[moderation] [fs?] WARNING in invalidate_bh_lrus_cpu
0 views
Skip to first unread message
syzbot
Apr 18, 2024, 11:03:31 AM (13 days ago) Apr 18
to syzkaller-upst...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: b5d2afe8745b Merge branches 'for-next/kbuild', 'for-next/m..
git tree: git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci
console output: https://syzkaller.appspot.com/x/log.txt?x=144f2f4d180000
kernel config: https://syzkaller.appspot.com/x/.config?x=560f5db1d0b3f6d0
dashboard link: https://syzkaller.appspot.com/bug?extid=26ead353012001d126b5
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
userspace arch: arm64
CC: [bra...@kernel.org ja...@suse.cz linux-...@vger.kernel.org linux-...@vger.kernel.org vi...@zeniv.linux.org.uk]
Unfortunately, I don't have any reproducer for this issue yet.
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/50bff35e1638/disk-b5d2afe8.raw.xz
vmlinux: https://storage.googleapis.com/syzbot-assets/4eeaa73e7ed1/vmlinux-b5d2afe8.xz
kernel image: https://storage.googleapis.com/syzbot-assets/8e796b089aa9/Image-b5d2afe8.gz.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+26ead3...@syzkaller.appspotmail.com
------------[ cut here ]------------
VFS: brelse: Trying to free free buffer
WARNING: CPU: 0 PID: 8 at fs/buffer.c:1235 __brelse fs/buffer.c:1235 [inline]
WARNING: CPU: 0 PID: 8 at fs/buffer.c:1235 brelse include/linux/buffer_head.h:309 [inline]
WARNING: CPU: 0 PID: 8 at fs/buffer.c:1235 __invalidate_bh_lrus fs/buffer.c:1487 [inline]
WARNING: CPU: 0 PID: 8 at fs/buffer.c:1235 invalidate_bh_lrus_cpu+0x148/0x1e4 fs/buffer.c:1533
Modules linked in:
CPU: 0 PID: 8 Comm: kworker/0:1 Not tainted 6.9.0-rc3-syzkaller-gb5d2afe8745b #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
Workqueue: mm_percpu_wq lru_add_drain_per_cpu
pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : __brelse fs/buffer.c:1235 [inline]
pc : brelse include/linux/buffer_head.h:309 [inline]
pc : __invalidate_bh_lrus fs/buffer.c:1487 [inline]
pc : invalidate_bh_lrus_cpu+0x148/0x1e4 fs/buffer.c:1533
lr : __brelse fs/buffer.c:1235 [inline]
lr : brelse include/linux/buffer_head.h:309 [inline]
lr : __invalidate_bh_lrus fs/buffer.c:1487 [inline]
lr : invalidate_bh_lrus_cpu+0x148/0x1e4 fs/buffer.c:1533
sp : ffff800093be7a90
x29: ffff800093be7a90 x28: ffff70001277cf80 x27: dfff800000000000
x26: 0000000000000001 x25: 00000000ffffffff x24: ffff0001b3ddcfd0
x23: 0000000000000030 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000f41b7060 x19: ffff80008b0bba00 x18: 0000000000000008
x17: 0000000000000000 x16: ffff80008ae71340 x15: 0000000000000001
x14: 1fffe000367b9a02 x13: 0000000000000000 x12: 0000000000000000
x11: 0000000000000002 x10: 0000000000ff0100 x9 : 44eb368bf82de400
x8 : 44eb368bf82de400 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff800093be71f8 x4 : ffff80008ef65060 x3 : ffff8000805e9200
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000
Call trace:
__brelse fs/buffer.c:1235 [inline]
brelse include/linux/buffer_head.h:309 [inline]
__invalidate_bh_lrus fs/buffer.c:1487 [inline]
invalidate_bh_lrus_cpu+0x148/0x1e4 fs/buffer.c:1533
lru_add_and_bh_lrus_drain mm/swap.c:783 [inline]
lru_add_drain_per_cpu+0x114/0x16c mm/swap.c:802
process_one_work+0x7b8/0x15d4 kernel/workqueue.c:3254
process_scheduled_works kernel/workqueue.c:3335 [inline]
worker_thread+0x938/0xef4 kernel/workqueue.c:3416
kthread+0x288/0x310 kernel/kthread.c:388
ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:860
irq event stamp: 888246
hardirqs last enabled at (888245): [<ffff80008af64ff8>] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:159 [inline]
hardirqs last enabled at (888245): [<ffff80008af64ff8>] _raw_spin_unlock_irq+0x30/0x80 kernel/locking/spinlock.c:202
hardirqs last disabled at (888246): [<ffff800080c32b78>] invalidate_bh_lrus_cpu+0x40/0x1e4 fs/buffer.c:1531
softirqs last enabled at (888238): [<ffff8000800218e4>] softirq_handle_end kernel/softirq.c:400 [inline]
softirqs last enabled at (888238): [<ffff8000800218e4>] __do_softirq+0xb10/0xd2c kernel/softirq.c:583
softirqs last disabled at (888211): [<ffff80008002ad34>] ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81
---[ end trace 0000000000000000 ]---
kernel write not supported for file /input/mice (pid: 8 comm: kworker/0:1)
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot found the following issue on:
HEAD commit: b5d2afe8745b Merge branches 'for-next/kbuild', 'for-next/m..
git tree: git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci
console output: https://syzkaller.appspot.com/x/log.txt?x=144f2f4d180000
kernel config: https://syzkaller.appspot.com/x/.config?x=560f5db1d0b3f6d0
dashboard link: https://syzkaller.appspot.com/bug?extid=26ead353012001d126b5
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
userspace arch: arm64
CC: [bra...@kernel.org ja...@suse.cz linux-...@vger.kernel.org linux-...@vger.kernel.org vi...@zeniv.linux.org.uk]
Unfortunately, I don't have any reproducer for this issue yet.
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/50bff35e1638/disk-b5d2afe8.raw.xz
vmlinux: https://storage.googleapis.com/syzbot-assets/4eeaa73e7ed1/vmlinux-b5d2afe8.xz
kernel image: https://storage.googleapis.com/syzbot-assets/8e796b089aa9/Image-b5d2afe8.gz.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+26ead3...@syzkaller.appspotmail.com
------------[ cut here ]------------
VFS: brelse: Trying to free free buffer
WARNING: CPU: 0 PID: 8 at fs/buffer.c:1235 __brelse fs/buffer.c:1235 [inline]
WARNING: CPU: 0 PID: 8 at fs/buffer.c:1235 brelse include/linux/buffer_head.h:309 [inline]
WARNING: CPU: 0 PID: 8 at fs/buffer.c:1235 __invalidate_bh_lrus fs/buffer.c:1487 [inline]
WARNING: CPU: 0 PID: 8 at fs/buffer.c:1235 invalidate_bh_lrus_cpu+0x148/0x1e4 fs/buffer.c:1533
Modules linked in:
CPU: 0 PID: 8 Comm: kworker/0:1 Not tainted 6.9.0-rc3-syzkaller-gb5d2afe8745b #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
Workqueue: mm_percpu_wq lru_add_drain_per_cpu
pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : __brelse fs/buffer.c:1235 [inline]
pc : brelse include/linux/buffer_head.h:309 [inline]
pc : __invalidate_bh_lrus fs/buffer.c:1487 [inline]
pc : invalidate_bh_lrus_cpu+0x148/0x1e4 fs/buffer.c:1533
lr : __brelse fs/buffer.c:1235 [inline]
lr : brelse include/linux/buffer_head.h:309 [inline]
lr : __invalidate_bh_lrus fs/buffer.c:1487 [inline]
lr : invalidate_bh_lrus_cpu+0x148/0x1e4 fs/buffer.c:1533
sp : ffff800093be7a90
x29: ffff800093be7a90 x28: ffff70001277cf80 x27: dfff800000000000
x26: 0000000000000001 x25: 00000000ffffffff x24: ffff0001b3ddcfd0
x23: 0000000000000030 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000f41b7060 x19: ffff80008b0bba00 x18: 0000000000000008
x17: 0000000000000000 x16: ffff80008ae71340 x15: 0000000000000001
x14: 1fffe000367b9a02 x13: 0000000000000000 x12: 0000000000000000
x11: 0000000000000002 x10: 0000000000ff0100 x9 : 44eb368bf82de400
x8 : 44eb368bf82de400 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff800093be71f8 x4 : ffff80008ef65060 x3 : ffff8000805e9200
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000
Call trace:
__brelse fs/buffer.c:1235 [inline]
brelse include/linux/buffer_head.h:309 [inline]
__invalidate_bh_lrus fs/buffer.c:1487 [inline]
invalidate_bh_lrus_cpu+0x148/0x1e4 fs/buffer.c:1533
lru_add_and_bh_lrus_drain mm/swap.c:783 [inline]
lru_add_drain_per_cpu+0x114/0x16c mm/swap.c:802
process_one_work+0x7b8/0x15d4 kernel/workqueue.c:3254
process_scheduled_works kernel/workqueue.c:3335 [inline]
worker_thread+0x938/0xef4 kernel/workqueue.c:3416
kthread+0x288/0x310 kernel/kthread.c:388
ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:860
irq event stamp: 888246
hardirqs last enabled at (888245): [<ffff80008af64ff8>] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:159 [inline]
hardirqs last enabled at (888245): [<ffff80008af64ff8>] _raw_spin_unlock_irq+0x30/0x80 kernel/locking/spinlock.c:202
hardirqs last disabled at (888246): [<ffff800080c32b78>] invalidate_bh_lrus_cpu+0x40/0x1e4 fs/buffer.c:1531
softirqs last enabled at (888238): [<ffff8000800218e4>] softirq_handle_end kernel/softirq.c:400 [inline]
softirqs last enabled at (888238): [<ffff8000800218e4>] __do_softirq+0xb10/0xd2c kernel/softirq.c:583
softirqs last disabled at (888211): [<ffff80008002ad34>] ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81
---[ end trace 0000000000000000 ]---
kernel write not supported for file /input/mice (pid: 8 comm: kworker/0:1)
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
Reply all
Reply to author
Forward
0 new messages