syzbot


WARNING in smc_unhash_sk (2)

Status: fixed on 2019/08/27 17:15
Reported-by: syzbot+bd8cc73d665590a1fcad@syzkaller.appspotmail.com
Fix commit: cd2063604ea6 net/smc: avoid fallback in case of non-blocking connect
First crash: 1831d, last: 1694d
Cause bisection: introduced by (bisect log) :
commit 50717a37db032ce783f50685a73bb2ac68471a5a
Author: Ursula Braun <ubraun@linux.ibm.com>
Date: Fri Apr 12 10:57:23 2019 +0000

  net/smc: nonblocking connect rework

Crash: WARNING in smc_unhash_sk (log)
Repro: C syz .config
  
Discussions (5)
Title Replies (including bot) Last reply
[PATCH 5.2 00/56] 5.2.8-stable review 63 (63) 2019/08/09 15:48
[PATCH net] net/smc: avoid fallback in case of non-blocking connect 2 (2) 2019/08/05 20:25
Reminder: 5 open syzbot bugs in "net/smc" subsystem 1 (1) 2019/07/24 02:29
Reminder: 6 open syzbot bugs in "net/smc" subsystem 1 (1) 2019/07/02 06:24
WARNING in smc_unhash_sk (2) 0 (1) 2019/04/13 16:16
Similar bugs (2)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream WARNING in smc_unhash_sk s390 net C 155731 2082d 2244d 8/26 fixed on 2018/08/07 13:43
upstream WARNING in smc_unhash_sk (3) net s390 C done 362 1604d 1694d 14/26 fixed on 2019/11/29 15:48

Sample crash report:
WARNING: CPU: 0 PID: 13011 at include/net/sock.h:666 sk_del_node_init include/net/sock.h:666 [inline]
WARNING: CPU: 0 PID: 13011 at include/net/sock.h:666 smc_unhash_sk+0x1ea/0x260 net/smc/af_smc.c:96
Kernel panic - not syncing: panic_on_warn set ...
CPU: 0 PID: 13011 Comm: syz-executor047 Not tainted 5.2.0-rc3+ #38
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x172/0x1f0 lib/dump_stack.c:113
 panic+0x2cb/0x744 kernel/panic.c:219
 __warn.cold+0x20/0x4d kernel/panic.c:576
 report_bug+0x263/0x2b0 lib/bug.c:186
 fixup_bug arch/x86/kernel/traps.c:179 [inline]
 fixup_bug arch/x86/kernel/traps.c:174 [inline]
 do_error_trap+0x11b/0x200 arch/x86/kernel/traps.c:272
 do_invalid_op+0x37/0x50 arch/x86/kernel/traps.c:291
 invalid_op+0x14/0x20 arch/x86/entry/entry_64.S:986
RIP: 0010:sk_del_node_init include/net/sock.h:666 [inline]
RIP: 0010:smc_unhash_sk+0x1ea/0x260 net/smc/af_smc.c:96
Code: ff ff ff ff e8 27 7f 95 fe e8 42 04 8c fa 4c 89 ef e8 7a fa 37 00 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 26 04 8c fa <0f> 0b eb 86 4c 89 e7 e8 2a a2 c4 fa e9 5f ff ff ff e8 40 a2 c4 fa
RSP: 0018:ffff8880958c7bd0 EFLAGS: 00010293
RAX: ffff88808dbb8240 RBX: ffff888089ce0040 RCX: ffffffff86e4a20e
RDX: 0000000000000000 RSI: ffffffff86e4a28a RDI: 0000000000000005
RBP: ffff8880958c7c00 R08: ffff88808dbb8240 R09: ffffed101139c019
R10: ffffed101139c018 R11: ffff888089ce00c3 R12: ffff888089ce00c0
R13: ffffffff89751d40 R14: ffff888089ce0068 R15: 0000000000000001
 smc_release+0x32c/0x7b0 net/smc/af_smc.c:165
 __sock_release+0xce/0x2a0 net/socket.c:601
 sock_close+0x1b/0x30 net/socket.c:1273
 __fput+0x2ff/0x890 fs/file_table.c:280
 ____fput+0x16/0x20 fs/file_table.c:313
 task_work_run+0x145/0x1c0 kernel/task_work.c:113
 exit_task_work include/linux/task_work.h:22 [inline]
 do_exit+0x90a/0x2fa0 kernel/exit.c:877
 do_group_exit+0x135/0x370 kernel/exit.c:981
 __do_sys_exit_group kernel/exit.c:992 [inline]
 __se_sys_exit_group kernel/exit.c:990 [inline]
 __x64_sys_exit_group+0x44/0x50 kernel/exit.c:990
 do_syscall_64+0xfd/0x680 arch/x86/entry/common.c:301
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x440308
Code: 00 00 be 3c 00 00 00 eb 19 66 0f 1f 84 00 00 00 00 00 48 89 d7 89 f0 0f 05 48 3d 00 f0 ff ff 77 21 f4 48 89 d7 44 89 c0 0f 05 <48> 3d 00 f0 ff ff 76 e0 f7 d8 64 41 89 01 eb d8 0f 1f 84 00 00 00
RSP: 002b:00007ffd8de6ecc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440308
RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000
RBP: 00000000004bf9d0 R08: 00000000000000e7 R09: ffffffffffffffd4
R10: 0000000024040000 R11: 0000000000000246 R12: 0000000000000001
R13: 00000000006d2180 R14: 0000000000000000 R15: 0000000000000000
Kernel Offset: disabled
Rebooting in 86400 seconds..

Crashes (1047):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2019/06/05 17:01 upstream 788a024921c4 bfb4a51e .config console log report syz C ci-upstream-kasan-gce
2019/06/04 19:04 upstream 788a024921c4 e41a20c5 .config console log report syz C ci-upstream-kasan-gce-smack-root
2019/06/04 16:30 upstream 788a024921c4 e41a20c5 .config console log report syz C ci-upstream-kasan-gce-selinux-root
2019/06/04 14:11 upstream 788a024921c4 e41a20c5 .config console log report syz C ci-upstream-kasan-gce-root
2019/06/04 10:10 upstream 788a024921c4 ce07a7ae .config console log report syz C ci-upstream-kasan-gce-386
2019/06/04 04:45 net-old 28e74a7cfd64 ce07a7ae .config console log report syz C ci-upstream-net-this-kasan-gce
2019/06/04 08:14 net-next-old b7034146756b ce07a7ae .config console log report syz C ci-upstream-net-kasan-gce
2019/04/13 09:54 net-next-old e0a092ebebf7 c402d8f1 .config console log report syz C ci-upstream-net-kasan-gce
2019/06/13 23:52 linux-next da151e650328 a139f92f .config console log report syz C ci-upstream-linux-next-kasan-gce-root
2019/08/20 07:00 upstream 06821504fd47 ee12860b .config console log report syz ci-upstream-kasan-gce-selinux-root
2019/08/20 06:03 upstream 06821504fd47 ee12860b .config console log report syz ci-upstream-kasan-gce
2019/08/20 04:04 upstream 06821504fd47 ee12860b .config console log report syz ci-upstream-kasan-gce-root
2019/08/20 01:47 upstream 06821504fd47 ee12860b .config console log report syz ci-upstream-kasan-gce-smack-root
2019/08/20 03:25 upstream 06821504fd47 ee12860b .config console log report syz ci-upstream-kasan-gce-386
2019/08/20 02:18 net-old cfef46d692ef ee12860b .config console log report syz ci-upstream-net-this-kasan-gce
2019/08/20 08:32 net-next-old 20e79a0a2cfd ee12860b .config console log report syz ci-upstream-net-kasan-gce
2019/08/20 02:52 linux-next da6570438d9b ee12860b .config console log report syz ci-upstream-linux-next-kasan-gce-root
2019/08/27 15:04 upstream a55aa89aab90 d21c5d9d .config console log report ci-upstream-kasan-gce
2019/08/26 17:38 upstream a55aa89aab90 d21c5d9d .config console log report ci-upstream-kasan-gce-smack-root
2019/08/26 13:12 upstream a55aa89aab90 d21c5d9d .config console log report ci-upstream-kasan-gce-smack-root
2019/08/26 05:54 upstream a55aa89aab90 d21c5d9d .config console log report ci-upstream-kasan-gce-selinux-root
2019/08/25 16:23 upstream e67095fd2f72 d21c5d9d .config console log report ci-upstream-kasan-gce
2019/08/25 16:20 upstream e67095fd2f72 d21c5d9d .config console log report ci-upstream-kasan-gce-root
2019/08/25 08:24 upstream 361469211f87 d21c5d9d .config console log report ci-upstream-kasan-gce-smack-root
2019/08/25 05:27 upstream 361469211f87 d21c5d9d .config console log report ci-upstream-kasan-gce-smack-root
2019/08/25 03:11 upstream 361469211f87 d21c5d9d .config console log report ci-upstream-kasan-gce-selinux-root
2019/08/25 00:34 upstream 361469211f87 d21c5d9d .config console log report ci-upstream-kasan-gce-smack-root
2019/08/24 22:25 upstream 361469211f87 d21c5d9d .config console log report ci-upstream-kasan-gce-selinux-root
2019/08/24 21:21 upstream 361469211f87 d21c5d9d .config console log report ci-upstream-kasan-gce
2019/08/24 20:16 upstream 9140d8bdd4c5 78ded196 .config console log report ci-upstream-kasan-gce
2019/08/24 18:43 upstream 9140d8bdd4c5 78ded196 .config console log report ci-upstream-kasan-gce-smack-root
2019/08/24 07:52 upstream 9140d8bdd4c5 78ded196 .config console log report ci-upstream-kasan-gce-smack-root
2019/08/24 04:52 upstream e3fb13b7e47c 78ded196 .config console log report ci-upstream-kasan-gce
2019/08/24 03:32 upstream e3fb13b7e47c 78ded196 .config console log report ci-upstream-kasan-gce-smack-root
2019/08/24 00:46 upstream e3fb13b7e47c 78ded196 .config console log report ci-upstream-kasan-gce-smack-root
2019/08/23 23:12 upstream e3fb13b7e47c 78ded196 .config console log report ci-upstream-kasan-gce-smack-root
2019/08/23 17:49 upstream e3fb13b7e47c 78ded196 .config console log report ci-upstream-kasan-gce-selinux-root
2019/08/23 16:42 upstream 59c36bc8d377 78ded196 .config console log report ci-upstream-kasan-gce-smack-root
2019/08/23 16:17 upstream 59c36bc8d377 78ded196 .config console log report ci-upstream-kasan-gce-selinux-root
2019/08/23 10:11 upstream 59c36bc8d377 ca6f3cfa .config console log report ci-upstream-kasan-gce-smack-root
2019/08/23 09:06 upstream 59c36bc8d377 ca6f3cfa .config console log report ci-upstream-kasan-gce-root
2019/08/23 02:47 upstream 20eabc8966f5 d003d6d0 .config console log report ci-upstream-kasan-gce-smack-root
2019/08/22 21:15 upstream 20eabc8966f5 d003d6d0 .config console log report ci-upstream-kasan-gce-root
2019/08/22 16:46 upstream bb7ba8069de9 d003d6d0 .config console log report ci-upstream-kasan-gce
2019/08/22 16:19 upstream bb7ba8069de9 d003d6d0 .config console log report ci-upstream-kasan-gce-smack-root
2019/08/27 09:46 upstream a55aa89aab90 d21c5d9d .config console log report ci-upstream-kasan-gce-386
2019/08/26 09:52 upstream a55aa89aab90 d21c5d9d .config console log report ci-upstream-kasan-gce-386
2019/08/24 13:03 upstream 9140d8bdd4c5 78ded196 .config console log report ci-upstream-kasan-gce-386
2019/08/27 12:30 net-old f53a7ad18959 d21c5d9d .config console log report ci-upstream-net-this-kasan-gce
2019/08/27 07:23 net-old f53a7ad18959 d21c5d9d .config console log report ci-upstream-net-this-kasan-gce
2019/08/27 05:13 net-old f53a7ad18959 d21c5d9d .config console log report ci-upstream-net-this-kasan-gce
2019/08/27 04:14 net-old f53a7ad18959 d21c5d9d .config console log report ci-upstream-net-this-kasan-gce
2019/08/27 01:44 net-old f53a7ad18959 d21c5d9d .config console log report ci-upstream-net-this-kasan-gce
2019/08/26 22:07 net-old f53a7ad18959 d21c5d9d .config console log report ci-upstream-net-this-kasan-gce
2019/08/26 20:31 net-old f53a7ad18959 d21c5d9d .config console log report ci-upstream-net-this-kasan-gce
2019/08/26 18:46 net-old f53a7ad18959 d21c5d9d .config console log report ci-upstream-net-this-kasan-gce
2019/08/26 15:22 net-old f53a7ad18959 d21c5d9d .config console log report ci-upstream-net-this-kasan-gce
2019/08/26 11:59 net-old f53a7ad18959 d21c5d9d .config console log report ci-upstream-net-this-kasan-gce
2019/08/25 12:41 net-old 12e2e15d837f d21c5d9d .config console log report ci-upstream-net-this-kasan-gce
2019/08/25 11:11 net-old 12e2e15d837f d21c5d9d .config console log report ci-upstream-net-this-kasan-gce
2019/08/25 07:06 net-old 12e2e15d837f d21c5d9d .config console log report ci-upstream-net-this-kasan-gce
2019/08/24 13:39 net-old 211c46245215 78ded196 .config console log report ci-upstream-net-this-kasan-gce
2019/08/24 09:25 net-old 211c46245215 78ded196 .config console log report ci-upstream-net-this-kasan-gce
2019/08/23 21:34 net-old f6edbf2d6164 78ded196 .config console log report ci-upstream-net-this-kasan-gce
2019/08/23 06:56 net-old f6edbf2d6164 ca6f3cfa .config console log report ci-upstream-net-this-kasan-gce
2019/08/23 00:08 net-old cc07db5a5b10 d003d6d0 .config console log report ci-upstream-net-this-kasan-gce
2019/08/26 08:28 net-next-old 0846e1616f0f d21c5d9d .config console log report ci-upstream-net-kasan-gce
2019/08/26 00:51 net-next-old c1236979b4d2 d21c5d9d .config console log report ci-upstream-net-kasan-gce
2019/08/24 06:49 linux-next 9733a7c62c66 78ded196 .config console log report ci-upstream-linux-next-kasan-gce-root
* Struck through repros no longer work on HEAD.