From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id 67E25D3B7E7 for ; Mon, 25 Nov 2024 07:57:43 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id DE2816B0085; Mon, 25 Nov 2024 02:57:42 -0500 (EST) Received: by kanga.kvack.org (Postfix, from userid 40) id D91F36B0088; Mon, 25 Nov 2024 02:57:42 -0500 (EST) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id C31DE6B0089; Mon, 25 Nov 2024 02:57:42 -0500 (EST) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0012.hostedemail.com [216.40.44.12]) by kanga.kvack.org (Postfix) with ESMTP id 9B8216B0085 for ; Mon, 25 Nov 2024 02:57:42 -0500 (EST) Received: from smtpin04.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay02.hostedemail.com (Postfix) with ESMTP id 2822A120662 for ; Mon, 25 Nov 2024 07:57:42 +0000 (UTC) X-FDA: 82823863080.04.AC41E06 Received: from mail-ed1-f43.google.com (mail-ed1-f43.google.com [209.85.208.43]) by imf17.hostedemail.com (Postfix) with ESMTP id DB41640009 for ; Mon, 25 Nov 2024 07:57:37 +0000 (UTC) Authentication-Results: imf17.hostedemail.com; dkim=pass header.d=gmail.com header.s=20230601 header.b="MBm/t81P"; spf=pass (imf17.hostedemail.com: domain of surajsonawane0215@gmail.com designates 209.85.208.43 as permitted sender) smtp.mailfrom=surajsonawane0215@gmail.com; dmarc=pass (policy=none) header.from=gmail.com ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1732521458; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type:content-transfer-encoding: in-reply-to:in-reply-to:references:references:dkim-signature; bh=cSEERDuEDDUTAPZa8Om2c//wy9IwQtUIYLXZ3avcMrE=; b=Qp6pFiZE1hr3xE7dpQjFE5K5rnjD0x1Tf64yNnbjPx4hSypaZBbLRchYfdjOSG7WcN7RTM FxwNv4WYAFMMTdyJ2l2ye/hZFysGUI2Rzqh/y3fxNBwB8LW6cxrycVTMYHZW8esgVlXb53 WB/tnhLOwrHNvawAZvMcEX8Wyc/eqSk= ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1732521458; a=rsa-sha256; cv=none; b=z8lYPXTz2WaKUT61KIBLaV5TyrfsJTa7zEuR6FQvnsqkyDBaH7g1hILVq9j8VW67bHzSPA OGtvtVIobTn6bbk2jzFQ96DAwug397LmwS82UnPxENDxXVTf4vyQ0A/0zhxhO9OX78CJ+7 JHjuwL2tJmt4lyA7vwpC2fI/qHDj2/g= ARC-Authentication-Results: i=1; imf17.hostedemail.com; dkim=pass header.d=gmail.com header.s=20230601 header.b="MBm/t81P"; spf=pass (imf17.hostedemail.com: domain of surajsonawane0215@gmail.com designates 209.85.208.43 as permitted sender) smtp.mailfrom=surajsonawane0215@gmail.com; dmarc=pass (policy=none) header.from=gmail.com Received: by mail-ed1-f43.google.com with SMTP id 4fb4d7f45d1cf-5cfd2978f95so5713752a12.0 for ; Sun, 24 Nov 2024 23:57:39 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1732521459; x=1733126259; darn=kvack.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=cSEERDuEDDUTAPZa8Om2c//wy9IwQtUIYLXZ3avcMrE=; b=MBm/t81POs5bkDxcyCZ7rKSVvFtklW/zz9o8fP6Wch3z2CRio9qTchfjCsSuGxAHHY 8KWMLN1CMvHlY+bdX4DRYN4kKcIkCP2gNcb5A1jTIBRqUqHTphyfT4/Lj7prgywrHJ80 SNlZRmnOJMgaS9c4EsScPvjOIh33xyQ0mIZZTeQXvFLLoF5039AGmSmicq/PwlnPCGo4 1HBCtJeudqsstKhXVHB/1bNk6ql3BV+EVVd5kR7TI4Lgr4F00HNt3SGq6/cwyZiyq36a 4zZ9e+8EoGB5PJltNWHugNyzkNTdFfCeTyDM71KFotu2aXhrDzPh8hjBRDhR7Pqr7Z/m lYJg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1732521459; x=1733126259; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=cSEERDuEDDUTAPZa8Om2c//wy9IwQtUIYLXZ3avcMrE=; b=F6zJNaDwKGXBZpvntsvST4wiVuV3zTrLPShZCRY5cgxecMecj5Bmcyet6xbbd/5uU0 e72Y3w3jgwi7lWslXgOahGmC/RvK0u7GOTmpG4Nv3Pj11862qDa1pHhteRtryHLvwkqq QSNqEsfUiR2xe5uoWkeSD6uanRrSKffA5gG0/9yvXJSD/7koFoH5KLXDHXueinqEL6+p cppnkDAXKu/2sByNYLk8Pd+Ey4UFKnPuDaTsYuO1dI2pH8P8QIEmygNrD3o8nKHdQOGr q7NpCsOO2UifiNccT8y2Ox0gtg/fMBhLfsueuz5Cdd7jSTbWMKMJUqMnCOzB5VxAD1lw uqiw== X-Forwarded-Encrypted: i=1; AJvYcCVDa8343hA3mEHi5PYJemHyAdYlwsAj969po+HqI0lL3kwgRLgldJ7FnP1hosDMYwP6gjP3BjDyIA==@kvack.org X-Gm-Message-State: AOJu0YxN6gtgU7x0UEx4xmmtlR5TRRek7gvXpL62j0S7ET8I/vmi2kKV G6XmeO3VHqR0VXG32JjsDfiHJfcJBpGhpHuXSZM8hyBIeRIpBb92AhhXA5+jwDrNqngIK/vGvlS hAiruhX6i5zY9iTJNlwcFel4m8vQ= X-Gm-Gg: ASbGnctKeueG7vJCGjO2LjPA94WffRIK0bo11ITnlHvGuiYopUr/aqW8RvPp28OQGY+ bZWezkkG9C+8EjFZYH30NUCmqM7wDpVk= X-Google-Smtp-Source: AGHT+IHCForie9SmR/royzTyQHzpfKZckwuXUz0PoKat/KIAY1S4Vm2IO/WYgxkOKNUv9XADhC4Xv/VMSE0ucdHwBxQ= X-Received: by 2002:a05:6402:538b:b0:5cf:cc4c:76ff with SMTP id 4fb4d7f45d1cf-5d0206339aemr11435324a12.18.1732521458543; Sun, 24 Nov 2024 23:57:38 -0800 (PST) MIME-Version: 1.0 References: <674184c9.050a0220.1cc393.0001.GAE@google.com> In-Reply-To: <674184c9.050a0220.1cc393.0001.GAE@google.com> From: Suraj Sonawane Date: Mon, 25 Nov 2024 13:27:00 +0530 Message-ID: Subject: Re: [syzbot] [mm?] kernel BUG in const_folio_flags (2) To: syzbot Cc: akpm@linux-foundation.org, linux-kernel@vger.kernel.org, linux-mm@kvack.org, syzkaller-bugs@googlegroups.com Content-Type: multipart/mixed; boundary="0000000000001a4c2f0627b8169a" X-Stat-Signature: cazi48iqthu31zb5zj1nht8jse8b4dm3 X-Rspam-User: X-Rspamd-Queue-Id: DB41640009 X-Rspamd-Server: rspam02 X-HE-Tag: 1732521457-458822 X-HE-Meta: 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 LesXs24N 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 GmHyOLBj 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 X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: List-Subscribe: List-Unsubscribe: --0000000000001a4c2f0627b8169a Content-Type: multipart/alternative; boundary="0000000000001a4c2d0627b81698" --0000000000001a4c2d0627b81698 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable #syz test On Sat, Nov 23, 2024 at 1:01=E2=80=AFPM syzbot < syzbot+9f9a7f73fb079b2387a6@syzkaller.appspotmail.com> wrote: > Hello, > > syzbot found the following issue on: > > HEAD commit: 9fb2cfa4635a Merge tag 'pull-ufs' of git://git.kernel.org= / > .. > git tree: upstream > console output: https://syzkaller.appspot.com/x/log.txt?x=3D1004293058000= 0 > kernel config: https://syzkaller.appspot.com/x/.config?x=3Dc4515f1b6a4e5= 0b7 > dashboard link: > https://syzkaller.appspot.com/bug?extid=3D9f9a7f73fb079b2387a6 > compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for > Debian) 2.40 > syz repro: https://syzkaller.appspot.com/x/repro.syz?x=3D105ff2e8580= 000 > > Downloadable assets: > disk image: > https://storage.googleapis.com/syzbot-assets/7c0c61a15f60/disk-9fb2cfa4.r= aw.xz > vmlinux: > https://storage.googleapis.com/syzbot-assets/3363d84eeb74/vmlinux-9fb2cfa= 4.xz > kernel image: > https://storage.googleapis.com/syzbot-assets/2b1a270af550/bzImage-9fb2cfa= 4.xz > > IMPORTANT: if you fix the issue, please add the following tag to the > commit: > Reported-by: syzbot+9f9a7f73fb079b2387a6@syzkaller.appspotmail.com > > madvise_pageout_page_range mm/madvise.c:609 [inline] > madvise_pageout+0x326/0x820 mm/madvise.c:636 > madvise_vma_behavior+0x58c/0x19e0 mm/madvise.c:1045 > madvise_walk_vmas+0x1cf/0x2c0 mm/madvise.c:1274 > do_madvise+0x29d/0x700 mm/madvise.c:1461 > __do_sys_madvise mm/madvise.c:1477 [inline] > __se_sys_madvise mm/madvise.c:1475 [inline] > __x64_sys_madvise+0xa9/0x110 mm/madvise.c:1475 > do_syscall_x64 arch/x86/entry/common.c:52 [inline] > do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83 > ------------[ cut here ]------------ > kernel BUG at include/linux/page-flags.h:309! > Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI > CPU: 0 UID: 0 PID: 7269 Comm: syz.1.183 Not tainted > 6.12.0-syzkaller-00233-g9fb2cfa4635a #0 > Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS > Google 10/30/2024 > RIP: 0010:const_folio_flags.constprop.0+0x12e/0x150 > include/linux/page-flags.h:309 > Code: 86 cb ff e8 f4 86 cb ff 48 8d 45 ff 48 39 c3 0f 84 38 ff ff ff e8 e= 2 > 86 cb ff 48 c7 c6 00 19 58 8b 48 89 df e8 e3 4b 11 00 90 <0f> 0b e8 6b 0d > 2d 00 e9 f1 fe ff ff e8 61 0d 2d 00 eb a3 48 89 df > RSP: 0018:ffffc9000c55ee30 EFLAGS: 00010293 > RAX: 0000000000000000 RBX: ffffea0000496f80 RCX: ffffc9000c55ecd8 > RDX: ffff88805f401e00 RSI: ffffffff81c1362d RDI: ffff88805f402244 > RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff203a591 > R10: ffffffff901d2c8f R11: 0000000000000001 R12: 00000000000014df > R13: 0000000000000000 R14: dffffc0000000000 R15: 1ffff920018abdf4 > FS: 00007f08b31bc6c0(0000) GS:ffff8880b8600000(0000) > knlGS:0000000000000000 > CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 > CR2: 000000c0025ff000 CR3: 00000000341ce000 CR4: 00000000003526f0 > DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 > DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 > Call Trace: > > folio_test_locked include/linux/page-flags.h:509 [inline] > next_uptodate_folio+0xac/0x4b0 mm/filemap.c:3505 > filemap_map_pages+0x1c6/0x16a0 mm/filemap.c:3647 > do_fault_around mm/memory.c:5255 [inline] > do_read_fault mm/memory.c:5288 [inline] > do_fault mm/memory.c:5431 [inline] > do_pte_missing+0xdae/0x3e70 mm/memory.c:3965 > handle_pte_fault mm/memory.c:5766 [inline] > __handle_mm_fault+0x100a/0x2a10 mm/memory.c:5909 > handle_mm_fault+0x3fa/0xaa0 mm/memory.c:6077 > faultin_page mm/gup.c:1187 [inline] > __get_user_pages+0x8d9/0x3b50 mm/gup.c:1485 > __get_user_pages_locked mm/gup.c:1751 [inline] > get_dump_page+0xfb/0x220 mm/gup.c:2269 > dump_user_range+0x135/0x8c0 fs/coredump.c:943 > elf_core_dump+0x2766/0x3840 fs/binfmt_elf.c:2121 > do_coredump+0x2c42/0x4160 fs/coredump.c:758 > get_signal+0x237c/0x26d0 kernel/signal.c:2903 > arch_do_signal_or_restart+0x90/0x7e0 arch/x86/kernel/signal.c:337 > exit_to_user_mode_loop kernel/entry/common.c:111 [inline] > exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] > irqentry_exit_to_user_mode+0x13f/0x280 kernel/entry/common.c:231 > asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:623 > RIP: 0033:0x1000 > Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0= 0 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <00> 00 00 00 00 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > RSP: 002b:000000000000010c EFLAGS: 00010246 > RAX: 0000000000000000 RBX: 00007f08b41363b8 RCX: 00007f08b3f7e759 > RDX: ffffffffff600000 RSI: 0000000000000104 RDI: 8000000000000000 > RBP: 00007f08b3ff175e R08: 0000000100000000 R09: 0000000000000000 > R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 > R13: 0000000000000000 R14: 00007f08b41363b8 R15: 00007fff7656a008 > > Modules linked in: > ---[ end trace 0000000000000000 ]--- > RIP: 0010:const_folio_flags.constprop.0+0x12e/0x150 > include/linux/page-flags.h:309 > Code: 86 cb ff e8 f4 86 cb ff 48 8d 45 ff 48 39 c3 0f 84 38 ff ff ff e8 e= 2 > 86 cb ff 48 c7 c6 00 19 58 8b 48 89 df e8 e3 4b 11 00 90 <0f> 0b e8 6b 0d > 2d 00 e9 f1 fe ff ff e8 61 0d 2d 00 eb a3 48 89 df > RSP: 0018:ffffc9000c55ee30 EFLAGS: 00010293 > RAX: 0000000000000000 RBX: ffffea0000496f80 RCX: ffffc9000c55ecd8 > RDX: ffff88805f401e00 RSI: ffffffff81c1362d RDI: ffff88805f402244 > RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff203a591 > R10: ffffffff901d2c8f R11: 0000000000000001 R12: 00000000000014df > R13: 0000000000000000 R14: dffffc0000000000 R15: 1ffff920018abdf4 > FS: 00007f08b31bc6c0(0000) GS:ffff8880b8700000(0000) > knlGS:0000000000000000 > CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 > CR2: 00007fff76568ff8 CR3: 00000000341ce000 CR4: 00000000003526f0 > DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 > DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 > > > --- > This report is generated by a bot. It may contain errors. > See https://goo.gl/tpsmEJ for more information about syzbot. > syzbot engineers can be reached at syzkaller@googlegroups.com. > > syzbot will keep track of this issue. See: > https://goo.gl/tpsmEJ#status for how to communicate with syzbot. > > If the report is already addressed, let syzbot know by replying with: > #syz fix: exact-commit-title > > If you want syzbot to run the reproducer, reply with: > #syz test: git://repo/address.git branch-or-commit-hash > If you attach or paste a git patch, syzbot will apply it before testing. > > If you want to overwrite report's subsystems, reply with: > #syz set subsystems: new-subsystem > (See the list of subsystem names on the web dashboard) > > If the report is a duplicate of another one, reply with: > #syz dup: exact-subject-of-another-report > > If you want to undo deduplication, reply with: > #syz undup > > -- > You received this message because you are subscribed to the Google Groups > "syzkaller-bugs" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to syzkaller-bugs+unsubscribe@googlegroups.com. > To view this discussion visit > https://groups.google.com/d/msgid/syzkaller-bugs/674184c9.050a0220.1cc393= .0001.GAE%40google.com > . > --0000000000001a4c2d0627b81698 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
#syz test

On Sat, Nov 23, 2024 at 1:01=E2=80=AFPM syzbo= t <syzbot+9f9a7f73fb079b2387a6@syzkaller.appspotmail.com> wrote:<= br>
Hello,

syzbot found the following issue on:

HEAD commit:=C2=A0 =C2=A0 9fb2cfa4635a Merge tag 'pull-ufs' of git:= //g= it.kernel.org/..
git tree:=C2=A0 =C2=A0 =C2=A0 =C2=A0upstream
console output: https://syzkaller.appspot.= com/x/log.txt?x=3D10042930580000
kernel config:=C2=A0 https://syzkaller= .appspot.com/x/.config?x=3Dc4515f1b6a4e50b7
dashboard link: https://syzkaller.apps= pot.com/bug?extid=3D9f9a7f73fb079b2387a6
compiler:=C2=A0 =C2=A0 =C2=A0 =C2=A0gcc (Debian 12.2.0-14) 12.2.0, GNU ld (= GNU Binutils for Debian) 2.40
syz repro:=C2=A0 =C2=A0 =C2=A0 https://s= yzkaller.appspot.com/x/repro.syz?x=3D105ff2e8580000

Downloadable assets:
disk image: https://st= orage.googleapis.com/syzbot-assets/7c0c61a15f60/disk-9fb2cfa4.raw.xz vmlinux: https://storag= e.googleapis.com/syzbot-assets/3363d84eeb74/vmlinux-9fb2cfa4.xz
kernel image: https://s= torage.googleapis.com/syzbot-assets/2b1a270af550/bzImage-9fb2cfa4.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit= :
Reported-by: syzbot+9f9a7f73fb079b2387a6@syzkaller.appspo= tmail.com

=C2=A0madvise_pageout_page_range mm/madvise.c:609 [inline]
=C2=A0madvise_pageout+0x326/0x820 mm/madvise.c:636
=C2=A0madvise_vma_behavior+0x58c/0x19e0 mm/madvise.c:1045
=C2=A0madvise_walk_vmas+0x1cf/0x2c0 mm/madvise.c:1274
=C2=A0do_madvise+0x29d/0x700 mm/madvise.c:1461
=C2=A0__do_sys_madvise mm/madvise.c:1477 [inline]
=C2=A0__se_sys_madvise mm/madvise.c:1475 [inline]
=C2=A0__x64_sys_madvise+0xa9/0x110 mm/madvise.c:1475
=C2=A0do_syscall_x64 arch/x86/entry/common.c:52 [inline]
=C2=A0do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
------------[ cut here ]------------
kernel BUG at include/linux/page-flags.h:309!
Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI
CPU: 0 UID: 0 PID: 7269 Comm: syz.1.183 Not tainted 6.12.0-syzkaller-00233-= g9fb2cfa4635a #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Goo= gle 10/30/2024
RIP: 0010:const_folio_flags.constprop.0+0x12e/0x150 include/linux/page-flag= s.h:309
Code: 86 cb ff e8 f4 86 cb ff 48 8d 45 ff 48 39 c3 0f 84 38 ff ff ff e8 e2 = 86 cb ff 48 c7 c6 00 19 58 8b 48 89 df e8 e3 4b 11 00 90 <0f> 0b e8 6= b 0d 2d 00 e9 f1 fe ff ff e8 61 0d 2d 00 eb a3 48 89 df
RSP: 0018:ffffc9000c55ee30 EFLAGS: 00010293
RAX: 0000000000000000 RBX: ffffea0000496f80 RCX: ffffc9000c55ecd8
RDX: ffff88805f401e00 RSI: ffffffff81c1362d RDI: ffff88805f402244
RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff203a591
R10: ffffffff901d2c8f R11: 0000000000000001 R12: 00000000000014df
R13: 0000000000000000 R14: dffffc0000000000 R15: 1ffff920018abdf4
FS:=C2=A0 00007f08b31bc6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000= 000000
CS:=C2=A0 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c0025ff000 CR3: 00000000341ce000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
=C2=A0<TASK>
=C2=A0folio_test_locked include/linux/page-flags.h:509 [inline]
=C2=A0next_uptodate_folio+0xac/0x4b0 mm/filemap.c:3505
=C2=A0filemap_map_pages+0x1c6/0x16a0 mm/filemap.c:3647
=C2=A0do_fault_around mm/memory.c:5255 [inline]
=C2=A0do_read_fault mm/memory.c:5288 [inline]
=C2=A0do_fault mm/memory.c:5431 [inline]
=C2=A0do_pte_missing+0xdae/0x3e70 mm/memory.c:3965
=C2=A0handle_pte_fault mm/memory.c:5766 [inline]
=C2=A0__handle_mm_fault+0x100a/0x2a10 mm/memory.c:5909
=C2=A0handle_mm_fault+0x3fa/0xaa0 mm/memory.c:6077
=C2=A0faultin_page mm/gup.c:1187 [inline]
=C2=A0__get_user_pages+0x8d9/0x3b50 mm/gup.c:1485
=C2=A0__get_user_pages_locked mm/gup.c:1751 [inline]
=C2=A0get_dump_page+0xfb/0x220 mm/gup.c:2269
=C2=A0dump_user_range+0x135/0x8c0 fs/coredump.c:943
=C2=A0elf_core_dump+0x2766/0x3840 fs/binfmt_elf.c:2121
=C2=A0do_coredump+0x2c42/0x4160 fs/coredump.c:758
=C2=A0get_signal+0x237c/0x26d0 kernel/signal.c:2903
=C2=A0arch_do_signal_or_restart+0x90/0x7e0 arch/x86/kernel/signal.c:337
=C2=A0exit_to_user_mode_loop kernel/entry/common.c:111 [inline]
=C2=A0exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline] =C2=A0irqentry_exit_to_user_mode+0x13f/0x280 kernel/entry/common.c:231
=C2=A0asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:623
RIP: 0033:0x1000
Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 = 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <00> 00 00 0= 0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
RSP: 002b:000000000000010c EFLAGS: 00010246
RAX: 0000000000000000 RBX: 00007f08b41363b8 RCX: 00007f08b3f7e759
RDX: ffffffffff600000 RSI: 0000000000000104 RDI: 8000000000000000
RBP: 00007f08b3ff175e R08: 0000000100000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000000 R14: 00007f08b41363b8 R15: 00007fff7656a008
=C2=A0</TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:const_folio_flags.constprop.0+0x12e/0x150 include/linux/page-flag= s.h:309
Code: 86 cb ff e8 f4 86 cb ff 48 8d 45 ff 48 39 c3 0f 84 38 ff ff ff e8 e2 = 86 cb ff 48 c7 c6 00 19 58 8b 48 89 df e8 e3 4b 11 00 90 <0f> 0b e8 6= b 0d 2d 00 e9 f1 fe ff ff e8 61 0d 2d 00 eb a3 48 89 df
RSP: 0018:ffffc9000c55ee30 EFLAGS: 00010293
RAX: 0000000000000000 RBX: ffffea0000496f80 RCX: ffffc9000c55ecd8
RDX: ffff88805f401e00 RSI: ffffffff81c1362d RDI: ffff88805f402244
RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff203a591
R10: ffffffff901d2c8f R11: 0000000000000001 R12: 00000000000014df
R13: 0000000000000000 R14: dffffc0000000000 R15: 1ffff920018abdf4
FS:=C2=A0 00007f08b31bc6c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000= 000000
CS:=C2=A0 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fff76568ff8 CR3: 00000000341ce000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400


---
This report is generated by a bot. It may contain errors.
See = https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzkaller@googlegroups.com.

syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.

If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title

If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)

If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report

If you want to undo deduplication, reply with:
#syz undup

--
You received this message because you are subscribed to the Google Groups &= quot;syzkaller-bugs" group.
To unsubscribe from this group and stop receiving emails from it, send an e= mail to syzkaller-bugs+unsubscribe@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/syzkaller-bugs/6= 74184c9.050a0220.1cc393.0001.GAE%40google.com.
--0000000000001a4c2d0627b81698-- --0000000000001a4c2f0627b8169a Content-Type: text/x-patch; charset="US-ASCII"; name="0001-v2fix-kernel-BUG-in-const_folio_flags.patch" Content-Disposition: attachment; filename="0001-v2fix-kernel-BUG-in-const_folio_flags.patch" Content-Transfer-Encoding: base64 Content-ID: X-Attachment-Id: f_m3wqip360 RnJvbSAzMzJjMTEzNDRhM2M1YjA2NDk4MmQ1NTZkZDQwYzdhMTdmZGY0NGU5IE1vbiBTZXAgMTcg MDA6MDA6MDAgMjAwMQpGcm9tOiBTdXJhaiBTb25hd2FuZSA8c3VyYWpzb25hd2FuZTAyMTVAZ21h aWwuY29tPgpEYXRlOiBNb24sIDI1IE5vdiAyMDI0IDEzOjE5OjQ4ICswNTMwClN1YmplY3Q6IFtQ QVRDSF0gdjJmaXgga2VybmVsIEJVRyBpbiBjb25zdF9mb2xpb19mbGFncwoKc3l6IHRlc3QKClNp Z25lZC1vZmYtYnk6IFN1cmFqIFNvbmF3YW5lIDxzdXJhanNvbmF3YW5lMDIxNUBnbWFpbC5jb20+ Ci0tLQogaW5jbHVkZS9saW51eC9wYWdlLWZsYWdzLmggfCA3ICsrKysrKysKIDEgZmlsZSBjaGFu Z2VkLCA3IGluc2VydGlvbnMoKykKCmRpZmYgLS1naXQgYS9pbmNsdWRlL2xpbnV4L3BhZ2UtZmxh Z3MuaCBiL2luY2x1ZGUvbGludXgvcGFnZS1mbGFncy5oCmluZGV4IDIyMjBiZmVjMi4uMjE0YWQ5 ZDZkIDEwMDY0NAotLS0gYS9pbmNsdWRlL2xpbnV4L3BhZ2UtZmxhZ3MuaAorKysgYi9pbmNsdWRl L2xpbnV4L3BhZ2UtZmxhZ3MuaApAQCAtOCw2ICs4LDcgQEAKIAogI2luY2x1ZGUgPGxpbnV4L3R5 cGVzLmg+CiAjaW5jbHVkZSA8bGludXgvYnVnLmg+CisjaW5jbHVkZSA8bGludXgvbW0uaD4KICNp bmNsdWRlIDxsaW51eC9tbWRlYnVnLmg+CiAjaWZuZGVmIF9fR0VORVJBVElOR19CT1VORFNfSAog I2luY2x1ZGUgPGxpbnV4L21tX3R5cGVzLmg+CkBAIC0zMDYsNiArMzA3LDEyIEBAIHN0YXRpYyBj b25zdCB1bnNpZ25lZCBsb25nICpjb25zdF9mb2xpb19mbGFncyhjb25zdCBzdHJ1Y3QgZm9saW8g KmZvbGlvLAogewogCWNvbnN0IHN0cnVjdCBwYWdlICpwYWdlID0gJmZvbGlvLT5wYWdlOwogCisJ bG9uZyBucl9wYWdlcyA9IGZvbGlvX25yX3BhZ2VzKGZvbGlvKTsKKwlpZiAobiA+PSBucl9wYWdl cykgeworCQlwcl9lcnIoIkludmFsaWQgZm9saW8gaW5kZXg6IG49JXUsIGZvbGlvX25yX3BhZ2Vz PSV1XG4iLCBuLCBmb2xpb19ucl9wYWdlcyhmb2xpbykpOworCQlyZXR1cm4gLUVJTlZBTDsKKwl9 CisKIAlWTV9CVUdfT05fUEdGTEFHUyhQYWdlVGFpbChwYWdlKSwgcGFnZSk7CiAJVk1fQlVHX09O X1BHRkxBR1MobiA+IDAgJiYgIXRlc3RfYml0KFBHX2hlYWQsICZwYWdlLT5mbGFncyksIHBhZ2Up OwogCXJldHVybiAmcGFnZVtuXS5mbGFnczsKLS0gCjIuMzQuMQoK --0000000000001a4c2f0627b8169a--