syzbot


WARNING in usb_submit_urb (4)

Status: fixed on 2019/05/15 23:14
Subsystems: usb
[Documentation on labels]
Reported-by: syzbot+7634edaea4d0b341c625@syzkaller.appspotmail.com
Fix commit: c2b71462d294 USB: core: Fix bug caused by duplicate interface PM usage counter
First crash: 2164d, last: 1974d
Cause bisection: introduced by (bisect log) :
commit c470abd4fde40ea6a0846a2beab642a578c0b8cd
Author: Linus Torvalds <torvalds@linux-foundation.org>
Date: Sun Feb 19 22:34:00 2017 +0000

  Linux 4.10

  
Discussions (24)
Title Replies (including bot) Last reply
[PATCH 3.16 000/157] 3.16.72-rc1 review 162 (162) 2019/08/11 15:25
[PATCH 4.4 000/266] 4.4.180-stable review 282 (282) 2019/05/17 09:42
[PATCH 3.18 00/86] 3.18.140-stable review 93 (93) 2019/05/16 14:59
[PATCH 5.0 000/122] 5.0.14-stable review 134 (134) 2019/05/08 06:36
[PATCH 4.19 00/99] 4.19.41-stable review 111 (111) 2019/05/08 06:35
[PATCH 4.14 00/75] 4.14.117-stable review 81 (81) 2019/05/07 22:47
[PATCH 4.9 00/62] 4.9.174-stable review 73 (73) 2019/05/07 20:34
USB: core: Fix bug caused by duplicate interface PM usage counter 1 (1) 2019/04/19 17:52
WARNING in usb_submit_urb (4) 0 (1) 2019/04/18 20:24
WARNING in usb_submit_urb (4) 1 (1) 2019/04/18 20:04
WARNING in usb_submit_urb (4) 0 (1) 2019/04/18 18:29
WARNING in usb_submit_urb (4) 1 (1) 2019/04/18 18:09
WARNING in usb_submit_urb (4) 0 (1) 2019/04/18 17:41
WARNING in usb_submit_urb (4) 1 (1) 2019/04/18 16:53
WARNING in usb_submit_urb (4) 1 (1) 2019/04/18 16:00
WARNING in usb_submit_urb (4) 0 (1) 2019/04/17 21:12
WARNING in usb_submit_urb (4) 1 (1) 2019/04/17 20:59
WARNING in usb_submit_urb (4) 0 (1) 2019/04/16 21:10
WARNING in usb_submit_urb (4) 1 (1) 2019/04/16 20:57
WARNING in usb_submit_urb (4) 0 (1) 2019/04/16 19:33
WARNING in usb_submit_urb (4) 1 (1) 2019/04/16 19:10
WARNING in usb_submit_urb (4) 0 (1) 2019/04/16 17:53
WARNING in usb_submit_urb (4) 1 (1) 2019/04/16 17:39
WARNING in usb_submit_urb (4) 2 (5) 2019/04/11 01:01
Similar bugs (5)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.14 WARNING in usb_submit_urb 1 1991d 1991d 0/1 auto-closed as invalid on 2019/10/24 17:37
upstream WARNING in usb_submit_urb (2) usb C 259 2189d 2227d 11/28 fixed on 2018/10/11 14:33
upstream WARNING in usb_submit_urb (5) input usb syz 4 1966d 1971d 0/28 closed as invalid on 2019/05/27 12:47
upstream WARNING in usb_submit_urb usb C 2 2535d 2527d 4/28 fixed on 2018/02/02 04:39
upstream WARNING in usb_submit_urb (3) usb C 58 2172d 2188d 11/28 fixed on 2018/10/30 01:28
Last patch testing requests (11)
Created Duration User Patch Repo Result
2019/04/18 20:04 18m stern@rowland.harvard.edu patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git e12e00e388de OK
2019/04/18 18:09 18m stern@rowland.harvard.edu patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git e12e00e388de OK
2019/04/18 16:53 12m stern@rowland.harvard.edu patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git e12e00e388de report log
2019/04/17 20:59 11m stern@rowland.harvard.edu patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git e12e00e388de report log
2019/04/16 20:57 11m stern@rowland.harvard.edu patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git e12e00e388de report log
2019/04/16 19:10 12m stern@rowland.harvard.edu patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git e12e00e388de report log
2019/04/16 17:39 13m stern@rowland.harvard.edu patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git e12e00e388de report log
2019/04/15 17:13 17m andreyknvl@google.com patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git e12e00e388de OK
2019/04/15 12:15 17m andreyknvl@google.com patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git v5.1-rc3 OK
2019/04/12 17:22 18m stern@rowland.harvard.edu git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git v5.1-rc3 report log
2019/04/11 19:21 12m stern@rowland.harvard.edu https://github.com/google/kasan.git usb-fuzzer report log

Sample crash report:
hub 3-0:1.0: 8 ports detected
hub 3-0:1.0: USB hub found
hub 3-0:1.0: 8 ports detected
------------[ cut here ]------------
URB 000000004cfcdf9b submitted while active
WARNING: CPU: 0 PID: 12 at drivers/usb/core/urb.c:363 usb_submit_urb+0x11cf/0x14e0 drivers/usb/core/urb.c:363
Kernel panic - not syncing: panic_on_warn set ...
CPU: 0 PID: 12 Comm: kworker/0:1 Not tainted 4.20.0-rc1+ #111
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: events_power_efficient hub_init_func2
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x244/0x39d lib/dump_stack.c:113
 panic+0x2ad/0x55c kernel/panic.c:188
 __warn.cold.8+0x20/0x45 kernel/panic.c:540
 report_bug+0x254/0x2d0 lib/bug.c:186
 fixup_bug arch/x86/kernel/traps.c:178 [inline]
 do_error_trap+0x11b/0x200 arch/x86/kernel/traps.c:271
 do_invalid_op+0x36/0x40 arch/x86/kernel/traps.c:290
 invalid_op+0x14/0x20 arch/x86/entry/entry_64.S:969
RIP: 0010:usb_submit_urb+0x11cf/0x14e0 drivers/usb/core/urb.c:363
Code: ee e8 95 62 7b fc 45 84 ed 0f 85 e2 f6 ff ff e8 b7 61 7b fc 48 89 de 48 c7 c7 a0 32 92 88 c6 05 d4 45 0d 05 01 e8 11 c5 44 fc <0f> 0b e9 c0 f6 ff ff c7 45 a0 01 00 00 00 e9 65 f7 ff ff 41 bc ed
RSP: 0018:ffff8881d9b1f4f0 EFLAGS: 00010282
RAX: 0000000000000000 RBX: ffff8881d1272b00 RCX: 0000000000000000
RDX: 0000000000000000 RSI: ffffffff8165e7e5 RDI: 0000000000000005
RBP: ffff8881d9b1f560 R08: ffff8881d9b0e300 R09: ffffed103b5c5020
R10: ffffed103b5c5020 R11: ffff8881dae28107 R12: 00000000fffffff0
R13: 0000000000000000 R14: 0000000000000009 R15: ffff8881d9b1f6f8
 hub_activate+0xcab/0x1940 drivers/usb/core/hub.c:1215
 hub_init_func2+0x1e/0x30 drivers/usb/core/hub.c:1240
 process_one_work+0xc90/0x1c40 kernel/workqueue.c:2153
 worker_thread+0x17f/0x1390 kernel/workqueue.c:2296
 kthread+0x35a/0x440 kernel/kthread.c:246
 ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:352
Kernel Offset: disabled
Rebooting in 86400 seconds..

Crashes (46):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2018/11/12 11:43 upstream e12e00e388de 7b5f8621 .config console log report syz ci-upstream-kasan-gce-selinux-root
2018/11/12 10:40 upstream e12e00e388de 7b5f8621 .config console log report syz ci-upstream-kasan-gce-smack-root
2018/11/12 10:03 upstream e12e00e388de 7b5f8621 .config console log report syz ci-upstream-kasan-gce-root
2018/11/12 11:15 linux-next 442b8cea2477 7b5f8621 .config console log report syz ci-upstream-linux-next-kasan-gce-root
2019/04/24 20:02 upstream ba25b50d582f 8e3c52b1 .config console log report ci-upstream-kasan-gce-smack-root
2019/04/22 06:52 upstream 085b7755808a b0e8efcb .config console log report ci-upstream-kasan-gce-root
2019/03/21 19:17 upstream 54c490164523 dce6e62f .config console log report ci-upstream-kasan-gce-selinux-root
2019/03/16 05:16 upstream 6c83d0d5eb62 bab43553 .config console log report ci-upstream-kasan-gce-selinux-root
2019/03/05 16:05 upstream cd2a3bf02625 bb91cf81 .config console log report ci-upstream-kasan-gce-root
2019/02/02 14:48 upstream cd984a5be215 c198d5dd .config console log report ci-upstream-kasan-gce-selinux-root
2019/01/27 02:39 upstream ba6069759381 c73f090a .config console log report ci-upstream-kasan-gce-smack-root
2019/01/24 16:20 upstream 30bac164aca7 ce1ccf97 .config console log report ci-upstream-kasan-gce
2019/01/15 10:32 upstream 3719876809e7 ebacf5cb .config console log report ci-upstream-kasan-gce-smack-root
2019/01/07 08:57 upstream 574823bfab82 ee332608 .config console log report ci-upstream-kasan-gce-root
2019/01/06 02:57 upstream f1c2f8857c5a 53be0a37 .config console log report ci-upstream-kasan-gce-selinux-root
2019/01/04 19:48 upstream 96d4f267e40f 0127e3ba .config console log report ci-upstream-kasan-gce
2018/12/11 20:21 upstream f5d582777bcb 7795ae03 .config console log report ci-upstream-kasan-gce
2018/12/08 15:06 upstream 5f179793f0a7 60562a1d .config console log report ci-upstream-kasan-gce
2018/12/06 04:08 upstream d08970904582 764b42c4 .config console log report ci-upstream-kasan-gce-smack-root
2018/11/19 14:35 upstream 9ff01193a20d adf636a8 .config console log report ci-upstream-kasan-gce-smack-root
2018/11/18 23:37 upstream c67a98c00ea3 adf636a8 .config console log report ci-upstream-kasan-gce
2018/11/12 05:45 upstream e12e00e388de 7b5f8621 .config console log report ci-upstream-kasan-gce-root
2018/11/09 22:45 upstream 3541833fd1f2 f9815aaf .config console log report ci-upstream-kasan-gce
2018/11/09 04:03 upstream b00d209241ff e85d2a61 .config console log report ci-upstream-kasan-gce-smack-root
2018/11/07 09:37 upstream 8053e5b93eca 8bd6bd63 .config console log report ci-upstream-kasan-gce-smack-root
2018/11/06 04:08 upstream 163c8d54a997 8bd6bd63 .config console log report ci-upstream-kasan-gce-root
2019/03/28 07:31 upstream 1a9df9e29c2a f94f56fe .config console log report ci-upstream-kasan-gce-386
2019/02/17 00:49 upstream 5ded5871030e f42dee6d .config console log report ci-upstream-kasan-gce-386
2019/02/08 09:52 upstream d47e3da17592 aa4feb03 .config console log report ci-upstream-kasan-gce-386
2018/12/15 03:45 upstream eb6cf9f8cb9d 7624ddd6 .config console log report ci-upstream-kasan-gce-386
2018/11/19 21:26 upstream 9ff01193a20d adf636a8 .config console log report ci-upstream-kasan-gce-386
2018/11/07 11:37 upstream 8053e5b93eca 8bd6bd63 .config console log report ci-upstream-kasan-gce-386
2019/05/14 09:06 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce ada3c44c .config console log report ci2-upstream-usb
2019/05/14 06:47 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce ada3c44c .config console log report ci2-upstream-usb
2019/05/13 20:17 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 7c305b44 .config console log report ci2-upstream-usb
2019/05/11 10:19 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 46caad94 .config console log report ci2-upstream-usb
2019/05/09 07:42 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 1ab4c999 .config console log report ci2-upstream-usb
2019/05/07 17:26 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 04e9d8ce .config console log report ci2-upstream-usb
2019/05/07 07:26 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 04e9d8ce .config console log report ci2-upstream-usb
2019/04/25 18:09 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce f46aabc8 .config console log report ci2-upstream-usb
2019/04/21 15:49 https://github.com/google/kasan.git usb-fuzzer d34f9519daaa b0e8efcb .config console log report ci2-upstream-usb
2019/03/27 12:18 linux-next a392ee45bae7 55684ce1 .config console log report ci-upstream-linux-next-kasan-gce-root
2019/02/18 01:53 linux-next 7a92eb7cc1dc 3e98cc30 .config console log report ci-upstream-linux-next-kasan-gce-root
2018/12/10 19:42 linux-next 14cf8c1d5b90 6565f24d .config console log report ci-upstream-linux-next-kasan-gce-root
2018/12/10 19:41 linux-next 14cf8c1d5b90 6565f24d .config console log report ci-upstream-linux-next-kasan-gce-root
2018/12/01 18:20 linux-next 442b8cea2477 5a581673 .config console log report ci-upstream-linux-next-kasan-gce-root
* Struck through repros no longer work on HEAD.