syzbot


BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low!

Status: fixed on 2020/12/09 20:00
Reported-by: syzbot+91fd909b6e62ebe06131@syzkaller.appspotmail.com
Fix commit: 1a33e10e4a95 net: partially revert dynamic lockdep key changes
First crash: 2038d, last: 1598d
Cause bisection: introduced by (bisect log) :
commit 726e41097920a73e4c7c33385dcc0debb1281e18
Author: Benjamin Herrenschmidt <benh@kernel.crashing.org>
Date: Tue Jul 10 00:29:10 2018 +0000

  drivers: core: Remove glue dirs from sysfs earlier

Crash: WARNING in kernfs_get (log)
Repro: C syz .config
  
Fix bisection: failed (error log, bisect log)
  
Discussions (8)
Title Replies (including bot) Last reply
[PATCH v5] lockdep: Allow tuning tracing capacity constants. 4 (4) 2021/04/05 11:44
[PATCH v4 (resend)] lockdep: Allow tuning tracing capacity constants. 3 (3) 2021/02/01 13:24
[PATCH] lockdep: Introduce CONFIG_LOCKDEP_LARGE 29 (29) 2021/01/01 08:09
BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! 1 (1) 2020/12/09 08:02
Reminder: 5 open syzbot bugs in lockdep subsystem 3 (3) 2019/07/10 16:13
Reminder: 29 open syzbot bugs in bluetooth subsystem 1 (1) 2019/07/09 19:07
Reminder: 27 open syzbot bugs in bluetooth subsystem 1 (1) 2019/06/24 05:14
BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! 1 (4) 2019/04/11 21:50
Similar bugs (8)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (6) btrfs C 2 43d 43d 0/28 closed as invalid on 2024/08/30 15:02
upstream BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (3) btrfs C 7 352d 352d 0/28 closed as invalid on 2023/10/17 19:49
upstream BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (5) btrfs C 931 51d 81d 27/28 fixed on 2024/08/14 19:57
upstream BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (4) btrfs C 8 347d 348d 0/28 closed as invalid on 2023/10/23 13:15
upstream BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (7) btrfs C 14 19h29m 19d 0/28 upstream: reported C repro on 2024/09/14 09:10
upstream BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (2) kernel C 2688 358d 1315d 23/28 fixed on 2023/10/12 12:47
linux-5.15 BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! origin:upstream missing-backport C error 2 220d 417d 0/3 upstream: reported C repro on 2023/08/14 00:36
linux-6.1 BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! origin:upstream C error 21 276d 555d 0/3 upstream: reported C repro on 2023/03/28 22:33

Sample crash report:
BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low!
turning off the locking correctness validator.
CPU: 0 PID: 31071 Comm: syz-executor102 Not tainted 5.6.0-rc7-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1e9/0x30e lib/dump_stack.c:118
 add_chain_cache kernel/locking/lockdep.c:442 [inline]
 lookup_chain_cache_add kernel/locking/lockdep.c:2914 [inline]
 validate_chain+0x3e6b/0x7be0 kernel/locking/lockdep.c:2935
 __lock_acquire+0xc5a/0x1bc0 kernel/locking/lockdep.c:3954
 lock_acquire+0x154/0x250 kernel/locking/lockdep.c:4484
 __raw_spin_lock include/linux/spinlock_api_smp.h:142 [inline]
 _raw_spin_lock+0x2a/0x40 kernel/locking/spinlock.c:151
 update_cfs_rq_load_avg kernel/sched/fair.c:3485 [inline]
 update_load_avg+0x1b7/0x1060 kernel/sched/fair.c:3605
 enqueue_entity+0x10d/0xea0 kernel/sched/fair.c:4023
 enqueue_task_fair+0x283/0xe50 kernel/sched/fair.c:5259
 enqueue_task kernel/sched/core.c:1307 [inline]
 activate_task+0x2e0/0x3a0 kernel/sched/core.c:1329
 ttwu_do_activate kernel/sched/core.c:2260 [inline]
 ttwu_queue kernel/sched/core.c:2405 [inline]
 try_to_wake_up+0xac0/0xfe0 kernel/sched/core.c:2639
 __queue_work+0x90d/0xc60 kernel/workqueue.c:1488
 queue_work_on+0xcb/0x1a0 kernel/workqueue.c:1515
 release_task_stack kernel/fork.c:440 [inline]
 put_task_stack+0x9c/0x120 kernel/fork.c:451
 finish_task_switch+0x3f1/0x550 kernel/sched/core.c:3251
 context_switch kernel/sched/core.c:3383 [inline]
 __schedule+0x7d1/0xc50 kernel/sched/core.c:4080
 preempt_schedule_irq+0xca/0x150 kernel/sched/core.c:4337
 retint_kernel+0x1b/0x2b
RIP: 0010:compound_head include/linux/page-flags.h:176 [inline]
RIP: 0010:virt_to_head_page include/linux/mm.h:723 [inline]
RIP: 0010:qlink_to_cache mm/kasan/quarantine.c:128 [inline]
RIP: 0010:qlist_free_all mm/kasan/quarantine.c:164 [inline]
RIP: 0010:quarantine_reduce+0x13d/0x1c0 mm/kasan/quarantine.c:260
Code: 89 15 e7 53 83 09 48 c7 c7 48 a2 10 89 48 89 c6 e8 58 d7 49 06 48 89 ef e8 40 3f 84 ff 48 c1 e8 06 48 83 e0 c0 49 8b 4c 07 08 <f6> c1 01 75 1d 4c 01 f8 48 8b 70 18 48 8b 5d 00 48 89 ef e8 eb 03
RSP: 0018:ffffc900076bf608 EFLAGS: 00000202 ORIG_RAX: ffffffffffffff13
RAX: 000000000267ed80 RBX: ffff888099fb6918 RCX: ffffea00024fa0c8
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: ffff888099fb6918 R08: ffffffff813519dc R09: fffffbfff15dbb1a
R10: fffffbfff15dbb1a R11: 0000000000000000 R12: 0000000000000880
R13: 0000000000001000 R14: 0000000000000000 R15: ffffea0000000000
 __kasan_kmalloc+0x43/0x1c0 mm/kasan/common.c:496
 slab_post_alloc_hook mm/slab.h:584 [inline]
 slab_alloc mm/slab.c:3320 [inline]
 __do_kmalloc mm/slab.c:3654 [inline]
 __kmalloc+0x228/0x330 mm/slab.c:3665
 kmalloc include/linux/slab.h:560 [inline]
 sk_prot_alloc+0xa7/0x2b0 net/core/sock.c:1603
 sk_alloc+0x35/0x990 net/core/sock.c:1657
 tun_chr_open+0x77/0x460 drivers/net/tun.c:3423
 misc_open+0x346/0x3c0 drivers/char/misc.c:141
 chrdev_open+0x498/0x580 fs/char_dev.c:414
 do_dentry_open+0x828/0x10a0 fs/open.c:797
 do_last fs/namei.c:3490 [inline]
 path_openat+0x13b5/0x40d0 fs/namei.c:3607
 do_filp_open+0x191/0x3a0 fs/namei.c:3637
 do_sys_openat2+0x448/0x6c0 fs/open.c:1146
 do_sys_open fs/open.c:1162 [inline]
 __do_sys_openat fs/open.c:1176 [inline]
 __se_sys_openat fs/open.c:1171 [inline]
 __x64_sys_openat+0x1c8/0x1f0 fs/open.c:1171
 do_syscall_64+0xf3/0x1b0 arch/x86/entry/common.c:294
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x441279
Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00
RSP: 002b:00007ffd16066308 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279
RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffffffffffffff9c
RBP: 00000000001ea318 R08: 0000000000000004 R09: 00000000004002c8
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401ff0
R13: 0000000000402080 R14: 0000000000000000 R15: 0000000000000000

Crashes (25236):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2020/03/29 14:07 upstream 906c40438bb6 05736b29 .config console log report syz C ci-upstream-kasan-gce-smack-root
2020/03/29 09:32 upstream 906c40438bb6 05736b29 .config console log report syz C ci-upstream-kasan-gce-smack-root
2020/03/29 07:41 upstream 906c40438bb6 05736b29 .config console log report syz C ci-upstream-kasan-gce-selinux-root
2020/03/28 22:16 upstream 69c5eea3128e f1ebdfba .config console log report syz C ci-upstream-kasan-gce-selinux-root
2020/03/27 11:36 upstream f3e69428b5e2 7d95711b .config console log report syz C ci-upstream-kasan-gce-smack-root
2020/03/26 12:13 upstream 1b649e0bcae7 e8e6c7d2 .config console log report syz C ci-upstream-kasan-gce-selinux-root
2020/03/26 01:48 upstream e2cf67f6689a 41f049cc .config console log report syz C ci-upstream-kasan-gce-smack-root
2020/03/23 11:57 upstream 67d584e33e54 78267cec .config console log report syz C ci-upstream-kasan-gce-root
2020/03/20 13:35 upstream cd607737f3b8 2c31c529 .config console log report syz C ci-upstream-kasan-gce-selinux-root
2020/03/20 09:27 upstream cd607737f3b8 2c31c529 .config console log report syz C ci-upstream-kasan-gce-smack-root
2020/03/19 17:52 upstream 5076190daded 2c31c529 .config console log report syz C ci-upstream-kasan-gce-selinux-root
2020/03/18 13:33 upstream ac309e7744be 97bc55ce .config console log report syz C ci-upstream-kasan-gce-smack-root
2020/03/18 12:44 upstream ac309e7744be 97bc55ce .config console log report syz C ci-upstream-kasan-gce-root
2020/03/17 11:18 upstream fb33c6510d55 749688d2 .config console log report syz C ci-upstream-kasan-gce-root
2020/03/17 09:28 upstream fb33c6510d55 749688d2 .config console log report syz C ci-upstream-kasan-gce-selinux-root
2020/03/17 06:19 upstream fb33c6510d55 749688d2 .config console log report syz C ci-upstream-kasan-gce-root
2020/03/16 23:17 upstream fb33c6510d55 749688d2 .config console log report syz C ci-upstream-kasan-gce-selinux-root
2020/03/16 07:30 upstream a42a7bb6f536 749688d2 .config console log report syz C ci-upstream-kasan-gce-root
2020/03/16 07:00 upstream a42a7bb6f536 749688d2 .config console log report syz C ci-upstream-kasan-gce-smack-root
2020/03/15 21:57 upstream d3dca69085e9 749688d2 .config console log report syz C ci-upstream-kasan-gce-smack-root
2020/03/13 16:19 upstream 3cc6e2c599cd d850e9d0 .config console log report syz C ci-upstream-kasan-gce-smack-root
2020/03/13 09:26 upstream 3cc6e2c599cd d850e9d0 .config console log report syz C ci-upstream-kasan-gce-root
2020/03/13 09:19 upstream 3cc6e2c599cd d850e9d0 .config console log report syz C ci-upstream-kasan-gce-smack-root
2020/03/12 18:55 upstream e6e6ec48dd0f d850e9d0 .config console log report syz C ci-upstream-kasan-gce-smack-root
2020/03/10 17:19 upstream 30bb5572ce7a 35f53e45 .config console log report syz C ci-upstream-kasan-gce-root
2020/03/10 07:30 upstream 30bb5572ce7a 35f53e45 .config console log report syz C ci-upstream-kasan-gce-selinux-root
2020/03/09 12:35 upstream 2c523b344dfa 2e9971bb .config console log report syz C ci-upstream-kasan-gce-selinux-root
2020/03/07 18:08 upstream 63849c8f4107 2e9971bb .config console log report syz C ci-upstream-kasan-gce-root
2019/04/11 01:42 upstream 771acc7e4a6e e955ac50 .config console log report syz C ci-upstream-kasan-gce
2020/03/31 00:26 bpf a0ba26f37ea0 c8d1cc20 .config console log report syz C ci-upstream-bpf-kasan-gce
2020/03/18 05:25 net-old 32ca98feab8c 97bc55ce .config console log report syz C ci-upstream-net-this-kasan-gce
2020/03/14 20:16 net-old 94b18a87efdd 749688d2 .config console log report syz C ci-upstream-net-this-kasan-gce
2020/03/12 14:18 net-old e1f550dc44a4 d850e9d0 .config console log report syz C ci-upstream-net-this-kasan-gce
2020/03/10 09:31 net-old 661388f9b000 35f53e45 .config console log report syz C ci-upstream-net-this-kasan-gce
2020/03/08 20:50 net-old aeaa925bff84 2e9971bb .config console log report syz C ci-upstream-net-this-kasan-gce
2020/03/08 10:06 net-old aeaa925bff84 2e9971bb .config console log report syz C ci-upstream-net-this-kasan-gce
2020/03/31 01:11 net-next-old 41b145024ca7 c8d1cc20 .config console log report syz C ci-upstream-net-kasan-gce
2020/03/17 10:58 net-next-old 86e85bf6981c 749688d2 .config console log report syz C ci-upstream-net-kasan-gce
2020/03/27 04:17 upstream 9420e8ade435 6d25c5a0 .config console log report syz ci-upstream-kasan-gce-smack-root
2020/03/24 11:55 upstream 979e52ca0469 33e14df3 .config console log report syz ci-upstream-kasan-gce-root
2020/03/12 04:17 net-old 2165fdf4bc2d e7caca8e .config console log report syz ci-upstream-net-this-kasan-gce
2020/04/20 17:54 upstream ae83d0b416db 347a5dc3 .config console log report ci-upstream-kasan-gce
2020/03/30 18:41 upstream 7111951b8d49 c8d1cc20 .config console log report ci-upstream-kasan-gce-root
2020/03/30 18:41 upstream 7111951b8d49 c8d1cc20 .config console log report ci-upstream-kasan-gce-selinux-root
2020/03/30 14:53 upstream 7111951b8d49 c8d1cc20 .config console log report ci-upstream-kasan-gce-smack-root
2020/03/27 11:28 upstream f3e69428b5e2 7d95711b .config console log report ci-upstream-kasan-gce
2020/03/29 10:33 upstream 906c40438bb6 05736b29 .config console log report ci-upstream-kasan-gce-386
2020/01/12 20:48 upstream 040a3c33623b 53faa9fe .config console log report ci-qemu-upstream-386
2020/05/19 21:24 bpf f85c1598ddfe 6d882fd2 .config console log report ci-upstream-bpf-kasan-gce
2020/04/01 18:40 bpf a0ba26f37ea0 a34e2c33 .config console log report ci-upstream-bpf-kasan-gce
2020/04/01 16:08 bpf a0ba26f37ea0 a34e2c33 .config console log report ci-upstream-bpf-kasan-gce
2020/04/01 15:56 bpf a0ba26f37ea0 a34e2c33 .config console log report ci-upstream-bpf-kasan-gce
2020/04/01 13:48 net-old 0141317611ab a34e2c33 .config console log report ci-upstream-net-this-kasan-gce
2020/04/01 13:40 bpf a0ba26f37ea0 a34e2c33 .config console log report ci-upstream-bpf-kasan-gce
2020/04/01 11:15 bpf a0ba26f37ea0 a34e2c33 .config console log report ci-upstream-bpf-kasan-gce
2020/04/01 10:14 bpf a0ba26f37ea0 a34e2c33 .config console log report ci-upstream-bpf-kasan-gce
2020/04/01 09:50 bpf a0ba26f37ea0 a34e2c33 .config console log report ci-upstream-bpf-kasan-gce
2020/04/01 08:35 bpf a0ba26f37ea0 a34e2c33 .config console log report ci-upstream-bpf-kasan-gce
2020/04/01 02:13 net-old 0141317611ab a34e2c33 .config console log report ci-upstream-net-this-kasan-gce
2020/04/01 01:30 bpf a0ba26f37ea0 a34e2c33 .config console log report ci-upstream-bpf-kasan-gce
2020/03/31 12:08 bpf a0ba26f37ea0 c8d1cc20 .config console log report ci-upstream-bpf-kasan-gce
2020/03/31 09:19 bpf a0ba26f37ea0 c8d1cc20 .config console log report ci-upstream-bpf-kasan-gce
2020/03/31 08:17 bpf a0ba26f37ea0 c8d1cc20 .config console log report ci-upstream-bpf-kasan-gce
2020/03/31 07:16 bpf a0ba26f37ea0 c8d1cc20 .config console log report ci-upstream-bpf-kasan-gce
2020/03/31 07:08 net-old 0141317611ab c8d1cc20 .config console log report ci-upstream-net-this-kasan-gce
2020/03/31 04:48 bpf a0ba26f37ea0 c8d1cc20 .config console log report ci-upstream-bpf-kasan-gce
2020/03/31 04:27 net-old 0141317611ab c8d1cc20 .config console log report ci-upstream-net-this-kasan-gce
2020/03/31 03:16 bpf a0ba26f37ea0 c8d1cc20 .config console log report ci-upstream-bpf-kasan-gce
2020/03/31 03:01 bpf a0ba26f37ea0 c8d1cc20 .config console log report ci-upstream-bpf-kasan-gce
2020/03/30 23:50 bpf a0ba26f37ea0 c8d1cc20 .config console log report ci-upstream-bpf-kasan-gce
2020/03/30 22:49 bpf a0ba26f37ea0 c8d1cc20 .config console log report ci-upstream-bpf-kasan-gce
2020/03/30 22:09 bpf a0ba26f37ea0 c8d1cc20 .config console log report ci-upstream-bpf-kasan-gce
2020/03/30 21:03 bpf a0ba26f37ea0 c8d1cc20 .config console log report ci-upstream-bpf-kasan-gce
2020/04/01 17:45 bpf-next 3902baf9abfa a34e2c33 .config console log report ci-upstream-bpf-next-kasan-gce
2020/04/01 16:54 bpf-next 3902baf9abfa a34e2c33 .config console log report ci-upstream-bpf-next-kasan-gce
2020/04/01 14:52 bpf-next 3902baf9abfa a34e2c33 .config console log report ci-upstream-bpf-next-kasan-gce
2020/04/01 14:49 bpf-next 3902baf9abfa a34e2c33 .config console log report ci-upstream-bpf-next-kasan-gce
2020/04/01 12:38 bpf-next 3902baf9abfa a34e2c33 .config console log report ci-upstream-bpf-next-kasan-gce
2020/04/01 11:37 bpf-next 3902baf9abfa a34e2c33 .config console log report ci-upstream-bpf-next-kasan-gce
2020/04/01 08:48 bpf-next 3902baf9abfa a34e2c33 .config console log report ci-upstream-bpf-next-kasan-gce
2020/04/01 07:27 bpf-next 3902baf9abfa a34e2c33 .config console log report ci-upstream-bpf-next-kasan-gce
2020/04/01 06:10 net-next-old 7f80ccfe9968 a34e2c33 .config console log report ci-upstream-net-kasan-gce
2020/04/01 04:53 net-next-old 7f80ccfe9968 a34e2c33 .config console log report ci-upstream-net-kasan-gce
2020/04/01 03:31 net-next-old 7f80ccfe9968 a34e2c33 .config console log report ci-upstream-net-kasan-gce
2020/03/31 11:08 bpf-next 8596a75f6c83 c8d1cc20 .config console log report ci-upstream-bpf-next-kasan-gce
2020/03/31 10:23 bpf-next 8596a75f6c83 c8d1cc20 .config console log report ci-upstream-bpf-next-kasan-gce
2020/03/31 09:23 bpf-next 8596a75f6c83 c8d1cc20 .config console log report ci-upstream-bpf-next-kasan-gce
2020/03/31 05:58 net-next-old 6fe9a949d3fe c8d1cc20 .config console log report ci-upstream-net-kasan-gce
2020/03/31 01:50 bpf-next 641cd7b06c91 c8d1cc20 .config console log report ci-upstream-bpf-next-kasan-gce
2020/03/31 00:40 bpf-next 641cd7b06c91 c8d1cc20 .config console log report ci-upstream-bpf-next-kasan-gce
2020/03/30 20:50 bpf-next 641cd7b06c91 c8d1cc20 .config console log report ci-upstream-bpf-next-kasan-gce
2020/03/30 19:46 bpf-next 641cd7b06c91 c8d1cc20 .config console log report ci-upstream-bpf-next-kasan-gce
2020/03/30 19:44 bpf-next 641cd7b06c91 c8d1cc20 .config console log report ci-upstream-bpf-next-kasan-gce
2020/02/11 23:38 linux-next ac431e2d7b1b 4d1ab643 .config console log report ci-upstream-linux-next-kasan-gce-root
2019/03/06 16:55 linux-next cf08baa29613 05cf83bf .config console log report ci-upstream-linux-next-kasan-gce-root
* Struck through repros no longer work on HEAD.