lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Message-ID: <bug-218576-13602@https.bugzilla.kernel.org/>
Date: Sat, 09 Mar 2024 02:51:05 +0000
From: bugzilla-daemon@...nel.org
To: linux-ext4@...r.kernel.org
Subject: [Bug 218576] New: ext4: ext4_mb_use_inode_pa: BUGON triggered by
 invalid pa

https://bugzilla.kernel.org/show_bug.cgi?id=218576

            Bug ID: 218576
           Summary: ext4: ext4_mb_use_inode_pa: BUGON triggered by invalid
                    pa
           Product: File System
           Version: 2.5
          Hardware: All
                OS: Linux
            Status: NEW
          Severity: normal
          Priority: P3
         Component: ext4
          Assignee: fs_ext4@...nel-bugs.osdl.org
          Reporter: chengzhihao1@...wei.com
        Regression: No

Reproducer:
1. Apply diff and compile kernel(CONFIG_EXT4_FS=y)
2. Start vm(Use non-ext4 as rootfs), gcc -o aa a.c
3. ./aa
[   17.773715] pa_free 3 len 1
[   17.774530] assign g_bh ffff88810040a068
[   17.777084] fault inject
[   17.777852] Buffer I/O error on dev sda, logical block 45, lost async page
write
[   17.785313] free bh
[   17.923462] EXT4-fs error (device sda): ext4_check_bdev_write_error:224:
comm dd: Error while async write back metadata
[   17.937886] pa_free 2 len 3
[   17.938747] ------------[ cut here ]------------
[   17.939991] kernel BUG at fs/ext4/mballoc.c:4681!
[   17.941228] invalid opcode: 0000 [#1] PREEMPT SMP
[   17.942446] CPU: 3 PID: 97 Comm: kworker/u8:3 Not tainted
6.8.0-rc7-00149-g472e37c02986-dirty #491
[   17.944684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS
1.16.1-2.fc37 04/01/2014
[   17.946866] Workqueue: writeback wb_workfn (flush-8:0)
[   17.948104] RIP: 0010:ext4_mb_use_inode_pa+0x1b6/0x1e0
[   17.949289] Code: 05 fe 10 60 0c 01 0f 0b 48 83 05 fc 10 60 0c 01 48 83 05
fc 10 60 0c 01 0f 0b 48 83 05 fa 10 60 0c 01 48 83 05 fa 10 60 0c 01 <0f3
[   17.953457] RSP: 0018:ffffc900004af7c0 EFLAGS: 00010202
[   17.954648] RAX: 0000000000000002 RBX: 0000000000000003 RCX:
0000000000000000
[   17.956273] RDX: 0000000000000015 RSI: ffff88882fd9ca40 RDI:
ffff88882fd9ca40
[   17.957718] RBP: ffff8881789cb000 R08: 0000000000000000 R09:
ffffc900004af660
[   17.958893] R10: ffffffff8351e680 R11: ffffffff8a51e668 R12:
ffff8881789cc000
[   17.960078] R13: 0000000000000015 R14: ffff88810382e000 R15:
0000000000000018
[   17.961260] FS:  0000000000000000(0000) GS:ffff88882fd80000(0000)
knlGS:0000000000000000
[   17.962588] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   17.963546] CR2: 00007fc58da1e000 CR3: 0000000003448000 CR4:
00000000000006f0
[   17.964725] DR0: 0000000000000000 DR1: 0000000000000000 DR2:
0000000000000000
[   17.965904] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7:
0000000000000400
[   17.967083] Call Trace:
[   17.967480]  <TASK>
[   17.967750]  ? show_regs+0x88/0xa0
[   17.968181]  ? __die_body+0x26/0x90
[   17.968613]  ? die+0x5c/0xa0
[   17.969004]  ? do_trap+0x10e/0x140
[   17.969428]  ? do_error_trap+0x85/0xd0
[   17.969903]  ? ext4_mb_use_inode_pa+0x1b6/0x1e0
[   17.970464]  ? exc_invalid_op+0x68/0x80
[   17.970949]  ? ext4_mb_use_inode_pa+0x1b6/0x1e0
[   17.971505]  ? asm_exc_invalid_op+0x1a/0x20
[   17.972024]  ? ext4_mb_use_inode_pa+0x1b6/0x1e0
[   17.972580]  ext4_mb_use_preallocated.constprop.0+0x19e/0x540
[   17.973280]  ext4_mb_new_blocks+0x220/0x1f30
[   17.973800]  ? ext4_find_extent+0x21e/0x910
[   17.974320]  ext4_ext_map_blocks+0xf3c/0x2900
[   17.974856]  ? ext4_do_writepages+0xa25/0x1400
[   17.975402]  ? ext4_writepages+0x102/0x2b0
[   17.975901]  ? do_writepages+0x8c/0x260
[   17.976374]  ? __writeback_single_inode+0x61/0x710
[   17.976968]  ? writeback_sb_inodes+0x224/0x720
[   17.977509]  ? wb_writeback+0xd8/0x580
[   17.977939]  ? wb_workfn+0x148/0x820
[   17.978322]  ? process_scheduled_works+0x1ad/0x5d0
[   17.978832]  ? worker_thread+0x1f9/0x510
[   17.979251]  ? kthread+0x149/0x1c0
[   17.979613]  ? ret_from_fork+0x52/0x70
[   17.980019]  ? ret_from_fork_asm+0x11/0x20
[   17.980456]  ext4_map_blocks+0x264/0xa40
[   17.980872]  ext4_do_writepages+0xb15/0x1400
[   17.981335]  ext4_writepages+0x102/0x2b0
[   17.981755]  do_writepages+0x8c/0x260
[   17.982150]  __writeback_single_inode+0x61/0x710
[   17.982635]  writeback_sb_inodes+0x224/0x720
[   17.983088]  wb_writeback+0xd8/0x580
[   17.983468]  wb_workfn+0x148/0x820
[   17.983832]  ? finish_task_switch.isra.0+0x121/0x4d0
[   17.984364]  ? __schedule+0x5ae/0x1260
[   17.984765]  process_scheduled_works+0x1ad/0x5d0
[   17.985261]  worker_thread+0x1f9/0x510
[   17.985661]  ? rescuer_thread+0x490/0x490
[   17.986085]  kthread+0x149/0x1c0
[   17.986428]  ? kthread_exit+0x50/0x50
[   17.986819]  ret_from_fork+0x52/0x70
[   17.987200]  ? kthread_exit+0x50/0x50
[   17.987585]  ret_from_fork_asm+0x11/0x20
[   17.988004]  </TASK>
[   17.988242] Modules linked in:
[   17.988599] ---[ end trace 0000000000000000 ]---

-- 
You may reply to this email to add a comment.

You are receiving this mail because:
You are watching the assignee of the bug.

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ