syzbot


BUG: sleeping function called from invalid context in do_con_write

Status: upstream: reported C repro on 2021/02/25 10:19
Reported-by: syzbot+6d39cd79af749d6c718d@syzkaller.appspotmail.com
First crash: 1381d, last: 666d
Fix bisection: failed (error log, bisect log)
  
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.14 BUG: sleeping function called from invalid context in do_con_write (2) C 503 644d 1384d 0/1 upstream: reported C repro on 2021/02/22 12:46
linux-4.14 BUG: sleeping function called from invalid context in do_con_write 1 1595d 1595d 0/1 auto-closed as invalid on 2020/11/23 01:21
upstream BUG: sleeping function called from invalid context in do_con_write serial 1 1810d 1807d 0/28 auto-closed as invalid on 2020/04/21 23:47
Fix bisection attempts (6)
Created Duration User Patch Repo Result
2022/01/14 08:17 11m bisect fix linux-4.19.y error job log
2021/10/06 04:11 27m bisect fix linux-4.19.y OK (0) job log log
2021/09/06 03:43 27m bisect fix linux-4.19.y OK (0) job log log
2021/08/07 03:14 28m bisect fix linux-4.19.y OK (0) job log log
2021/05/27 18:56 30m bisect fix linux-4.19.y OK (0) job log log
2021/04/18 06:51 32m bisect fix linux-4.19.y OK (0) job log log

Sample crash report:
BUG: sleeping function called from invalid context at drivers/tty/vt/vt.c:2599
in_atomic(): 1, irqs_disabled(): 1, pid: 8093, name: syz-executor404
3 locks held by syz-executor404/8093:
 #0: 0000000063ef4ac6 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:272
 #1: 00000000af96c4af (&(&tty->flow_lock)->rlock){....}, at: spin_lock_irq include/linux/spinlock.h:354 [inline]
 #1: 00000000af96c4af (&(&tty->flow_lock)->rlock){....}, at: n_tty_ioctl_helper+0xcc/0x3a0 drivers/tty/tty_ioctl.c:914
 #2: 0000000063ef4ac6 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref+0x1d/0x80 drivers/tty/tty_ldisc.c:293
irq event stamp: 8148
hardirqs last  enabled at (8147): [<ffffffff81007641>] do_syscall_64+0x21/0x620 arch/x86/entry/common.c:280
hardirqs last disabled at (8148): [<ffffffff88194e05>] __raw_spin_lock_irq include/linux/spinlock_api_smp.h:126 [inline]
hardirqs last disabled at (8148): [<ffffffff88194e05>] _raw_spin_lock_irq+0x35/0x80 kernel/locking/spinlock.c:160
softirqs last  enabled at (6902): [<ffffffff88400678>] __do_softirq+0x678/0x980 kernel/softirq.c:318
softirqs last disabled at (6875): [<ffffffff813927d5>] invoke_softirq kernel/softirq.c:372 [inline]
softirqs last disabled at (6875): [<ffffffff813927d5>] irq_exit+0x215/0x260 kernel/softirq.c:412
Preemption disabled at:
[<0000000000000000>]           (null)
CPU: 0 PID: 8093 Comm: syz-executor404 Not tainted 4.19.211-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1fc/0x2ef lib/dump_stack.c:118
 ___might_sleep.cold+0x235/0x250 kernel/sched/core.c:6192
 do_con_write+0x116/0x1d90 drivers/tty/vt/vt.c:2599
 con_write+0x22/0xb0 drivers/tty/vt/vt.c:3163
 n_hdlc_send_frames+0x278/0x470 drivers/tty/n_hdlc.c:403
 n_hdlc_tty_wakeup+0xa0/0xc0 drivers/tty/n_hdlc.c:479
 tty_wakeup+0xd4/0x110 drivers/tty/tty_io.c:534
 __start_tty drivers/tty/tty_io.c:806 [inline]
 __start_tty+0x116/0x150 drivers/tty/tty_io.c:799
 n_tty_ioctl_helper+0x348/0x3a0 drivers/tty/tty_ioctl.c:917
 n_hdlc_tty_ioctl+0x102/0x350 drivers/tty/n_hdlc.c:783
 tty_ioctl+0x65d/0x1630 drivers/tty/tty_io.c:2678
 vfs_ioctl fs/ioctl.c:46 [inline]
 file_ioctl fs/ioctl.c:501 [inline]
 do_vfs_ioctl+0xcdb/0x12e0 fs/ioctl.c:688
 ksys_ioctl+0x9b/0xc0 fs/ioctl.c:705
 __do_sys_ioctl fs/ioctl.c:712 [inline]
 __se_sys_ioctl fs/ioctl.c:710 [inline]
 __x64_sys_ioctl+0x6f/0xb0 fs/ioctl.c:710
 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7fd9a050b489
Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffca0cdf2c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd9a050b489
RDX: 0000000000000001 RSI: 000000000000540a RDI: 0000000000000008

Crashes (67):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/11/18 02:41 linux-4.19.y 3f8a27f9e27b 4ba8ab94 .config console log report syz C [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/08/09 22:15 linux-4.19.y 3f8a27f9e27b c2a623d6 .config console log report syz C ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2021/06/23 11:51 linux-4.19.y eb575cd5d7f6 aba2b2fb .config console log report syz C ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2021/04/20 13:58 linux-4.19.y 2965db2e004c c0ced557 .config console log report syz C ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2021/04/21 16:40 linux-4.19.y 2965db2e004c 95777977 .config console log report syz ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2021/03/19 06:42 linux-4.19.y ac3af4beac43 380dcc3e .config console log report syz ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2023/02/10 03:53 linux-4.19.y 3f8a27f9e27b 07980f9d .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2023/01/18 15:33 linux-4.19.y 3f8a27f9e27b 4620c2d9 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2023/01/12 20:56 linux-4.19.y 3f8a27f9e27b 96166539 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/12/06 18:52 linux-4.19.y 3f8a27f9e27b d88f3abb .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/12/05 16:34 linux-4.19.y 3f8a27f9e27b 045cbb84 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/12/05 03:16 linux-4.19.y 3f8a27f9e27b e080de16 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/12/03 00:50 linux-4.19.y 3f8a27f9e27b e080de16 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/12/02 15:02 linux-4.19.y 3f8a27f9e27b e080de16 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/11/18 01:34 linux-4.19.y 3f8a27f9e27b 4ba8ab94 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/11/14 09:43 linux-4.19.y 3f8a27f9e27b 7ba4d859 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/11/09 02:35 linux-4.19.y 3f8a27f9e27b 5fa28208 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/11/08 14:39 linux-4.19.y 3f8a27f9e27b 060f945e .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/11/08 02:53 linux-4.19.y 3f8a27f9e27b 6feb842b .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/11/08 01:18 linux-4.19.y 3f8a27f9e27b 6feb842b .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/11/07 14:14 linux-4.19.y 3f8a27f9e27b a779b11a .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/11/07 12:56 linux-4.19.y 3f8a27f9e27b a779b11a .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/11/07 01:09 linux-4.19.y 3f8a27f9e27b 6d752409 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/11/05 20:46 linux-4.19.y 3f8a27f9e27b 6d752409 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/11/05 15:57 linux-4.19.y 3f8a27f9e27b 6d752409 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/11/03 23:00 linux-4.19.y 3f8a27f9e27b 6d752409 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/11/03 21:44 linux-4.19.y 3f8a27f9e27b 6d752409 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/11/03 12:15 linux-4.19.y 3f8a27f9e27b 7a2ebf95 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/10/25 23:07 linux-4.19.y 3f8a27f9e27b 2159e4d2 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/10/25 06:39 linux-4.19.y 3f8a27f9e27b 45645420 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/10/25 04:50 linux-4.19.y 3f8a27f9e27b 45645420 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/10/24 15:55 linux-4.19.y 3f8a27f9e27b faae2fda .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/10/11 09:33 linux-4.19.y 3f8a27f9e27b 5bcf0c31 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/10/11 09:32 linux-4.19.y 3f8a27f9e27b 5bcf0c31 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/10/05 23:21 linux-4.19.y 3f8a27f9e27b 2c6543ad .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/09/26 07:21 linux-4.19.y 3f8a27f9e27b 0042f2b4 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/09/12 17:56 linux-4.19.y 3f8a27f9e27b f371ed7e .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/09/11 15:49 linux-4.19.y 3f8a27f9e27b 356d8217 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/09/08 00:13 linux-4.19.y 3f8a27f9e27b 435aeef7 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/09/07 12:46 linux-4.19.y 3f8a27f9e27b c5b7bc57 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/09/07 01:54 linux-4.19.y 3f8a27f9e27b 5fc30c37 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/09/06 23:16 linux-4.19.y 3f8a27f9e27b 5fc30c37 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/09/06 18:31 linux-4.19.y 3f8a27f9e27b 65aea2b9 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/09/06 17:30 linux-4.19.y 3f8a27f9e27b 65aea2b9 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/08/10 12:31 linux-4.19.y 3f8a27f9e27b aaa9eaa0 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/08/09 17:07 linux-4.19.y 3f8a27f9e27b c2a623d6 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/08/09 14:12 linux-4.19.y 3f8a27f9e27b da700653 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/07/27 23:39 linux-4.19.y 3f8a27f9e27b fb95c74d .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/04/14 06:07 linux-4.19.y 3f8a27f9e27b b17b2923 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/04/01 11:23 linux-4.19.y 3f8a27f9e27b 68fc921a .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/03/23 06:30 linux-4.19.y 3f8a27f9e27b 5ff41e94 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/02/25 13:07 linux-4.19.y 3f8a27f9e27b 7c337266 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/02/17 10:15 linux-4.19.y 3f8a27f9e27b 2bea8a27 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/02/07 07:37 linux-4.19.y 3f8a27f9e27b a7dab638 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2022/02/05 06:20 linux-4.19.y 3f8a27f9e27b e13a05ed .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2021/12/15 08:16 linux-4.19.y 3f8a27f9e27b f752fb53 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2021/12/04 11:28 linux-4.19.y 3f8a27f9e27b a617004c .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2021/11/27 23:44 linux-4.19.y 3f8a27f9e27b 63eeac02 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2021/11/20 17:35 linux-4.19.y 3f8a27f9e27b 4eb20a4e .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2021/10/30 16:36 linux-4.19.y 3f8a27f9e27b 098b5d53 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2021/07/08 03:14 linux-4.19.y 9f84340f012e 95793bce .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2021/04/27 18:56 linux-4.19.y 2965db2e004c 805b5003 .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2021/03/19 02:59 linux-4.19.y ac3af4beac43 380dcc3e .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
2021/02/25 10:18 linux-4.19.y 2d19be4653f5 fcc6d71b .config console log report info ci2-linux-4-19 BUG: sleeping function called from invalid context in do_con_write
* Struck through repros no longer work on HEAD.