WARNING: ODEBUG bug in netdev

Date	Name	Commit	Repro	Result
2023/07/08	upstream (ToT)	8689f4f2ea56	C	Didn't crash

Date

Name

Commit

Repro

Result

2023/07/08

upstream (ToT)

8689f4f2ea56

Didn't crash

Kernel	Title	Repro	Cause bisect	Fix bisect	Count	Last	Reported	Patched	Status
linux-4.14	WARNING: ODEBUG bug in netdev_freemem				179	1528d	1825d	0/1	auto-closed as invalid on 2020/06/20 15:09
upstream	WARNING: ODEBUG bug in netdev_freemem (3) usb	C			56	23h24m	35d	0/26	upstream: reported C repro on 2024/03/23 19:06
linux-4.19	WARNING: ODEBUG bug in netdev_freemem	syz		error	243	1529d	1838d	0/1	auto-obsoleted due to no activity on 2022/08/27 05:00
upstream	WARNING: ODEBUG bug in netdev_freemem	syz	done		1042	1780d	1944d	12/26	fixed on 2019/06/14 18:22
upstream	WARNING: ODEBUG bug in netdev_freemem (2) batman	syz	error	error	1377	315d	1770d	0/26	auto-obsoleted due to no activity on 2023/11/05 09:08
linux-6.1	WARNING: ODEBUG bug in netdev_freemem				1	359d	359d	0/3	auto-obsoleted due to no activity on 2023/08/23 09:09

------------[ cut here ]------------ ODEBUG: free active (active state 0) object type: timer_list hint: arch_local_irq_disable arch/arm64/include/asm/irqflags.h:59 [inline] ODEBUG: free active (active state 0) object type: timer_list hint: arch_local_irq_save arch/arm64/include/asm/irqflags.h:112 [inline] ODEBUG: free active (active state 0) object type: timer_list hint: delayed_work_timer_fn+0x0/0x90 kernel/workqueue.c:1635 WARNING: CPU: 0 PID: 1689 at lib/debugobjects.c:511 debug_print_object lib/debugobjects.c:508 [inline] WARNING: CPU: 0 PID: 1689 at lib/debugobjects.c:511 __debug_check_no_obj_freed lib/debugobjects.c:1015 [inline] WARNING: CPU: 0 PID: 1689 at lib/debugobjects.c:511 debug_check_no_obj_freed+0x3f0/0x50c lib/debugobjects.c:1046 Modules linked in: CPU: 0 PID: 1689 Comm: kworker/u4:6 Not tainted 5.15.116-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023 Workqueue: netns cleanup_net pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : debug_print_object lib/debugobjects.c:508 [inline] pc : __debug_check_no_obj_freed lib/debugobjects.c:1015 [inline] pc : debug_check_no_obj_freed+0x3f0/0x50c lib/debugobjects.c:1046 lr : debug_print_object lib/debugobjects.c:508 [inline] lr : __debug_check_no_obj_freed lib/debugobjects.c:1015 [inline] lr : debug_check_no_obj_freed+0x3f0/0x50c lib/debugobjects.c:1046 sp : ffff800021027540 x29: ffff800021027580 x28: ffff800011ac2e40 x27: dfff800000000000 x26: ffff0000eb5ed4f8 x25: 0000000000000000 x24: ffff8000186826f0 x23: ffff0000cff535e8 x22: ffff800011f51238 x21: ffff800011ac2e40 x20: ffff8000186826e8 x19: ffff0000eb5ec000 x18: 0000000000000001 x17: ff80800008335ea8 x16: ffff80001195028c x15: ffff800008335ea8 x14: 00000000ffffffff x13: ffffffffffffffff x12: 0000000000000000 x11: ff8080000832d950 x10: 0000000000000000 x9 : 46f97458777aca00 x8 : 46f97458777aca00 x7 : 0000000000000001 x6 : 0000000000000001 x5 : ffff800021026cb8 x4 : ffff8000149cfca0 x3 : ffff80000854dc88 x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000061 Call trace: debug_print_object lib/debugobjects.c:508 [inline] __debug_check_no_obj_freed lib/debugobjects.c:1015 [inline] debug_check_no_obj_freed+0x3f0/0x50c lib/debugobjects.c:1046 slab_free_hook mm/slub.c:1680 [inline] slab_free_freelist_hook+0x9c/0x1ec mm/slub.c:1731 slab_free mm/slub.c:3499 [inline] kfree+0x178/0x410 mm/slub.c:4559 kvfree+0x40/0x50 mm/util.c:654 netdev_freemem+0x4c/0x64 net/core/dev.c:10771 netdev_release+0x88/0xb0 net/core/net-sysfs.c:1903 device_release+0x8c/0x1ac kobject_cleanup lib/kobject.c:713 [inline] kobject_release lib/kobject.c:744 [inline] kref_put include/linux/kref.h:65 [inline] kobject_put+0x2c4/0x438 lib/kobject.c:761 netdev_run_todo+0x968/0xae0 net/core/dev.c:10635 rtnl_unlock+0x14/0x20 net/core/rtnetlink.c:112 default_device_exit_batch+0x4c4/0x520 net/core/dev.c:11597 ops_exit_list net/core/net_namespace.c:174 [inline] cleanup_net+0x5e0/0x9bc net/core/net_namespace.c:596 process_one_work+0x790/0x11b8 kernel/workqueue.c:2307 worker_thread+0x910/0x1034 kernel/workqueue.c:2454 kthread+0x37c/0x45c kernel/kthread.c:319 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:870 irq event stamp: 9720696 hardirqs last enabled at (9720695): [<ffff80000832bae8>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257 hardirqs last disabled at (9720696): [<ffff80001194b920>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:387 softirqs last enabled at (9720636): [<ffff8000117ac044>] spin_unlock_bh include/linux/spinlock.h:408 [inline] softirqs last enabled at (9720636): [<ffff8000117ac044>] batadv_tvlv_handler_unregister+0x160/0x27c net/batman-adv/tvlv.c:575 softirqs last disabled at (9720634): [<ffff8000117abfb0>] spin_lock_bh include/linux/spinlock.h:368 [inline] softirqs last disabled at (9720634): [<ffff8000117abfb0>] batadv_tvlv_handler_unregister+0xcc/0x27c net/batman-adv/tvlv.c:573 ---[ end trace 6c1eb7654fd77a05 ]--- netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0

Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	VM info	Assets (help?)	Manager	Title
2023/06/11 18:09	linux-5.15.y	7349e40704a0	49519f06	.config	console log	report	syz		[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan-arm64	WARNING: ODEBUG bug in netdev_freemem
2023/05/23 18:31	linux-5.15.y	9d6bde853685	4bce1a3e	.config	console log	report	syz		[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan-arm64	WARNING: ODEBUG bug in netdev_freemem
2023/05/14 14:18	linux-5.15.y	b0ece631f84a	2b9ba477	.config	console log	report	syz		[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan-arm64	WARNING: ODEBUG bug in netdev_freemem
2023/03/31 08:26	linux-5.15.y	c957cbb87315	f325deb0	.config	console log	report	syz		[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan-arm64	WARNING: ODEBUG bug in netdev_freemem
2023/06/10 04:23	linux-5.15.y	7349e40704a0	9018a337	.config	console log	report		info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan-arm64	WARNING: ODEBUG bug in netdev_freemem
2023/05/26 09:38	linux-5.15.y	1fe619a7d252	b40ef614	.config	console log	report		info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan-arm64	WARNING: ODEBUG bug in netdev_freemem
2023/05/23 02:44	linux-5.15.y	9d6bde853685	4bce1a3e	.config	console log	report		info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan-arm64	WARNING: ODEBUG bug in netdev_freemem
2023/05/03 00:53	linux-5.15.y	8a7f2a5c5aa1	48e0a81d	.config	console log	report		info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan-arm64	WARNING: ODEBUG bug in netdev_freemem
2023/04/24 19:46	linux-5.15.y	3299fb36854f	fdc18293	.config	console log	report		info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan-arm64	WARNING: ODEBUG bug in netdev_freemem
2023/04/16 09:52	linux-5.15.y	4fdad925aa1a	ec410564	.config	console log	report		info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan-arm64	WARNING: ODEBUG bug in netdev_freemem
2023/04/15 11:51	linux-5.15.y	4fdad925aa1a	ec410564	.config	console log	report		info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan-arm64	WARNING: ODEBUG bug in netdev_freemem
2023/04/05 21:00	linux-5.15.y	d86dfc4d95cd	8b834965	.config	console log	report		info	[disk image] [vmlinux] [kernel image]	ci2-linux-5-15-kasan-arm64	WARNING: ODEBUG bug in netdev_freemem