general protection fault in mm_update_next_owner (2)
5 views
Skip to first unread message
syzbot
Feb 5, 2021, 4:01:23 AM2/5/21
to syzkaller...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 2c8a3fce Linux 4.14.218
git tree: linux-4.14.y
console output: https://syzkaller.appspot.com/x/log.txt?x=14033de8d00000
kernel config: https://syzkaller.appspot.com/x/.config?x=80e596b8b0902d96
dashboard link: https://syzkaller.appspot.com/bug?extid=adea392a1e3dcfed468c
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+adea39...@syzkaller.appspotmail.com
kasan: CONFIG_KASAN_INLINE enabled
kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] PREEMPT SMP KASAN
Modules linked in:
CPU: 1 PID: 3010 Comm: syz-executor.2 Not tainted 4.14.218-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
task: ffff8880b31b4200 task.stack: ffff888230018000
RIP: 0010:__read_once_size include/linux/compiler.h:183 [inline]
RIP: 0010:mm_update_next_owner+0x367/0x5b0 kernel/exit.c:451
RSP: 0018:ffff88823001fd48 EFLAGS: 00010202
RAX: 0000000000000002 RBX: dffffc0000000000 RCX: 0000000000001872
RDX: 0000000000000000 RSI: 0000000000000200 RDI: ffff888000134900
RBP: 0000000000000000 R08: ffff8880000905b0 R09: 000000000006008a
R10: ffff8880b31b4a88 R11: ffff8880b31b4200 R12: ffff888093fc5900
R13: 0000000000000010 R14: ffff8880b31b4200 R15: ffff88802d7f8640
FS: 0000000000000000(0000) GS:ffff8880ba500000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000568000 CR3: 000000022ba83000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
exit_mm kernel/exit.c:547 [inline]
do_exit+0x97c/0x2850 kernel/exit.c:855
do_group_exit+0x100/0x2e0 kernel/exit.c:965
SYSC_exit_group kernel/exit.c:976 [inline]
SyS_exit_group+0x19/0x20 kernel/exit.c:974
do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x465b09
RSP: 002b:00007ffdd51cb7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 000000000000001e RCX: 0000000000465b09
RDX: 0000000000418e1b RSI: ffffffffffffffbc RDI: 0000000000000000
RBP: 0000000000000000 R08: 0000001b2ef20990 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffdd51cb8d0
Code: 00 48 8d bd 20 03 00 00 48 89 f8 48 c1 e8 03 80 3c 18 00 0f 85 fb 01 00 00 48 8b ad 20 03 00 00 4c 8d 6d 10 4c 89 e8 48 c1 e8 03 <80> 3c 18 00 0f 85 d2 01 00 00 48 8b 45 10 48 8d a8 68 fa ff ff
RIP: __read_once_size include/linux/compiler.h:183 [inline] RSP: ffff88823001fd48
RIP: mm_update_next_owner+0x367/0x5b0 kernel/exit.c:451 RSP: ffff88823001fd48
general protection fault: 0000 [#2] PREEMPT SMP KASAN
---[ end trace bd4b57a9d00f0c1a ]---
Modules linked in:
CPU: 0 PID: 3015 Comm: syz-executor.0 Tainted: G D 4.14.218-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
task: ffff888033362300 task.stack: ffff888231708000
RIP: 0010:__read_once_size include/linux/compiler.h:183 [inline]
RIP: 0010:mm_update_next_owner+0x367/0x5b0 kernel/exit.c:451
RSP: 0018:ffff88823170fd48 EFLAGS: 00010202
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot found the following issue on:
HEAD commit: 2c8a3fce Linux 4.14.218
git tree: linux-4.14.y
console output: https://syzkaller.appspot.com/x/log.txt?x=14033de8d00000
kernel config: https://syzkaller.appspot.com/x/.config?x=80e596b8b0902d96
dashboard link: https://syzkaller.appspot.com/bug?extid=adea392a1e3dcfed468c
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+adea39...@syzkaller.appspotmail.com
kasan: CONFIG_KASAN_INLINE enabled
kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] PREEMPT SMP KASAN
Modules linked in:
CPU: 1 PID: 3010 Comm: syz-executor.2 Not tainted 4.14.218-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
task: ffff8880b31b4200 task.stack: ffff888230018000
RIP: 0010:__read_once_size include/linux/compiler.h:183 [inline]
RIP: 0010:mm_update_next_owner+0x367/0x5b0 kernel/exit.c:451
RSP: 0018:ffff88823001fd48 EFLAGS: 00010202
RAX: 0000000000000002 RBX: dffffc0000000000 RCX: 0000000000001872
RDX: 0000000000000000 RSI: 0000000000000200 RDI: ffff888000134900
RBP: 0000000000000000 R08: ffff8880000905b0 R09: 000000000006008a
R10: ffff8880b31b4a88 R11: ffff8880b31b4200 R12: ffff888093fc5900
R13: 0000000000000010 R14: ffff8880b31b4200 R15: ffff88802d7f8640
FS: 0000000000000000(0000) GS:ffff8880ba500000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000568000 CR3: 000000022ba83000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
exit_mm kernel/exit.c:547 [inline]
do_exit+0x97c/0x2850 kernel/exit.c:855
do_group_exit+0x100/0x2e0 kernel/exit.c:965
SYSC_exit_group kernel/exit.c:976 [inline]
SyS_exit_group+0x19/0x20 kernel/exit.c:974
do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x465b09
RSP: 002b:00007ffdd51cb7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 000000000000001e RCX: 0000000000465b09
RDX: 0000000000418e1b RSI: ffffffffffffffbc RDI: 0000000000000000
RBP: 0000000000000000 R08: 0000001b2ef20990 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffdd51cb8d0
Code: 00 48 8d bd 20 03 00 00 48 89 f8 48 c1 e8 03 80 3c 18 00 0f 85 fb 01 00 00 48 8b ad 20 03 00 00 4c 8d 6d 10 4c 89 e8 48 c1 e8 03 <80> 3c 18 00 0f 85 d2 01 00 00 48 8b 45 10 48 8d a8 68 fa ff ff
RIP: __read_once_size include/linux/compiler.h:183 [inline] RSP: ffff88823001fd48
RIP: mm_update_next_owner+0x367/0x5b0 kernel/exit.c:451 RSP: ffff88823001fd48
general protection fault: 0000 [#2] PREEMPT SMP KASAN
---[ end trace bd4b57a9d00f0c1a ]---
Modules linked in:
CPU: 0 PID: 3015 Comm: syz-executor.0 Tainted: G D 4.14.218-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
task: ffff888033362300 task.stack: ffff888231708000
RIP: 0010:__read_once_size include/linux/compiler.h:183 [inline]
RIP: 0010:mm_update_next_owner+0x367/0x5b0 kernel/exit.c:451
RSP: 0018:ffff88823170fd48 EFLAGS: 00010202
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot
Sep 1, 2021, 4:39:15 PM9/1/21
to syzkaller...@googlegroups.com
Auto-closing this bug as obsolete.
Crashes did not happen for a while, no reproducer and no activity.
Crashes did not happen for a while, no reproducer and no activity.
Reply all
Reply to author
Forward
0 new messages