syzbot

 sign-in | mailing list | source | docs
🐞 Open [1477]
Subsystems
🐞 Fixed [6704]
🐞 Invalid [17222]
Missing Backports [217]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

kernel BUG in mpage_readahead

Status: upstream: reported on 2025/07/29 11:24
Subsystems: fs
[Documentation on labels]
Reported-by: syzbot+fdba5cca73fee92c69d6@syzkaller.appspotmail.com
First crash: 104d, last: 8h48m
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] [fs?] kernel BUG in mpage_readahead 0 (1) 2025/07/29 11:24

Sample crash report:
------------[ cut here ]------------
kernel BUG at ./include/linux/pagemap.h:1408!
Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
CPU: 0 UID: 0 PID: 23742 Comm: syz.3.4551 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
RIP: 0010:__readahead_folio include/linux/pagemap.h:1408 [inline]
RIP: 0010:readahead_folio include/linux/pagemap.h:1434 [inline]
RIP: 0010:mpage_readahead+0x4ad/0x5a0 fs/mpage.c:367
Code: 5e 41 5f c3 cc cc cc cc e8 f0 34 70 ff 48 89 ef e8 68 1c ad ff e9 54 fe ff ff 4c 8b 6c 24 18 e9 43 ff ff ff e8 d4 34 70 ff 90 <0f> 0b e8 cc 34 70 ff 48 c7 c6 c0 b8 a0 8b 48 89 ef e8 8d 4d ba ff
RSP: 0018:ffffc90003f172e0 EFLAGS: 00010246
RAX: 0000000000080000 RBX: ffffc90003f177f0 RCX: ffffc9000e39e000
RDX: 0000000000080000 RSI: ffffffff824cd8cc RDI: 0000000000000004
RBP: 0000000000000004 R08: 0000000000000004 R09: 0000000000000004
R10: 0000000000000001 R11: 0000000000000000 R12: dffffc0000000000
R13: fffff520007e2f02 R14: 0000000000000001 R15: 1ffff920007e2f02
FS:  00007f83e1a2d6c0(0000) GS:ffff888124a08000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b2ff02ff8 CR3: 0000000028936000 CR4: 00000000003526f0
DR0: ffffffffffffffff DR1: 00000000000001f8 DR2: 0000000000000083
DR3: ffffffffefffff15 DR6: 00000000ffff0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 read_pages+0x1c4/0xc70 mm/readahead.c:163
 page_cache_ra_unbounded+0x4b9/0xa10 mm/readahead.c:302
 do_page_cache_ra mm/readahead.c:332 [inline]
 force_page_cache_ra+0x246/0x340 mm/readahead.c:361
 page_cache_sync_ra+0x20c/0xbf0 mm/readahead.c:579
 filemap_get_pages+0x717/0x1d30 mm/filemap.c:2638
 filemap_splice_read+0x5cb/0xd60 mm/filemap.c:3027
 do_splice_read fs/splice.c:982 [inline]
 do_splice_read+0x285/0x370 fs/splice.c:956
 splice_direct_to_actor+0x2a1/0xa30 fs/splice.c:1086
 do_splice_direct_actor fs/splice.c:1204 [inline]
 do_splice_direct+0x174/0x240 fs/splice.c:1230
 do_sendfile+0xb06/0xe50 fs/read_write.c:1370
 __do_sys_sendfile64 fs/read_write.c:1431 [inline]
 __se_sys_sendfile64 fs/read_write.c:1417 [inline]
 __x64_sys_sendfile64+0x1d8/0x220 fs/read_write.c:1417
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xcd/0xfa0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f83e0b8f6c9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f83e1a2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
RAX: ffffffffffffffda RBX: 00007f83e0de6180 RCX: 00007f83e0b8f6c9
RDX: 0000000000000000 RSI: 000000000000000b RDI: 000000000000000b
RBP: 00007f83e0c11f91 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000200000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007f83e0de6218 R14: 00007f83e0de6180 R15: 00007ffc97cfebe8
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:__readahead_folio include/linux/pagemap.h:1408 [inline]
RIP: 0010:readahead_folio include/linux/pagemap.h:1434 [inline]
RIP: 0010:mpage_readahead+0x4ad/0x5a0 fs/mpage.c:367
Code: 5e 41 5f c3 cc cc cc cc e8 f0 34 70 ff 48 89 ef e8 68 1c ad ff e9 54 fe ff ff 4c 8b 6c 24 18 e9 43 ff ff ff e8 d4 34 70 ff 90 <0f> 0b e8 cc 34 70 ff 48 c7 c6 c0 b8 a0 8b 48 89 ef e8 8d 4d ba ff
RSP: 0018:ffffc90003f172e0 EFLAGS: 00010246
RAX: 0000000000080000 RBX: ffffc90003f177f0 RCX: ffffc9000e39e000
RDX: 0000000000080000 RSI: ffffffff824cd8cc RDI: 0000000000000004
RBP: 0000000000000004 R08: 0000000000000004 R09: 0000000000000004
R10: 0000000000000001 R11: 0000000000000000 R12: dffffc0000000000
R13: fffff520007e2f02 R14: 0000000000000001 R15: 1ffff920007e2f02
FS:  00007f83e1a2d6c0(0000) GS:ffff888124b08000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f7a97a14990 CR3: 0000000028936000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000004501 DR6: 00000000ffff0ff0 DR7: 0000000000000400

Crashes (32):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/11/04 17:50 upstream c9cfc122f037 686bf657 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root kernel BUG in mpage_readahead
2025/10/25 17:04 upstream 566771afc7a8 c0460fcd .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root kernel BUG in mpage_readahead
2025/10/01 15:20 upstream 50c19e20ed2e a1859138 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-badwrites-root kernel BUG in mpage_readahead
2025/09/30 10:18 upstream 1896ce8eb6c6 86341da6 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root kernel BUG in mpage_readahead
2025/09/10 12:01 upstream 9dd1835ecda5 fdeaa69b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root kernel BUG in mpage_readahead
2025/08/28 22:19 upstream 07d9df80082b 443c11c7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root kernel BUG in mpage_readahead
2025/08/28 20:51 upstream 07d9df80082b 443c11c7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root kernel BUG in mpage_readahead
2025/08/28 20:48 upstream 07d9df80082b 443c11c7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root kernel BUG in mpage_readahead
2025/08/19 13:03 upstream 038d61fd6422 523f460e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root kernel BUG in mpage_readahead
2025/08/15 05:00 upstream 24ea63ea3877 dcc075fb .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root kernel BUG in mpage_readahead
2025/08/14 02:14 upstream 038d61fd6422 22ec1469 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root kernel BUG in mpage_readahead
2025/08/12 16:27 upstream 53e760d89498 c06e8995 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root kernel BUG in mpage_readahead
2025/08/01 05:10 upstream f2d282e1dfb3 0c075d67 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root kernel BUG in mpage_readahead
2025/07/25 04:26 upstream 25fae0b93d1d fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root kernel BUG in mpage_readahead
2025/07/24 23:34 upstream 25fae0b93d1d fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root kernel BUG in mpage_readahead
2025/11/05 15:54 upstream 284922f4c563 a6c9c731 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream kernel BUG in mpage_readahead
2025/11/04 06:30 upstream 8bb886cb8f3a 686bf657 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root kernel BUG in mpage_readahead
2025/11/02 15:20 upstream 691d401c7e0e 2c50b6a9 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root kernel BUG in mpage_readahead
2025/10/30 07:16 upstream e53642b87a4f fd2207e7 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream kernel BUG in mpage_readahead
2025/10/13 02:19 linux-next 2b763d465239 ff1712fe .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root kernel BUG in mpage_readahead
2025/09/01 17:02 linux-next 7fa4d8dc380f 807a3b61 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce kernel BUG in mpage_readahead
2025/08/26 10:09 linux-next 7fa4d8dc380f bf27483f .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce kernel BUG in mpage_readahead
2025/08/26 01:07 linux-next 7fa4d8dc380f bf27483f .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root kernel BUG in mpage_readahead
2025/08/21 22:39 linux-next 7fa4d8dc380f 0b9605c8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root kernel BUG in mpage_readahead
2025/08/21 20:47 linux-next 7fa4d8dc380f 0b9605c8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root kernel BUG in mpage_readahead
2025/08/21 20:39 linux-next 7fa4d8dc380f 0b9605c8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root kernel BUG in mpage_readahead
2025/08/21 19:59 linux-next 7fa4d8dc380f 0b9605c8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root kernel BUG in mpage_readahead
2025/08/07 00:58 linux-next b7d4e259682c 4bd24a3e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root kernel BUG in mpage_readahead
2025/08/04 04:37 linux-next 84b92a499e7e 7368264b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root kernel BUG in mpage_readahead
2025/07/27 10:44 linux-next d086c886ceb9 fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-rust-kasan-gce kernel BUG in mpage_readahead
2025/11/04 17:16 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci dcb6fa37fd7b 686bf657 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 kernel BUG in mpage_readahead
2025/11/02 10:02 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci dcb6fa37fd7b 2c50b6a9 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 kernel BUG in mpage_readahead
* Struck through repros no longer work on HEAD.