb8cc0627b809cc Content-Type: multipart/alternative; boundary="0000000000007cb8cb0627b809ca" --0000000000007cb8cb0627b809ca Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable #syz test On Sat, Nov 23, 2024 at 1:01=E2=80=AFPM syzbot < syzbot+9f9a7f73fb079b2387a6@syzkaller.appspotmail.com> wrote: > Hello, > > syzbot found the following issue on: > > HEAD commit: 9fb2cfa4635a Merge tag 'pull-ufs' of git://git.kernel.org= / > .. > git tree: upstream > console output: https://syzkaller.appspot.com/x/log.txt?x=3D1004293058000= 0 > kernel config: https://syzkaller.appspot.com/x/.config?x=3Dc4515f1b6a4e5= 0b7 > dashboard link: > https://syzkaller.appspot.com/bug?extid=3D9f9a7f73fb079b2387a6 > compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for > Debian) 2.40 > syz repro: https://syzkaller.appspot.com/x/repro.syz?x=3D105ff2e8580= 000 > > Downloadable assets: > disk image: > https://storage.googleapis.com/syzbot-assets/7c0c61a15f60/disk-9fb2cfa4.r= aw.xz > vmlinux: > https://storage.googleapis.com/syzbot-assets/3363d84eeb74/vmlinux-9fb2cfa= 4.xz > kernel image: > https://storage.googleapis.com/syzbot-assets/2b1a270af550/bzImage-9fb2cfa= 4.xz > > IMPORTANT: if you fix the issue, please add the following tag to the > commit: > Reported-by: syzbot+9f9a7f73fb079b2387a6@syzkaller.appspotmail.com > > madvise_pageout_page_range mm/madvise.c:609 [inline] > madvise_pageout+0x326/0x820 mm/madvise.c:636 > madvise_vma_behavior+0x58c/0x19e0 mm/madvise.c:1045 > madvise_walk_vmas+0x1cf/0x2c0 mm/madvise.c:1274 > do_madvise+0x29d/0x700 mm/madvise.c:1461 > __do_sys_madvise mm/madvise.c:1477 [inline] > __se_sys_madvise mm/madvise.c:1475 [inline] > __x64_sys_madvise+0xa9/0x110 mm/madvise.c:1475 > do_syscall_x64 arch/x86/entry/common.c:52 [inline] > do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83 > ------------[ cut here ]------------ > kernel BUG at include/linux/page-flags.h:309! > Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI > CPU: 0 UID: 0 PID: 7269 Comm: syz.1.183 Not tainted > 6.12.0-syzkaller-00233-g9fb2cfa4635a #0 > Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS > Google 10/30/2024 > RIP: 0010:const_folio_flags.constprop.0+0x12e/0x150 > include/linux/page-flags.h:309 > Code: 86 cb ff e8 f4 86 cb ff 48 8d 45 ff 48 39 c3 0f 84 38 ff ff ff e8 e= 2 > 86 cb ff 48 c7 c6 00 19 58 8b 48 89 df e8 e3 4b 11 00 90 <0f> 0b e8 6b 0d > 2d 00 e9 f1 fe ff ff e8 61 0d 2d 00 eb a3 48 89 df > RSP: 0018:ffffc9000c55ee30 EFLAGS: 00010293 > RAX: 0000000000000000 RBX: ffffea0000496f80 RCX: ffffc9000c55ecd8 > RDX: ffff88805f401e00 RSI: ffffffff81c1362d RDI: ffff88805f402244 > RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff203a591 > R10: ffffffff901d2c8f R11: 0000000000000001 R12: 00000000000014df > R13: 0000000000000000 R14: dffffc0000000000 R15: 1ffff920018abdf4 > FS: 00007f08b31bc6c0(0000) GS:ffff8880b8600000(0000) > knlGS:0000000000000000 > CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 > CR2: 000000c0025ff000 CR3: 00000000341ce000 CR4: 00000000003526f0 > DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 > DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 > Call Trace: > > folio_test_locked include/linux/page-flags.h:509 [inline] > next_uptodate_folio+0xac/0x4b0 mm/filemap.c:3505 > filemap_map_pages+0x1c6/0x16a0 mm/filemap.c:3647 > do_fault_around mm/memory.c:5255 [inline] > do_read_fault mm/memory.c:5288 [inline] > do_fault mm/memory.c:5431 [inline] > do_pte_missing+0xdae/0x3e70 mm/memory.c:3965 > handle_pte_fault mm/memory.c:5766 [inline] > __handle_mm_fault+0x100a/0x2a10 mm/memory.c:5909 > handle_mm_fault+0x3fa/0xaa0 mm/memory.c:6077 > faultin_page mm/gup.c:1187 [inline] > __get_user_pages+0x8d9/0x3b50 mm/gup.c:1485 > __get_user_pages_locked mm/gup.c:1751 [inline] > get_dump_page+0xfb/0x220 mm/gup.c:2269 > dump_user_range+0x135/0x8c0 fs/coredump.c:943 > elf_core_dump+0x2766/0x3840 fs/binfmt_elf.c:2121 > do_coredump+0x2c42/0x4160 fs/coredump.c:758 > get_signal+0x237c/0x26d0 kernel/signal.c:2903 > arch_do_signal_or_restart+0x90/0x7e0 arch/x86/kernel/signal.c:337 > exit_to_user_mode_loop kernel/entry/common.c:111 [inline] > exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] > irqentry_exit_to_user_mode+0x13f/0x280 kernel/entry/common.c:231 > asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:623 > RIP: 0033:0x1000 > Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0= 0 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <00> 00 00 00 00 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > RSP: 002b:000000000000010c EFLAGS: 00010246 > RAX: 0000000000000000 RBX: 00007f08b41363b8 RCX: 00007f08b3f7e759 > RDX: ffffffffff600000 RSI: 0000000000000104 RDI: 8000000000000000 > RBP: 00007f08b3ff175e R08: 0000000100000000 R09: 0000000000000000 > R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 > R13: 0000000000000000 R14: 00007f08b41363b8 R15: 00007fff7656a008 > > Modules linked in: > ---[ end trace 0000000000000000 ]--- > RIP: 0010:const_folio_flags.constprop.0+0x12e/0x150 > include/linux/page-flags.h:309 > Code: 86 cb ff e8 f4 86 cb ff 48 8d 45 ff 48 39 c3 0f 84 38 ff ff ff e8 e= 2 > 86 cb ff 48 c7 c6 00 19 58 8b 48 89 df e8 e3 4b 11 00 90 <0f> 0b e8 6b 0d > 2d 00 e9 f1 fe ff ff e8 61 0d 2d 00 eb a3 48 89 df > RSP: 0018:ffffc9000c55ee30 EFLAGS: 00010293 > RAX: 0000000000000000 RBX: ffffea0000496f80 RCX: ffffc9000c55ecd8 > RDX: ffff88805f401e00 RSI: ffffffff81c1362d RDI: ffff88805f402244 > RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff203a591 > R10: ffffffff901d2c8f R11: 0000000000000001 R12: 00000000000014df > R13: 0000000000000000 R14: dffffc0000000000 R15: 1ffff920018abdf4 > FS: 00007f08b31bc6c0(0000) GS:ffff8880b8700000(0000) > knlGS:0000000000000000 > CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 > CR2: 00007fff76568ff8 CR3: 00000000341ce000 CR4: 00000000003526f0 > DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 > DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 > > > --- > This report is generated by a bot. It may contain errors. > See https://goo.gl/tpsmEJ for more information about syzbot. > syzbot engineers can be reached at syzkaller@googlegroups.com. > > syzbot will keep track of this issue. See: > https://goo.gl/tpsmEJ#status for how to communicate with syzbot. > > If the report is already addressed, let syzbot know by replying with: > #syz fix: exact-commit-title > > If you want syzbot to run the reproducer, reply with: > #syz test: git://repo/address.git branch-or-commit-hash > If you attach or paste a git patch, syzbot will apply it before testing. > > If you want to overwrite report's subsystems, reply with: > #syz set subsystems: new-subsystem > (See the list of subsystem names on the web dashboard) > > If the report is a duplicate of another one, reply with: > #syz dup: exact-subject-of-another-report > > If you want to undo deduplication, reply with: > #syz undup > > -- > You received this message because you are subscribed to the Google Groups > "syzkaller-bugs" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to syzkaller-bugs+unsubscribe@googlegroups.com. > To view this discussion visit > https://groups.google.com/d/msgid/syzkaller-bugs/674184c9.050a0220.1cc393= .0001.GAE%40google.com > . > --0000000000007cb8cb0627b809ca Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
#syz test

On Sat, Nov 23, 2024 at 1:01=E2=80=AFPM syzbo= t <syzbot+9f9a7f73fb079b2387a6@syzkaller.appspotmail.com> wrote:<= br>
Hello,

syzbot found the following issue on:

HEAD commit:=C2=A0 =C2=A0 9fb2cfa4635a Merge tag 'pull-ufs' of git:= //g= it.kernel.org/..
git tree:=C2=A0 =C2=A0 =C2=A0 =C2=A0upstream
console output: https://syzkaller.appspot.= com/x/log.txt?x=3D10042930580000
kernel config:=C2=A0 https://syzkaller= .appspot.com/x/.config?x=3Dc4515f1b6a4e50b7
dashboard link: https://syzkaller.apps= pot.com/bug?extid=3D9f9a7f73fb079b2387a6
compiler:=C2=A0 =C2=A0 =C2=A0 =C2=A0gcc (Debian 12.2.0-14) 12.2.0, GNU ld (= GNU Binutils for Debian) 2.40
syz repro:=C2=A0 =C2=A0 =C2=A0 https://s= yzkaller.appspot.com/x/repro.syz?x=3D105ff2e8580000

Downloadable assets:
disk image: https://st= orage.googleapis.com/syzbot-assets/7c0c61a15f60/disk-9fb2cfa4.raw.xz vmlinux: https://storag= e.googleapis.com/syzbot-assets/3363d84eeb74/vmlinux-9fb2cfa4.xz
kernel image: https://s= torage.googleapis.com/syzbot-assets/2b1a270af550/bzImage-9fb2cfa4.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit= :
Reported-by: syzbot+9f9a7f73fb079b2387a6@syzkaller.appspo= tmail.com

=C2=A0madvise_pageout_page_range mm/madvise.c:609 [inline]
=C2=A0madvise_pageout+0x326/0x820 mm/madvise.c:636
=C2=A0madvise_vma_behavior+0x58c/0x19e0 mm/madvise.c:1045
=C2=A0madvise_walk_vmas+0x1cf/0x2c0 mm/madvise.c:1274
=C2=A0do_madvise+0x29d/0x700 mm/madvise.c:1461
=C2=A0__do_sys_madvise mm/madvise.c:1477 [inline]
=C2=A0__se_sys_madvise mm/madvise.c:1475 [inline]
=C2=A0__x64_sys_madvise+0xa9/0x110 mm/madvise.c:1475
=C2=A0do_syscall_x64 arch/x86/entry/common.c:52 [inline]
=C2=A0do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
------------[ cut here ]------------
kernel BUG at include/linux/page-flags.h:309!
Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI
CPU: 0 UID: 0 PID: 7269 Comm: syz.1.183 Not tainted 6.12.0-syzkaller-00233-= g9fb2cfa4635a #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Goo= gle 10/30/2024
RIP: 0010:const_folio_flags.constprop.0+0x12e/0x150 include/linux/page-flag= s.h:309
Code: 86 cb ff e8 f4 86 cb ff 48 8d 45 ff 48 39 c3 0f 84 38 ff ff ff e8 e2 = 86 cb ff 48 c7 c6 00 19 58 8b 48 89 df e8 e3 4b 11 00 90 <0f> 0b e8 6= b 0d 2d 00 e9 f1 fe ff ff e8 61 0d 2d 00 eb a3 48 89 df
RSP: 0018:ffffc9000c55ee30 EFLAGS: 00010293
RAX: 0000000000000000 RBX: ffffea0000496f80 RCX: ffffc9000c55ecd8
RDX: ffff88805f401e00 RSI: ffffffff81c1362d RDI: ffff88805f402244
RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff203a591
R10: ffffffff901d2c8f R11: 0000000000000001 R12: 00000000000014df
R13: 0000000000000000 R14: dffffc0000000000 R15: 1ffff920018abdf4
FS:=C2=A0 00007f08b31bc6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000= 000000
CS:=C2=A0 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c0025ff000 CR3: 00000000341ce000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
=C2=A0<TASK>
=C2=A0folio_test_locked include/linux/page-flags.h:509 [inline]
=C2=A0next_uptodate_folio+0xac/0x4b0 mm/filemap.c:3505
=C2=A0filemap_map_pages+0x1c6/0x16a0 mm/filemap.c:3647
=C2=A0do_fault_around mm/memory.c:5255 [inline]
=C2=A0do_read_fault mm/memory.c:5288 [inline]
=C2=A0do_fault mm/memory.c:5431 [inline]
=C2=A0do_pte_missing+0xdae/0x3e70 mm/memory.c:3965
=C2=A0handle_pte_fault mm/memory.c:5766 [inline]
=C2=A0__handle_mm_fault+0x100a/0x2a10 mm/memory.c:5909
=C2=A0handle_mm_fault+0x3fa/0xaa0 mm/memory.c:6077
=C2=A0faultin_page mm/gup.c:1187 [inline]
=C2=A0__get_user_pages+0x8d9/0x3b50 mm/gup.c:1485
=C2=A0__get_user_pages_locked mm/gup.c:1751 [inline]
=C2=A0get_dump_page+0xfb/0x220 mm/gup.c:2269
=C2=A0dump_user_range+0x135/0x8c0 fs/coredump.c:943
=C2=A0elf_core_dump+0x2766/0x3840 fs/binfmt_elf.c:2121
=C2=A0do_coredump+0x2c42/0x4160 fs/coredump.c:758
=C2=A0get_signal+0x237c/0x26d0 kernel/signal.c:2903
=C2=A0arch_do_signal_or_restart+0x90/0x7e0 arch/x86/kernel/signal.c:337
=C2=A0exit_to_user_mode_loop kernel/entry/common.c:111 [inline]
=C2=A0exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] =C2=A0irqentry_exit_to_user_mode+0x13f/0x280 kernel/entry/common.c:231
=C2=A0asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:623
RIP: 0033:0x1000
Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 = 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <00> 00 00 0= 0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
RSP: 002b:000000000000010c EFLAGS: 00010246
RAX: 0000000000000000 RBX: 00007f08b41363b8 RCX: 00007f08b3f7e759
RDX: ffffffffff600000 RSI: 0000000000000104 RDI: 8000000000000000
RBP: 00007f08b3ff175e R08: 0000000100000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000000 R14: 00007f08b41363b8 R15: 00007fff7656a008
=C2=A0</TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:const_folio_flags.constprop.0+0x12e/0x150 include/linux/page-flag= s.h:309
Code: 86 cb ff e8 f4 86 cb ff 48 8d 45 ff 48 39 c3 0f 84 38 ff ff ff e8 e2 = 86 cb ff 48 c7 c6 00 19 58 8b 48 89 df e8 e3 4b 11 00 90 <0f> 0b e8 6= b 0d 2d 00 e9 f1 fe ff ff e8 61 0d 2d 00 eb a3 48 89 df
RSP: 0018:ffffc9000c55ee30 EFLAGS: 00010293
RAX: 0000000000000000 RBX: ffffea0000496f80 RCX: ffffc9000c55ecd8
RDX: ffff88805f401e00 RSI: ffffffff81c1362d RDI: ffff88805f402244
RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff203a591
R10: ffffffff901d2c8f R11: 0000000000000001 R12: 00000000000014df
R13: 0000000000000000 R14: dffffc0000000000 R15: 1ffff920018abdf4
FS:=C2=A0 00007f08b31bc6c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000= 000000
CS:=C2=A0 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fff76568ff8 CR3: 00000000341ce000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400


---
This report is generated by a bot. It may contain errors.
See = https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzkaller@googlegroups.com.

syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.

If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title

If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)

If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report

If you want to undo deduplication, reply with:
#syz undup

--
You received this message because you are subscribed to the Google Groups &= quot;syzkaller-bugs" group.
To unsubscribe from this group and stop receiving emails from it, send an e= mail to syzkaller-bugs+unsubscribe@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/syzkaller-bugs/6= 74184c9.050a0220.1cc393.0001.GAE%40google.com.
--0000000000007cb8cb0627b809ca-- --0000000000007cb8cc0627b809cc Content-Type: text/x-patch; charset="US-ASCII"; name="0001-v2fix-kernel-BUG-in-const_folio_flags.patch" Content-Disposition: attachment; filename="0001-v2fix-kernel-BUG-in-const_folio_flags.patch" Content-Transfer-Encoding: base64 Content-ID: X-Attachment-Id: f_m3wqe5h90 RnJvbSAzMzJjMTEzNDRhM2M1YjA2NDk4MmQ1NTZkZDQwYzdhMTdmZGY0NGU5IE1vbiBTZXAgMTcg MDA6MDA6MDAgMjAwMQpGcm9tOiBTdXJhaiBTb25hd2FuZSA8c3VyYWpzb25hd2FuZTAyMTVAZ21h aWwuY29tPgpEYXRlOiBNb24sIDI1IE5vdiAyMDI0IDEzOjE5OjQ4ICswNTMwClN1YmplY3Q6IFtQ QVRDSF0gdjJmaXgga2VybmVsIEJVRyBpbiBjb25zdF9mb2xpb19mbGFncwoKc3l6IHRlc3QKClNp Z25lZC1vZmYtYnk6IFN1cmFqIFNvbmF3YW5lIDxzdXJhanNvbmF3YW5lMDIxNUBnbWFpbC5jb20+ Ci0tLQogaW5jbHVkZS9saW51eC9wYWdlLWZsYWdzLmggfCA3ICsrKysrKysKIDEgZmlsZSBjaGFu Z2VkLCA3IGluc2VydGlvbnMoKykKCmRpZmYgLS1naXQgYS9pbmNsdWRlL2xpbnV4L3BhZ2UtZmxh Z3MuaCBiL2luY2x1ZGUvbGludXgvcGFnZS1mbGFncy5oCmluZGV4IDIyMjBiZmVjMi4uMjE0YWQ5 ZDZkIDEwMDY0NAotLS0gYS9pbmNsdWRlL2xpbnV4L3BhZ2UtZmxhZ3MuaAorKysgYi9pbmNsdWRl L2xpbnV4L3BhZ2UtZmxhZ3MuaApAQCAtOCw2ICs4LDcgQEAKIAogI2luY2x1ZGUgPGxpbnV4L3R5 cGVzLmg+CiAjaW5jbHVkZSA8bGludXgvYnVnLmg+CisjaW5jbHVkZSA8bGludXgvbW0uaD4KICNp bmNsdWRlIDxsaW51eC9tbWRlYnVnLmg+CiAjaWZuZGVmIF9fR0VORVJBVElOR19CT1VORFNfSAog I2luY2x1ZGUgPGxpbnV4L21tX3R5cGVzLmg+CkBAIC0zMDYsNiArMzA3LDEyIEBAIHN0YXRpYyBj b25zdCB1bnNpZ25lZCBsb25nICpjb25zdF9mb2xpb19mbGFncyhjb25zdCBzdHJ1Y3QgZm9saW8g KmZvbGlvLAogewogCWNvbnN0IHN0cnVjdCBwYWdlICpwYWdlID0gJmZvbGlvLT5wYWdlOwogCisJ bG9uZyBucl9wYWdlcyA9IGZvbGlvX25yX3BhZ2VzKGZvbGlvKTsKKworCWlmIChuID49IG5yX3Bh Z2VzKSB7CisJCXByX2VycigiSW52YWxpZCBmb2xpbyBpbmRleDogbj0ldSwgZm9saW9fbnJfcGFn ZXM9JXVcbiIsIG4sIGZvbGlvX25yX3BhZ2VzKGZvbGlvKSk7CisJCXJldHVybiAtRUlOVkFMOwor CX0KKwogCVZNX0JVR19PTl9QR0ZMQUdTKFBhZ2VUYWlsKHBhZ2UpLCBwYWdlKTsKIAlWTV9CVUdf T05fUEdGTEFHUyhuID4gMCAmJiAhdGVzdF9iaXQoUEdfaGVhZCwgJnBhZ2UtPmZsYWdzKSwgcGFn ZSk7CiAJcmV0dXJuICZwYWdlW25dLmZsYWdzOwotLSAKMi4zNC4xCgo= --0000000000007cb8cc0627b809cc--