syzbot


BUG: using smp_processor_id() in preemptible code in tipc_crypto_xmit

Status: fixed on 2020/11/16 12:12
Subsystems: tipc
[Documentation on labels]
Reported-by: syzbot+263f8c0d007dc09b2dda@syzkaller.appspotmail.com
Fix commit: bb8872a1e6bc tipc: fix using smp_processor_id() in preemptible
First crash: 1594d, last: 1522d
Cause bisection: introduced by (bisect log) :
commit e1f32190cf7ddd55778b460e7d44af3f76529698
Author: Tuong Lien <tuong.t.lien@dektech.com.au>
Date: Fri Nov 8 05:05:12 2019 +0000

  tipc: add support for AEAD key setting via netlink

Crash: BUG: using smp_processor_id() in preemptible code in tipc_crypto_xmit (log)
Repro: C syz .config
  
Fix bisection: fixed by (bisect log) :
commit bb8872a1e6bc911869a729240781076ed950764b
Author: Tuong Lien <tuong.t.lien@dektech.com.au>
Date: Sat Aug 29 19:37:55 2020 +0000

  tipc: fix using smp_processor_id() in preemptible

  
Discussions (4)
Title Replies (including bot) Last reply
BUG: using smp_processor_id() in preemptible code in tipc_crypto_xmit 0 (4) 2020/10/09 10:58
[net] tipc: fix using smp_processor_id() in preemptible 12 (12) 2020/09/15 10:54
[PATCH v2] tipc: Don't using smp_processor_id() in preemptible code 6 (6) 2020/07/15 06:05
[PATCH] tipc: Don't using smp_processor_id() in preemptible code 2 (2) 2020/07/14 03:32

Sample crash report:
tipc: Started in network mode
tipc: Own node identity 00000000000000000000000000000001, cluster identity 4711
tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor126/6889
caller is tipc_aead_tfm_next net/tipc/crypto.c:402 [inline]
caller is tipc_aead_encrypt net/tipc/crypto.c:639 [inline]
caller is tipc_crypto_xmit+0x80a/0x2790 net/tipc/crypto.c:1607
CPU: 0 PID: 6889 Comm: syz-executor126 Not tainted 5.9.0-rc2-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x18f/0x20d lib/dump_stack.c:118
 check_preemption_disabled+0x128/0x130 lib/smp_processor_id.c:48
 tipc_aead_tfm_next net/tipc/crypto.c:402 [inline]
 tipc_aead_encrypt net/tipc/crypto.c:639 [inline]
 tipc_crypto_xmit+0x80a/0x2790 net/tipc/crypto.c:1607
 tipc_bearer_xmit_skb+0x180/0x3f0 net/tipc/bearer.c:523
 tipc_enable_bearer+0xb1d/0xdc0 net/tipc/bearer.c:331
 __tipc_nl_bearer_enable+0x2bf/0x390 net/tipc/bearer.c:995
 tipc_nl_bearer_enable+0x1e/0x30 net/tipc/bearer.c:1003
 genl_family_rcv_msg_doit net/netlink/genetlink.c:669 [inline]
 genl_family_rcv_msg net/netlink/genetlink.c:714 [inline]
 genl_rcv_msg+0x61d/0x980 net/netlink/genetlink.c:731
 netlink_rcv_skb+0x15a/0x430 net/netlink/af_netlink.c:2470
 genl_rcv+0x24/0x40 net/netlink/genetlink.c:742
 netlink_unicast_kernel net/netlink/af_netlink.c:1304 [inline]
 netlink_unicast+0x533/0x7d0 net/netlink/af_netlink.c:1330
 netlink_sendmsg+0x856/0xd90 net/netlink/af_netlink.c:1919
 sock_sendmsg_nosec net/socket.c:651 [inline]
 sock_sendmsg+0xcf/0x120 net/socket.c:671
 ____sys_sendmsg+0x6e8/0x810 net/socket.c:2353
 ___sys_sendmsg+0xf3/0x170 net/socket.c:2407
 __sys_sendmsg+0xe5/0x1b0 net/socket.c:2440
 do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x44ebd9
Code: e8 dc e6 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb c9 fb ff c3 66 2e 0f 1f 84 00 00 00 00
RSP: 002b:00007fb3acf07ce8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 00000000006e0c68 RCX: 000000000044ebd9
RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005
RBP: 00000000006e0c60 R08: 0000000000000012 R09: 0000000000000000
R10: 0000000000000001 R11: 0000000000000246 R12: 00000000006e0c6c
R13: 00007fff46011d4f R14: 00007fb3acf089c0 R15: 20c49ba5e353f7cf
tipc: Enabled bearer <ib:erspan0>, priority 10

Crashes (468):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2020/08/25 17:16 upstream 6a9dc5fd6170 344da168 .config console log report syz C ci-upstream-kasan-gce-selinux-root
2020/08/25 16:33 upstream 6a9dc5fd6170 344da168 .config console log report syz C ci-upstream-kasan-gce
2020/08/25 10:19 upstream 6a9dc5fd6170 344da168 .config console log report syz C ci-upstream-kasan-gce-root
2020/08/25 10:16 upstream 6a9dc5fd6170 344da168 .config console log report syz C ci-upstream-kasan-gce-smack-root
2020/07/13 15:07 upstream 11ba468877bb f90ec899 .config console log report syz C ci-upstream-kasan-gce-smack-root
2020/07/13 07:18 upstream 4437dd6e8f71 9ebcc5b1 .config console log report syz C ci-upstream-kasan-gce-selinux-root
2020/08/26 00:32 upstream abb3438d69fb 344da168 .config console log report syz C ci-upstream-kasan-gce-386
2020/07/13 08:32 upstream 4437dd6e8f71 9ebcc5b1 .config console log report syz C ci-upstream-kasan-gce-386
2020/08/25 11:47 net-next-old 85eb5bc33717 344da168 .config console log report syz C ci-upstream-net-kasan-gce
2020/08/25 17:32 linux-next 3a00d3dfd4b6 344da168 .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2020/08/25 10:41 net-old 59ebb4305c43 344da168 .config console log report syz ci-upstream-net-this-kasan-gce
2020/09/03 03:17 upstream fc3abb53250a abf9ba4f .config console log report ci-upstream-kasan-gce
2020/09/02 00:04 upstream b765a32a2e91 abf9ba4f .config console log report ci-upstream-kasan-gce
2020/08/31 16:21 net-old c8146fe292a7 d5a3ae1f .config console log report ci-upstream-net-this-kasan-gce
2020/08/30 20:38 net-old c8146fe292a7 d5a3ae1f .config console log report ci-upstream-net-this-kasan-gce
2020/08/30 18:19 net-old c8146fe292a7 d5a3ae1f .config console log report ci-upstream-net-this-kasan-gce
2020/08/30 15:31 net-old c8146fe292a7 d5a3ae1f .config console log report ci-upstream-net-this-kasan-gce
2020/08/29 10:43 net-old 5438dd45831e d5a3ae1f .config console log report ci-upstream-net-this-kasan-gce
2020/08/29 03:02 net-old 5438dd45831e d5a3ae1f .config console log report ci-upstream-net-this-kasan-gce
2020/06/26 11:06 net-old f4926d513b4c aea82c00 .config console log report ci-upstream-net-this-kasan-gce
2020/09/05 03:03 net-next-old 3ab1270bfa1e abf9ba4f .config console log report ci-upstream-net-kasan-gce
2020/09/04 19:41 net-next-old 3ab1270bfa1e abf9ba4f .config console log report ci-upstream-net-kasan-gce
2020/09/03 23:04 net-next-old 22b330b622e3 abf9ba4f .config console log report ci-upstream-net-kasan-gce
2020/09/03 05:05 net-next-old d3dfc362e073 abf9ba4f .config console log report ci-upstream-net-kasan-gce
2020/09/02 23:23 net-next-old d3dfc362e073 abf9ba4f .config console log report ci-upstream-net-kasan-gce
2020/09/02 20:01 net-next-old dc1a9bf2c816 abf9ba4f .config console log report ci-upstream-net-kasan-gce
2020/09/02 17:07 net-next-old dc1a9bf2c816 abf9ba4f .config console log report ci-upstream-net-kasan-gce
2020/09/02 11:18 net-next-old dc1a9bf2c816 abf9ba4f .config console log report ci-upstream-net-kasan-gce
2020/09/02 02:58 net-next-old dc1a9bf2c816 abf9ba4f .config console log report ci-upstream-net-kasan-gce
2020/09/02 01:20 net-next-old dc1a9bf2c816 abf9ba4f .config console log report ci-upstream-net-kasan-gce
2020/09/01 21:50 net-next-old 10eb46679460 d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/09/01 20:01 net-next-old 10eb46679460 d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/09/01 16:45 net-next-old 10eb46679460 d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/09/01 06:39 net-next-old c30a3c957c88 d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/31 21:37 net-next-old c30a3c957c88 d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/31 19:25 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/31 14:57 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/31 13:52 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/31 13:09 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/31 11:21 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/31 07:49 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/31 05:51 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/31 02:09 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/30 23:55 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/30 22:01 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/30 13:51 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/30 13:22 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/30 08:33 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/30 07:31 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/30 06:25 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/30 03:08 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/30 01:48 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/30 00:19 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/29 22:23 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/29 17:25 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/29 11:57 net-next-old 0f091e43310f d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/29 08:48 net-next-old 0baf01942d3d d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/29 06:47 net-next-old 0baf01942d3d d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/29 05:42 net-next-old 0baf01942d3d d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/08/29 01:56 net-next-old 0baf01942d3d d5a3ae1f .config console log report ci-upstream-net-kasan-gce
2020/06/25 00:39 net-next-old cb8e59cc8720 54566aff .config console log report ci-upstream-net-kasan-gce
* Struck through repros no longer work on HEAD.