Re: BUG: Bad rss-counter state (4)
From: Dmitry Vyukov
Date: Mon May 18 2020 - 03:38:37 EST
On Mon, May 18, 2020 at 9:27 AM syzbot
<syzbot+347e2331d03d06ab0224@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
>
> Hello,
>
> syzbot found the following crash on:
>
> HEAD commit: ac935d22 Add linux-next specific files for 20200415
> git tree: linux-next
> console output: https://syzkaller.appspot.com/x/log.txt?x=14b66e6e100000
> kernel config: https://syzkaller.appspot.com/x/.config?x=bc498783097e9019
> dashboard link: https://syzkaller.appspot.com/bug?extid=347e2331d03d06ab0224
> compiler: gcc (GCC) 9.0.0 20181231 (experimental)
> syz repro: https://syzkaller.appspot.com/x/repro.syz?x=12d18e6e100000
> C reproducer: https://syzkaller.appspot.com/x/repro.c?x=104170d6100000
>
> IMPORTANT: if you fix the bug, please add the following tag to the commit:
> Reported-by: syzbot+347e2331d03d06ab0224@xxxxxxxxxxxxxxxxxxxxxxxxx
This seems to be related to the mmap/mremap calls, +mm/mmap.c maintainers.
> BUG: Bad rss-counter state mm:00000000a67744c9 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:00000000f49d6d70 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:0000000006212dd2 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:00000000b6ae35d3 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:00000000d44d5c2e type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:0000000023502204 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:000000001a912a5c type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:0000000072bd9e23 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:0000000053ee80f7 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:000000003cc0aff9 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:000000005a4ef043 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:00000000fe0ab895 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:00000000863004ed type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:0000000064449491 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:00000000f6a209ff type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:000000008100dc4b type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:00000000f80eb0e8 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:00000000475e50a5 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:00000000f2f5edcf type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:00000000bf721456 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:00000000d8d29ec3 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:00000000b5dff60e type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:000000001f0fe928 type:MM_ANONPAGES val:1
> BUG: Bad rss-counter state mm:000000006fc01973 type:MM_ANONPAGES val:1
>
>
> ---
> This bug is generated by a bot. It may contain errors.
> See https://goo.gl/tpsmEJ for more information about syzbot.
> syzbot engineers can be reached at syzkaller@xxxxxxxxxxxxxxxxx
>
> syzbot will keep track of this bug report. See:
> https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
> syzbot can test patches for this bug, for details see:
> https://goo.gl/tpsmEJ#testing-patches
>
> --
> You received this message because you are subscribed to the Google Groups "syzkaller-bugs" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to syzkaller-bugs+unsubscribe@xxxxxxxxxxxxxxxxx
> To view this discussion on the web visit https://groups.google.com/d/msgid/syzkaller-bugs/000000000000ada39605a5e71711%40google.com.