syzbot

 sign-in | mailing list | source | docs
🐞 Open [1028] Subsystems 🐞 Fixed [5274] 🐞 Invalid [12598] Missing Backports [86] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

suspicious RCU usage at net/tipc/bearer.c:LINE

Status: closed as dup on 2018/02/09 19:28
Subsystems: tipc
[Documentation on labels]
Reported-by: syzbot+6345fd433db009b29413@syzkaller.appspotmail.com
Fix commit: ed4ffdfec26d tipc: Fix missing RTNL lock protection during setting link properties
First crash: 2321d, last: 2290d
Duplicate of
Title Repro Cause bisect Fix bisect Count Last Reported
WARNING: suspicious RCU usage in tipc_bearer_find tipc C 21 2280d 2280d
Discussions (5)
Title Replies (including bot) Last reply
[PATCH net v4 0/7] tipc: Fix missing RTNL lock protection during setting link properties 10 (10) 2018/02/14 19:46
[PATCH net v3] tipc: fix missing RTNL lock protection during setting link properties 3 (3) 2018/02/14 05:40
[PATCH net v2] tipc: fix missing RTNL lock protection during setting link properties 3 (3) 2018/02/12 15:08
suspicious RCU usage at net/tipc/bearer.c:LINE 2 (3) 2018/02/09 19:28
[PATCH net] tipc: fix missing rtnl lock protection during setting link properties 4 (4) 2018/01/04 15:22

Sample crash report:
audit: type=1400 audit(1514690139.061:8): avc:  denied  { create } for  pid=3193 comm="syzkaller015658" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1

=============================
WARNING: suspicious RCU usage
4.15.0-rc5+ #243 Not tainted
-----------------------------
net/tipc/bearer.c:177 suspicious rcu_dereference_protected() usage!

other info that might help us debug this:


rcu_scheduler_active = 2, debug_locks = 1
2 locks held by syzkaller015658/3193:
 #0:  (cb_lock){++++}, at: [<00000000a19a66ca>] genl_rcv+0x19/0x40 net/netlink/genetlink.c:634
 #1:  (genl_mutex){+.+.}, at: [<000000000ac1cc6d>] genl_lock net/netlink/genetlink.c:33 [inline]
 #1:  (genl_mutex){+.+.}, at: [<000000000ac1cc6d>] genl_rcv_msg+0x115/0x140 net/netlink/genetlink.c:622

stack backtrace:
CPU: 1 PID: 3193 Comm: syzkaller015658 Not tainted 4.15.0-rc5+ #243
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0x194/0x257 lib/dump_stack.c:53
 lockdep_rcu_suspicious+0x123/0x170 kernel/locking/lockdep.c:4585
 tipc_bearer_find+0x2b4/0x3b0 net/tipc/bearer.c:177
 tipc_nl_compat_link_set+0x329/0x9f0 net/tipc/netlink_compat.c:729
 __tipc_nl_compat_doit net/tipc/netlink_compat.c:288 [inline]
 tipc_nl_compat_doit+0x15b/0x660 net/tipc/netlink_compat.c:335

Crashes (1839):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2017/12/31 03:17 upstream 71ee203389f7 bb6384b8 .config console log report syz C ci-upstream-kasan-gce
2017/12/31 00:27 upstream 5aa90a845892 bb6384b8 .config console log report syz C ci-upstream-kasan-gce-386
2017/12/31 01:03 net-next-old 6bb8824732f6 bb6384b8 .config console log report syz C ci-upstream-net-kasan-gce
2018/01/29 08:16 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 08:15 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 08:14 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 08:13 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 08:12 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 08:08 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 08:07 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 08:05 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 08:04 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 08:03 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:59 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:57 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:48 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:43 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:43 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:41 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:41 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:39 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:36 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:24 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:24 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:21 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:19 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:19 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:18 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:13 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:11 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:08 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:05 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 07:04 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 06:59 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 06:59 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 06:57 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 06:57 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 06:56 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 06:55 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 06:54 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 06:54 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 06:53 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
2018/01/29 06:51 upstream 24b1cccf9229 08d47756 .config console log report ci-upstream-kasan-gce
* Struck through repros no longer work on HEAD.