| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <6807a0a8.050a0220.380c13.014e.GAE@google.com>
Date: Tue, 22 Apr 2025 06:59:04 -0700
From: syzbot <syzbot+8bb6fd945af4e0ad9299@...kaller.appspotmail.com>
To: akpm@...ux-foundation.org, apopple@...dia.com, david@...hat.com,
donettom@...ux.ibm.com, jane.chu@...cle.com,
jfs-discussion@...ts.sourceforge.net, linux-kernel@...r.kernel.org,
linux-mm@...ck.org, shaggy@...nel.org, shivankg@....com,
syzkaller-bugs@...glegroups.com, wangkefeng.wang@...wei.com,
willy@...radead.org, ziy@...dia.com
Subject: Re: [syzbot] [mm?] WARNING in move_to_new_folio
Hello,
syzbot tried to test the proposed patch but the build/boot failed:
legacy bootconsole [earlyser0] disabled
[ 2.023888][ T0] Lock dependency validator: Copyright (c) 2006 Red Hat, Inc., Ingo Molnar
[ 2.025496][ T0] ... MAX_LOCKDEP_SUBCLASSES: 8
[ 2.026234][ T0] ... MAX_LOCK_DEPTH: 48
[ 2.027545][ T0] ... MAX_LOCKDEP_KEYS: 8192
[ 2.028529][ T0] ... CLASHASH_SIZE: 4096
[ 2.045554][ T0] ... MAX_LOCKDEP_ENTRIES: 1048576
[ 2.047369][ T0] ... MAX_LOCKDEP_CHAINS: 1048576
[ 2.049406][ T0] ... CHAINHASH_SIZE: 524288
[ 2.051376][ T0] memory used by lock dependency info: 106625 kB
[ 2.053638][ T0] memory used for stack traces: 8320 kB
[ 2.055715][ T0] per task-struct memory footprint: 1920 bytes
[ 2.058123][ T0] mempolicy: Enabling automatic NUMA balancing. Configure with numa_balancing= or the kernel.numa_balancing sysctl
[ 2.062523][ T0] ACPI: Core revision 20241212
[ 2.064822][ T0] APIC: Switch to symmetric I/O mode setup
[ 2.066614][ T0] x2apic enabled
[ 2.071611][ T0] APIC: Switched APIC routing to: physical x2apic
[ 2.080202][ T0] ..TIMER: vector=0x30 apic1=0 pin1=0 apic2=-1 pin2=-1
[ 2.082132][ T0] clocksource: tsc-early: mask: 0xffffffffffffffff max_cycles: 0x1fb63109b96, max_idle_ns: 440795265316 ns
[ 2.094615][ T0] Calibrating delay loop (skipped) preset value.. 4399.99 BogoMIPS (lpj=21999980)
[ 2.097159][ T0] Last level iTLB entries: 4KB 64, 2MB 8, 4MB 8
[ 2.098499][ T0] Last level dTLB entries: 4KB 64, 2MB 32, 4MB 32, 1GB 4
[ 2.099918][ T0] Spectre V1 : Mitigation: usercopy/swapgs barriers and __user pointer sanitization
[ 2.102698][ T0] Spectre V2 : Spectre BHI mitigation: SW BHB clearing on syscall and VM exit
[ 2.104484][ T0] Spectre V2 : Mitigation: IBRS
[ 2.105540][ T0] Spectre V2 : Spectre v2 / SpectreRSB: Filling RSB on context switch and VMEXIT
[ 2.109513][ T0] RETBleed: Mitigation: IBRS
[ 2.111317][ T0] Spectre V2 : mitigation: Enabling conditional Indirect Branch Prediction Barrier
[ 2.113299][ T0] Spectre V2 : User space: Mitigation: STIBP via prctl
[ 2.114649][ T0] Speculative Store Bypass: Mitigation: Speculative Store Bypass disabled via prctl
[ 2.117580][ T0] MDS: Mitigation: Clear CPU buffers
[ 2.118495][ T0] TAA: Mitigation: Clear CPU buffers
[ 2.120451][ T0] MMIO Stale Data: Vulnerable: Clear CPU buffers attempted, no microcode
[ 2.123857][ T0] x86/fpu: Supporting XSAVE feature 0x001: 'x87 floating point registers'
[ 2.124558][ T0] x86/fpu: Supporting XSAVE feature 0x002: 'SSE registers'
[ 2.126861][ T0] x86/fpu: Supporting XSAVE feature 0x004: 'AVX registers'
[ 2.129671][ T0] x86/fpu: xstate_offset[2]: 576, xstate_sizes[2]: 256
[ 2.134556][ T0] x86/fpu: Enabled xstate features 0x7, context size is 832 bytes, using 'standard' format.
[ 2.558992][ T0] Freeing SMP alternatives memory: 132K
[ 2.560524][ T0] pid_max: default: 32768 minimum: 301
[ 2.562227][ T0] LSM: initializing lsm=lockdown,capability,landlock,yama,safesetid,tomoyo,apparmor,bpf,ima,evm
[ 2.565143][ T0] landlock: Up and running.
[ 2.566184][ T0] Yama: becoming mindful.
[ 2.567752][ T0] TOMOYO Linux initialized
[ 2.570977][ T0] AppArmor: AppArmor initialized
[ 2.575204][ T0] LSM support for eBPF active
[ 2.584242][ T0] Dentry cache hash table entries: 1048576 (order: 11, 8388608 bytes, vmalloc hugepage)
[ 2.588245][ T0] Inode-cache hash table entries: 524288 (order: 10, 4194304 bytes, vmalloc hugepage)
[ 2.594675][ T0] Mount-cache hash table entries: 16384 (order: 5, 131072 bytes, vmalloc)
[ 2.598390][ T0] Mountpoint-cache hash table entries: 16384 (order: 5, 131072 bytes, vmalloc)
[ 2.606995][ T0] Running RCU synchronous self tests
[ 2.609248][ T0] Running RCU synchronous self tests
[ 2.733732][ T1] smpboot: CPU0: Intel(R) Xeon(R) CPU @ 2.20GHz (family: 0x6, model: 0x4f, stepping: 0x0)
[ 2.734535][ T9] ------------[ cut here ]------------
[ 2.734535][ T9] WARNING: CPU: 0 PID: 9 at arch/x86/mm/tlb.c:919 switch_mm_irqs_off+0x686/0x810
[ 2.734535][ T9] Modules linked in:
[ 2.734535][ T9] CPU:serialport: Connected to syzkaller.us-central1-c.ci-upstream-linux-next-kasan-gce-root-test-job-parallel-0 port 1 (session ID: 8b8c42debbe22e4907102c6ca34b474bf814b5a2c14fd2264a6785197a17a5b8, active connections: 1).
0 UID: 0 PID: 9 Comm: kworker/0:0 Not tainted 6.15.0-rc2-next-20250417-syzkaller-04782-gf17a3b8bcabd #0 PREEMPT(full)
[ 2.734535][ T9] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 2.734535][ T9] Workqueue: events once_deferred
[ 2.734535][ T9] RIP: 0010:switch_mm_irqs_off+0x686/0x810
[ 2.734535][ T9] Code: 90 41 f7 c5 00 08 00 00 0f 84 ee fa ff ff 90 0f 0b 90 e9 e5 fa ff ff 90 0f 0b 90 e9 76 fe ff ff 90 0f 0b 90 e9 cc fb ff ff 90 <0f> 0b 90 4d 39 f4 0f 85 eb fb ff ff e9 31 fc ff ff 90 0f 0b 90 e9
[ 2.734535][ T9] RSP: 0000:ffffc900000e75c0 EFLAGS: 00010056
[ 2.734535][ T9] RAX: 0000000000000001 RBX: 0000000000000000 RCX: ffffffff816f9cdd
[ 2.734535][ T9] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88801b070940
[ 2.734535][ T9] RBP: ffffc900000e7690 R08: ffff88801b070947 R09: 1ffff1100360e128
[ 2.734535][ T9] R10: dffffc0000000000 R11: ffffed100360e129 R12: ffffffff8ee49240
[ 2.734535][ T9] R13: ffff88801b070940 R14: ffffffff8ee49240 R15: 0000000000000000
[ 2.734535][ T9] FS: 0000000000000000(0000) GS:ffff888124fa0000(0000) knlGS:0000000000000000
[ 2.734535][ T9] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2.734535][ T9] CR2: ffff88823ffff000 CR3: 000000001b078000 CR4: 00000000003506f0
[ 2.734535][ T9] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2.734535][ T9] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2.734535][ T9] Call Trace:
[ 2.734535][ T9] <TASK>
[ 2.734535][ T9] ? __pfx_switch_mm_irqs_off+0x10/0x10
[ 2.734535][ T9] unuse_temporary_mm+0x160/0x270
[ 2.734535][ T9] ? __pfx_unuse_temporary_mm+0x10/0x10
[ 2.734535][ T9] ? __text_poke+0x6bb/0xb40
[ 2.734535][ T9] ? __text_poke+0x6bb/0xb40
[ 2.734535][ T9] ? serial8250_isa_init_ports+0x6b/0x110
[ 2.734535][ T9] __text_poke+0x7b6/0xb40
[ 2.734535][ T9] ? serial8250_isa_init_ports+0x6b/0x110
[ 2.734535][ T9] ? __pfx_text_poke_memcpy+0x10/0x10
[ 2.734535][ T9] ? __pfx___text_poke+0x10/0x10
[ 2.734535][ T9] ? __pfx___mutex_trylock_common+0x10/0x10
[ 2.734535][ T9] ? __pfx___might_resched+0x10/0x10
[ 2.734535][ T9] ? rcu_is_watching+0x15/0xb0
[ 2.734535][ T9] smp_text_poke_batch_finish+0x3e7/0x12c0
[ 2.734535][ T9] ? arch_jump_label_transform_apply+0x17/0x30
[ 2.734535][ T9] ? __pfx___mutex_lock+0x10/0x10
[ 2.734535][ T9] ? __pfx_smp_text_poke_batch_finish+0x10/0x10
[ 2.734535][ T9] ? arch_jump_label_transform_queue+0x9b/0x100
[ 2.734535][ T9] ? __jump_label_update+0x387/0x3b0
[ 2.734535][ T9] arch_jump_label_transform_apply+0x1c/0x30
[ 2.734535][ T9] static_key_disable_cpuslocked+0xd2/0x1c0
[ 2.734535][ T9] static_key_disable+0x1a/0x20
[ 2.734535][ T9] once_deferred+0x70/0xb0
[ 2.734535][ T9] ? process_scheduled_works+0x9cb/0x18e0
[ 2.734535][ T9] process_scheduled_works+0xac3/0x18e0
[ 2.734535][ T9] ? __pfx_process_scheduled_works+0x10/0x10
[ 2.734535][ T9] ? assign_work+0x367/0x3d0
[ 2.734535][ T9] worker_thread+0x870/0xd50
[ 2.734535][ T9] ? __kthread_parkme+0x1a8/0x200
[ 2.734535][ T9] ? __pfx_worker_thread+0x10/0x10
[ 2.734535][ T9] kthread+0x7b7/0x940
[ 2.734535][ T9] ? __pfx_worker_thread+0x10/0x10
[ 2.734535][ T9] ? __pfx_kthread+0x10/0x10
[ 2.734535][ T9] ? __pfx_kthread+0x10/0x10
[ 2.734535][ T9] ? __pfx_kthread+0x10/0x10
[ 2.734535][ T9] ? __pfx_kthread+0x10/0x10
[ 2.734535][ T9] ? _raw_spin_unlock_irq+0x23/0x50
[ 2.734535][ T9] ? lockdep_hardirqs_on+0x9d/0x150
[ 2.734535][ T9] ? __pfx_kthread+0x10/0x10
[ 2.734535][ T9] ret_from_fork+0x4b/0x80
[ 2.734535][ T9] ? __pfx_kthread+0x10/0x10
[ 2.734535][ T9] ret_from_fork_asm+0x1a/0x30
[ 2.734535][ T9] </TASK>
[ 2.734535][ T9] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 2.734535][ T9] CPU: 0 UID: 0 PID: 9 Comm: kworker/0:0 Not tainted 6.15.0-rc2-next-20250417-syzkaller-04782-gf17a3b8bcabd #0 PREEMPT(full)
[ 2.734535][ T9] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 2.734535][ T9] Workqueue: events once_deferred
[ 2.734535][ T9] Call Trace:
[ 2.734535][ T9] <TASK>
[ 2.734535][ T9] dump_stack_lvl+0x241/0x360
[ 2.734535][ T9] ? __pfx_dump_stack_lvl+0x10/0x10
[ 2.734535][ T9] ? __pfx__printk+0x10/0x10
[ 2.734535][ T9] ? vscnprintf+0x5d/0x90
[ 2.734535][ T9] panic+0x349/0x880
[ 2.734535][ T9] ? __warn+0x174/0x4d0
[ 2.734535][ T9] ? __pfx_panic+0x10/0x10
[ 2.734535][ T9] ? ret_from_fork_asm+0x1a/0x30
[ 2.734535][ T9] __warn+0x344/0x4d0
[ 2.734535][ T9] ? switch_mm_irqs_off+0x686/0x810
[ 2.734535][ T9] report_bug+0x2b3/0x500
[ 2.734535][ T9] ? switch_mm_irqs_off+0x686/0x810
[ 2.734535][ T9] ? switch_mm_irqs_off+0x686/0x810
[ 2.734535][ T9] ? switch_mm_irqs_off+0x688/0x810
[ 2.734535][ T9] handle_bug+0x89/0x170
[ 2.734535][ T9] exc_invalid_op+0x1a/0x50
[ 2.734535][ T9] asm_exc_invalid_op+0x1a/0x20
[ 2.734535][ T9] RIP: 0010:switch_mm_irqs_off+0x686/0x810
[ 2.734535][ T9] Code: 90 41 f7 c5 00 08 00 00 0f 84 ee fa ff ff 90 0f 0b 90 e9 e5 fa ff ff 90 0f 0b 90 e9 76 fe ff ff 90 0f 0b 90 e9 cc fb ff ff 90 <0f> 0b 90 4d 39 f4 0f 85 eb fb ff ff e9 31 fc ff ff 90 0f 0b 90 e9
[ 2.734535][ T9] RSP: 0000:ffffc900000e75c0 EFLAGS: 00010056
[ 2.734535][ T9] RAX: 0000000000000001 RBX: 0000000000000000 RCX: ffffffff816f9cdd
[ 2.734535][ T9] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88801b070940
[ 2.734535][ T9] RBP: ffffc900000e7690 R08: ffff88801b070947 R09: 1ffff1100360e128
[ 2.734535][ T9] R10: dffffc0000000000 R11: ffffed100360e129 R12: ffffffff8ee49240
[ 2.734535][ T9] R13: ffff88801b070940 R14: ffffffff8ee49240 R15: 0000000000000000
[ 2.734535][ T9] ? switch_mm_irqs_off+0x26d/0x810
[ 2.734535][ T9] ? __pfx_switch_mm_irqs_off+0x10/0x10
[ 2.734535][ T9] unuse_temporary_mm+0x160/0x270
[ 2.734535][ T9] ? __pfx_unuse_temporary_mm+0x10/0x10
[ 2.734535][ T9] ? __text_poke+0x6bb/0xb40
[ 2.734535][ T9] ? __text_poke+0x6bb/0xb40
[ 2.734535][ T9] ? serial8250_isa_init_ports+0x6b/0x110
[ 2.734535][ T9] __text_poke+0x7b6/0xb40
[ 2.734535][ T9] ? serial8250_isa_init_ports+0x6b/0x110
[ 2.734535][ T9] ? __pfx_text_poke_memcpy+0x10/0x10
[ 2.734535][ T9] ? __pfx___text_poke+0x10/0x10
[ 2.734535][ T9] ? __pfx___mutex_trylock_common+0x10/0x10
[ 2.734535][ T9] ? __pfx___might_resched+0x10/0x10
[ 2.734535][ T9] ? rcu_is_watching+0x15/0xb0
[ 2.734535][ T9] smp_text_poke_batch_finish+0x3e7/0x12c0
[ 2.734535][ T9] ? arch_jump_label_transform_apply+0x17/0x30
[ 2.734535][ T9] ? __pfx___mutex_lock+0x10/0x10
[ 2.734535][ T9] ? __pfx_smp_text_poke_batch_finish+0x10/0x10
[ 2.734535][ T9] ? arch_jump_label_transform_queue+0x9b/0x100
[ 2.734535][ T9] ? __jump_label_update+0x387/0x3b0
[ 2.734535][ T9] arch_jump_label_transform_apply+0x1c/0x30
[ 2.734535][ T9] static_key_disable_cpuslocked+0xd2/0x1c0
[ 2.734535][ T9] static_key_disable+0x1a/0x20
[ 2.734535][ T9] once_deferred+0x70/0xb0
[ 2.734535][ T9] ? process_scheduled_works+0x9cb/0x18e0
[ 2.734535][ T9] process_scheduled_works+0xac3/0x18e0
[ 2.734535][ T9] ? __pfx_process_scheduled_works+0x10/0x10
[ 2.734535][ T9] ? assign_work+0x367/0x3d0
[ 2.734535][ T9] worker_thread+0x870/0xd50
[ 2.734535][ T9] ? __kthread_parkme+0x1a8/0x200
[ 2.734535][ T9] ? __pfx_worker_thread+0x10/0x10
[ 2.734535][ T9] kthread+0x7b7/0x940
[ 2.734535][ T9] ? __pfx_worker_thread+0x10/0x10
[ 2.734535][ T9] ? __pfx_kthread+0x10/0x10
[ 2.734535][ T9] ? __pfx_kthread+0x10/0x10
[ 2.734535][ T9] ? __pfx_kthread+0x10/0x10
[ 2.734535][ T9] ? __pfx_kthread+0x10/0x10
[ 2.734535][ T9] ? _raw_spin_unlock_irq+0x23/0x50
[ 2.734535][ T9] ? lockdep_hardirqs_on+0x9d/0x150
[ 2.734535][ T9] ? __pfx_kthread+0x10/0x10
[ 2.734535][ T9] ret_from_fork+0x4b/0x80
[ 2.734535][ T9] ? __pfx_kthread+0x10/0x10
[ 2.734535][ T9] ret_from_fork_asm+0x1a/0x30
[ 2.734535][ T9] </TASK>
[ 2.734535][ T9] Rebooting in 86400 seconds..
syzkaller build log:
go env (err=<nil>)
GO111MODULE='auto'
GOARCH='amd64'
GOBIN=''
GOCACHE='/syzkaller/.cache/go-build'
GOENV='/syzkaller/.config/go/env'
GOEXE=''
GOEXPERIMENT=''
GOFLAGS=''
GOHOSTARCH='amd64'
GOHOSTOS='linux'
GOINSECURE=''
GOMODCACHE='/syzkaller/jobs-2/linux/gopath/pkg/mod'
GONOPROXY=''
GONOSUMDB=''
GOOS='linux'
GOPATH='/syzkaller/jobs-2/linux/gopath'
GOPRIVATE=''
GOPROXY='https://proxy.golang.org,direct'
GOROOT='/syzkaller/jobs-2/linux/gopath/pkg/mod/golang.org/toolchain@...0.1-go1.23.7.linux-amd64'
GOSUMDB='sum.golang.org'
GOTMPDIR=''
GOTOOLCHAIN='auto'
GOTOOLDIR='/syzkaller/jobs-2/linux/gopath/pkg/mod/golang.org/toolchain@...0.1-go1.23.7.linux-amd64/pkg/tool/linux_amd64'
GOVCS=''
GOVERSION='go1.23.7'
GODEBUG=''
GOTELEMETRY='local'
GOTELEMETRYDIR='/syzkaller/.config/go/telemetry'
GCCGO='gccgo'
GOAMD64='v1'
AR='ar'
CC='gcc'
CXX='g++'
CGO_ENABLED='1'
GOMOD='/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/go.mod'
GOWORK=''
CGO_CFLAGS='-O2 -g'
CGO_CPPFLAGS=''
CGO_CXXFLAGS='-O2 -g'
CGO_FFLAGS='-O2 -g'
CGO_LDFLAGS='-O2 -g'
PKG_CONFIG='pkg-config'
GOGCCFLAGS='-fPIC -m64 -pthread -Wl,--no-gc-sections -fmessage-length=0 -ffile-prefix-map=/tmp/go-build1748814211=/tmp/go-build -gno-record-gcc-switches'
git status (err=<nil>)
HEAD detached at 0bd6db4180
nothing to commit, working tree clean
tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
go list -f '{{.Stale}}' ./sys/syz-sysgen | grep -q false || go install ./sys/syz-sysgen
make .descriptions
tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
bin/syz-sysgen
touch .descriptions
GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=0bd6db418098e2d98a2edf948b41410d3d9f9e70 -X 'github.com/google/syzkaller/prog.gitRevisionDate=20250411-130225'" -o ./bin/linux_amd64/syz-execprog github.com/google/syzkaller/tools/syz-execprog
mkdir -p ./bin/linux_amd64
g++ -o ./bin/linux_amd64/syz-executor executor/executor.cc \
-m64 -O2 -pthread -Wall -Werror -Wparentheses -Wunused-const-variable -Wframe-larger-than=16384 -Wno-stringop-overflow -Wno-array-bounds -Wno-format-overflow -Wno-unused-but-set-variable -Wno-unused-command-line-argument -static-pie -std=c++17 -I. -Iexecutor/_include -DGOOS_linux=1 -DGOARCH_amd64=1 \
-DHOSTGOOS_linux=1 -DGIT_REVISION=\"0bd6db418098e2d98a2edf948b41410d3d9f9e70\"
/usr/bin/ld: /tmp/ccfRLisG.o: in function `Connection::Connect(char const*, char const*)':
executor.cc:(.text._ZN10Connection7ConnectEPKcS1_[_ZN10Connection7ConnectEPKcS1_]+0x104): warning: Using 'gethostbyname' in statically linked applications requires at runtime the shared libraries from the glibc version used for linking
Error text is too large and was truncated, full error text is at:
https://syzkaller.appspot.com/x/error.txt?x=1143c568580000
Tested on:
commit: f17a3b8b jfs: implement migrate_folio for jfs_metapage..
git tree: https://github.com/AMDESE/linux-mm.git
kernel config: https://syzkaller.appspot.com/x/.config?x=796b05042c1188b
dashboard link: https://syzkaller.appspot.com/bug?extid=8bb6fd945af4e0ad9299
compiler: Debian clang version 15.0.6, Debian LLD 15.0.6
Note: no patches were applied.
Powered by blists - more mailing lists