syzbot


WARNING: suspicious RCU usage in tipc_l2_send_msg

Status: fixed on 2020/09/16 22:51
Subsystems: tipc
[Documentation on labels]
Reported-by: syzbot+47bbc6b678d317cccbe0@syzkaller.appspotmail.com
Fix commit: f6db90964162 tipc: call rcu_read_lock() in tipc_aead_encrypt_done()
First crash: 1347d, last: 1288d
Cause bisection: introduced by (bisect log) :
commit 786a2aa281f4c4ba424ea8b8ea1e85ab62c4a57c
Author: Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
Date: Mon Jul 6 20:53:42 2020 +0000

  Revert commit e918e570415c ("tpm_tis: Remove the HID IFX0102")

Crash: WARNING: suspicious RCU usage in tipc_l2_send_msg (log)
Repro: syz .config
  
Discussions (4)
Title Replies (including bot) Last reply
[PATCH 5.7 00/15] 5.7.19-rc1 review 20 (20) 2020/08/27 08:09
[PATCH 5.8 00/16] 5.8.5-rc1 review 20 (20) 2020/08/27 07:59
[PATCH net] tipc: call rcu_read_lock() in tipc_aead_encrypt_done() 2 (2) 2020/08/20 23:42
WARNING: suspicious RCU usage in tipc_l2_send_msg 1 (4) 2020/08/19 09:09

Sample crash report:
=============================
WARNING: suspicious RCU usage
5.8.0-rc4-syzkaller #0 Not tainted
-----------------------------
net/tipc/bearer.c:466 suspicious rcu_dereference_check() usage!

other info that might help us debug this:


rcu_scheduler_active = 2, debug_locks = 1
2 locks held by kworker/0:1/12:
 #0: ffff88821adc9538 ((wq_completion)cryptd){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline]
 #0: ffff88821adc9538 ((wq_completion)cryptd){+.+.}-{0:0}, at: atomic64_set include/asm-generic/atomic-instrumented.h:856 [inline]
 #0: ffff88821adc9538 ((wq_completion)cryptd){+.+.}-{0:0}, at: atomic_long_set include/asm-generic/atomic-long.h:41 [inline]
 #0: ffff88821adc9538 ((wq_completion)cryptd){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:616 [inline]
 #0: ffff88821adc9538 ((wq_completion)cryptd){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:643 [inline]
 #0: ffff88821adc9538 ((wq_completion)cryptd){+.+.}-{0:0}, at: process_one_work+0x82b/0x1670 kernel/workqueue.c:2240
 #1: ffffc90000d2fda8 ((work_completion)(&cpu_queue->work)){+.+.}-{0:0}, at: process_one_work+0x85f/0x1670 kernel/workqueue.c:2244

stack backtrace:
CPU: 0 PID: 12 Comm: kworker/0:1 Not tainted 5.8.0-rc4-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: cryptd cryptd_queue_worker
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x18f/0x20d lib/dump_stack.c:118
 tipc_l2_send_msg+0x354/0x420 net/tipc/bearer.c:466
 tipc_aead_encrypt_done+0x204/0x3a0 net/tipc/crypto.c:761
 cryptd_aead_crypt+0xe8/0x1d0 crypto/cryptd.c:739
 cryptd_queue_worker+0x118/0x1b0 crypto/cryptd.c:181
 process_one_work+0x94c/0x1670 kernel/workqueue.c:2269
 worker_thread+0x64c/0x1120 kernel/workqueue.c:2415
 kthread+0x3b5/0x4a0 kernel/kthread.c:291
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:293

Crashes (60):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2020/07/13 08:04 upstream 4437dd6e8f71 9ebcc5b1 .config console log report syz ci-upstream-kasan-gce
2020/07/13 19:53 linux-next be978f8feb1d f90ec899 .config console log report syz ci-upstream-linux-next-kasan-gce-root
2020/08/20 14:17 upstream 7eac66d0456f ed282a3a .config console log report ci-upstream-kasan-gce-smack-root
2020/07/25 21:28 upstream 23ee3e4e5bd2 1f7cc1ca .config console log report ci-upstream-kasan-gce
2020/07/12 08:47 upstream 0aea6d5c5be3 115e1930 .config console log report ci-upstream-kasan-gce
2020/07/12 07:39 upstream 0aea6d5c5be3 115e1930 .config console log report ci-upstream-kasan-gce-root
2020/07/08 13:27 upstream 7cc2a8ea1048 51095195 .config console log report ci-upstream-kasan-gce
2020/06/27 05:14 upstream 1590a2e1c681 ffec44b5 .config console log report ci-upstream-kasan-gce
2020/07/22 23:40 upstream 8c26c87b0532 340ea530 .config console log report ci-upstream-kasan-gce-386
2020/07/22 21:30 upstream 8c26c87b0532 128cd85f .config console log report ci-upstream-kasan-gce-386
2020/08/20 17:09 net-old cf96d977381d ed282a3a .config console log report ci-upstream-net-this-kasan-gce
2020/08/19 16:05 net-old ad6641189c59 94b45706 .config console log report ci-upstream-net-this-kasan-gce
2020/08/14 22:38 net-old a1d21081a60d 424dd8e7 .config console log report ci-upstream-net-this-kasan-gce
2020/08/04 13:44 net-old ac3a0c847296 196277c4 .config console log report ci-upstream-net-this-kasan-gce
2020/08/04 01:40 net-old ac3a0c847296 196277c4 .config console log report ci-upstream-net-this-kasan-gce
2020/07/28 15:37 net-old 181964e619b7 cb93dc6a .config console log report ci-upstream-net-this-kasan-gce
2020/07/23 15:59 net-old 26cb7085c898 340ea530 .config console log report ci-upstream-net-this-kasan-gce
2020/07/23 06:37 net-old 2c4dc3148603 340ea530 .config console log report ci-upstream-net-this-kasan-gce
2020/07/17 13:24 net-old 473309fb8372 54b3c45e .config console log report ci-upstream-net-this-kasan-gce
2020/07/16 14:35 net-old 841eb4012cef f3bec699 .config console log report ci-upstream-net-this-kasan-gce
2020/07/16 06:59 net-old 841eb4012cef f3bec699 .config console log report ci-upstream-net-this-kasan-gce
2020/07/16 06:48 net-old 841eb4012cef f3bec699 .config console log report ci-upstream-net-this-kasan-gce
2020/07/16 06:37 net-old 841eb4012cef f3bec699 .config console log report ci-upstream-net-this-kasan-gce
2020/07/15 11:37 net-old 1d61e21852d3 f3bec699 .config console log report ci-upstream-net-this-kasan-gce
2020/07/15 09:37 net-old d113c0f2e0d2 609fb517 .config console log report ci-upstream-net-this-kasan-gce
2020/07/15 04:14 net-old d113c0f2e0d2 609fb517 .config console log report ci-upstream-net-this-kasan-gce
2020/07/11 21:24 net-old c8b1d7436045 18d18b59 .config console log report ci-upstream-net-this-kasan-gce
2020/07/11 12:05 net-old c8b1d7436045 18d18b59 .config console log report ci-upstream-net-this-kasan-gce
2020/07/10 18:36 net-old ce69e563b325 edf162e8 .config console log report ci-upstream-net-this-kasan-gce
2020/07/09 16:50 net-old 1412bb2b4bb7 bc238812 .config console log report ci-upstream-net-this-kasan-gce
2020/07/08 22:19 net-old 1412bb2b4bb7 bc238812 .config console log report ci-upstream-net-this-kasan-gce
2020/07/08 13:58 net-old 1ca0fafd73c5 51095195 .config console log report ci-upstream-net-this-kasan-gce
2020/07/08 13:10 net-old 1ca0fafd73c5 51095195 .config console log report ci-upstream-net-this-kasan-gce
2020/07/08 02:16 net-old 1ca0fafd73c5 51095195 .config console log report ci-upstream-net-this-kasan-gce
2020/07/07 21:43 net-old 1ca0fafd73c5 51095195 .config console log report ci-upstream-net-this-kasan-gce
2020/07/07 16:09 net-old 1ca0fafd73c5 51095195 .config console log report ci-upstream-net-this-kasan-gce
2020/07/05 23:57 net-old 1ca0fafd73c5 51095195 .config console log report ci-upstream-net-this-kasan-gce
2020/07/05 21:26 net-old 1ca0fafd73c5 51095195 .config console log report ci-upstream-net-this-kasan-gce
2020/07/04 20:19 net-old 1ca0fafd73c5 51095195 .config console log report ci-upstream-net-this-kasan-gce
2020/07/01 13:10 net-old 8ff41cc21714 39acb39d .config console log report ci-upstream-net-this-kasan-gce
2020/06/28 01:56 net-old 4a21185cda0f ffec44b5 .config console log report ci-upstream-net-this-kasan-gce
2020/06/26 21:31 net-old f4926d513b4c aea82c00 .config console log report ci-upstream-net-this-kasan-gce
2020/06/25 00:41 net-old b835a71ef64a 54566aff .config console log report ci-upstream-net-this-kasan-gce
2020/08/23 19:55 net-next-old d7223aa58671 cef5ae68 .config console log report ci-upstream-net-kasan-gce
2020/08/17 23:22 net-next-old 7fca4dee610d 424dd8e7 .config console log report ci-upstream-net-kasan-gce
2020/08/16 17:27 net-next-old 7fca4dee610d 424dd8e7 .config console log report ci-upstream-net-kasan-gce
2020/08/12 07:40 net-next-old bfdd5aaa54b0 bb3e5fe6 .config console log report ci-upstream-net-kasan-gce
2020/08/10 10:55 net-next-old bfdd5aaa54b0 70301872 .config console log report ci-upstream-net-kasan-gce
2020/08/06 09:11 net-next-old 8ed54f167abd 0487ea6f .config console log report ci-upstream-net-kasan-gce
2020/08/03 20:11 net-next-old bd0b33b24897 196277c4 .config console log report ci-upstream-net-kasan-gce
2020/08/01 09:46 net-next-old 8f3f330da28e d895b3be .config console log report ci-upstream-net-kasan-gce
2020/07/29 23:41 net-next-old 490ed0b908d3 19a8de55 .config console log report ci-upstream-net-kasan-gce
2020/07/22 03:44 net-next-old 71d4364abdc5 21f1765e .config console log report ci-upstream-net-kasan-gce
2020/07/16 00:10 net-next-old 4ff91fa0a3ac f3bec699 .config console log report ci-upstream-net-kasan-gce
2020/07/15 22:54 net-next-old 4ff91fa0a3ac f3bec699 .config console log report ci-upstream-net-kasan-gce
2020/07/15 18:32 net-next-old 4ff91fa0a3ac f3bec699 .config console log report ci-upstream-net-kasan-gce
2020/07/09 19:14 net-next-old e80a07b244dd bc238812 .config console log report ci-upstream-net-kasan-gce
2020/06/27 01:34 net-next-old cb8e59cc8720 aea82c00 .config console log report ci-upstream-net-kasan-gce
2020/06/26 02:19 net-next-old cb8e59cc8720 aea82c00 .config console log report ci-upstream-net-kasan-gce
* Struck through repros no longer work on HEAD.