syzbot


BUG: workqueue leaked lock or atomic in addrconf_dad_work

Status: premoderation: reported on 2024/04/05 08:49
Reported-by: syzbot+e8c26121536a9edfe97f@syzkaller.appspotmail.com
First crash: 76d, last: 76d
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-5-15 BUG: workqueue leaked lock or atomic in addrconf_dad_work 1 66d 66d 0/2 premoderation: reported on 2024/04/15 19:13

Sample crash report:
IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
BUG: workqueue leaked lock or atomic: kworker/1:2/0x00000001/5100
     last function: addrconf_dad_work
CPU: 1 PID: 5100 Comm: kworker/1:2 Tainted: G        W          6.1.75-syzkaller-00123-g60534eef4739 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
Workqueue: ipv6_addrconf addrconf_dad_work
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x151/0x1b7 lib/dump_stack.c:106
 dump_stack+0x15/0x1b lib/dump_stack.c:113
 process_one_work+0x94e/0xcb0 kernel/workqueue.c:2314
 worker_thread+0xa60/0x1260 kernel/workqueue.c:2446
 kthread+0x26d/0x300 kernel/kthread.c:386
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306
 </TASK>
BUG: workqueue leaked lock or atomic: kworker/1:2/0x00000001/5100
     last function: process_srcu
CPU: 1 PID: 5100 Comm: kworker/1:2 Tainted: G        W          6.1.75-syzkaller-00123-g60534eef4739 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
Workqueue: rcu_gp process_srcu
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x151/0x1b7 lib/dump_stack.c:106
 dump_stack+0x15/0x1b lib/dump_stack.c:113
 process_one_work+0x94e/0xcb0 kernel/workqueue.c:2314
 worker_thread+0xa60/0x1260 kernel/workqueue.c:2446
 kthread+0x26d/0x300 kernel/kthread.c:386
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306
 </TASK>
BUG: workqueue leaked lock or atomic: kworker/1:2/0x00000001/5100
     last function: free_work
CPU: 1 PID: 5100 Comm: kworker/1:2 Tainted: G        W          6.1.75-syzkaller-00123-g60534eef4739 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
Workqueue: events free_work
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x151/0x1b7 lib/dump_stack.c:106
 dump_stack+0x15/0x1b lib/dump_stack.c:113
 process_one_work+0x94e/0xcb0 kernel/workqueue.c:2314
 worker_thread+0xa60/0x1260 kernel/workqueue.c:2446
 kthread+0x26d/0x300 kernel/kthread.c:386
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306
 </TASK>
BUG: workqueue leaked lock or atomic: kworker/1:2/0x00000001/5100
     last function: mld_ifc_work
CPU: 1 PID: 5100 Comm: kworker/1:2 Tainted: G        W          6.1.75-syzkaller-00123-g60534eef4739 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
Workqueue: mld mld_ifc_work
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x151/0x1b7 lib/dump_stack.c:106
 dump_stack+0x15/0x1b lib/dump_stack.c:113
 process_one_work+0x94e/0xcb0 kernel/workqueue.c:2314
 worker_thread+0xa60/0x1260 kernel/workqueue.c:2446
 kthread+0x26d/0x300 kernel/kthread.c:386
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306
 </TASK>
BUG: scheduling while atomic: kworker/1:2/5100/0x00000002
Modules linked in:
Preemption disabled at:
[<ffffffff842b53db>] netlink_lock_table net/netlink/af_netlink.c:471 [inline]
[<ffffffff842b53db>] netlink_broadcast+0x7b/0x1160 net/netlink/af_netlink.c:1519
CPU: 1 PID: 5100 Comm: kworker/1:2 Tainted: G        W          6.1.75-syzkaller-00123-g60534eef4739 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
Workqueue: ipv6_addrconf addrconf_dad_work
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x151/0x1b7 lib/dump_stack.c:106
 dump_stack+0x15/0x1b lib/dump_stack.c:113
 __schedule_bug+0x195/0x260 kernel/sched/core.c:5960
 schedule_debug kernel/sched/core.c:5987 [inline]
 __schedule+0xcf7/0x1550 kernel/sched/core.c:6622
 schedule+0xc3/0x180 kernel/sched/core.c:6805
 schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:6864
 mutex_optimistic_spin kernel/locking/mutex.c:529 [inline]
 __mutex_lock_common kernel/locking/mutex.c:629 [inline]
 __mutex_lock+0x5b6/0x1ca0 kernel/locking/mutex.c:774
 __mutex_lock_slowpath+0xe/0x10 kernel/locking/mutex.c:1063
 mutex_lock+0x130/0x1e0 kernel/locking/mutex.c:295
 rtnl_lock+0x15/0x20 net/core/rtnetlink.c:74
 addrconf_dad_work+0xcc/0x16b0 net/ipv6/addrconf.c:4120
 process_one_work+0x73d/0xcb0 kernel/workqueue.c:2299
 worker_thread+0xa60/0x1260 kernel/workqueue.c:2446
 kthread+0x26d/0x300 kernel/kthread.c:386
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306
 </TASK>
IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
bridge0: port 2(bridge_slave_1) entered blocking state
bridge0: port 2(bridge_slave_1) entered forwarding state
IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/04/05 08:48 android14-6.1 60534eef4739 0ee3535e .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-6-1-perf BUG: workqueue leaked lock or atomic in addrconf_dad_work
* Struck through repros no longer work on HEAD.