syzbot

 sign-in | mailing list | source | docs
🐞 Open [958] Subsystems 🐞 Fixed [4569] 🐞 Invalid [10545] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

WARNING: ODEBUG bug in smsusb_term_device

Status: upstream: reported C repro on 2019/07/23 12:48
Labels: usb media (incorrect?)
Reported-by: syzbot+25ddf1bb485cd9400ca4@syzkaller.appspotmail.com
First crash: 1415d, last: 115d

Cause bisection: introduced by (bisect log) [ignored commit]:
commit f2c2e717642c66f7fe7e5dd69b2e8ff5849f4d10
Author: Andrey Konovalov <andreyknvl@google.com>
Date: Mon Feb 24 16:13:03 2020 +0000

  usb: gadget: add raw-gadget interface

Crash: WARNING: ODEBUG bug in smsusb_term_device (log)
Repro: syz .config

Fix bisection: the fix commit could be any of (bisect log):
  3dbdb38e2869 Merge branch 'for-5.14' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/cgroup
  c40e8341e3b3 Merge tag 'cgroup-for-6.0-rc2-fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/cgroup
Discussions (3)
Title Replies (including bot) Last reply
Reminder: 35 open syzbot bugs in media subsystem 1 (1) 2019/07/24 01:39
Reminder: 67 open syzbot bugs in usb subsystem 1 (1) 2019/07/24 01:35
WARNING: ODEBUG bug in smsusb_term_device 0 (1) 2019/07/23 12:48
Last patch testing requests (10)
Created Duration User Patch Repo Result
2023/05/13 20:28 14m retest repro upstream report log
2023/05/13 20:28 21m retest repro upstream report log
2023/05/13 20:28 21m retest repro linux-next report log
2023/05/12 21:38 19m retest repro https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing OK log
2023/05/12 21:38 20m retest repro https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing OK log
2023/05/12 21:38 22m retest repro https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing OK log
2023/05/12 21:38 14m retest repro https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing report log
2023/05/12 16:05 22m retest repro https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing OK log
2023/05/12 16:05 19m retest repro https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing OK log
2023/05/12 16:05 30m retest repro https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing OK log

Sample crash report:
smsusb:smsusb_init_device: smscore_start_device(...) failed
------------[ cut here ]------------
ODEBUG: free active (active state 0) object type: work_struct hint: do_submit_urb+0x0/0x3e0 drivers/media/usb/siano/smsusb.c:146
WARNING: CPU: 0 PID: 3946 at lib/debugobjects.c:505 debug_print_object+0x16e/0x250 lib/debugobjects.c:505
Modules linked in:
CPU: 0 PID: 3946 Comm: kworker/0:3 Not tainted 5.13.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: usb_hub_wq hub_event
RIP: 0010:debug_print_object+0x16e/0x250 lib/debugobjects.c:505
Code: ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 af 00 00 00 48 8b 14 dd 00 f8 e2 89 4c 89 ee 48 c7 c7 00 ec e2 89 e8 39 cf 08 05 <0f> 0b 83 05 d5 7a 14 0a 01 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e c3
RSP: 0000:ffffc900040eee08 EFLAGS: 00010086
RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000
RDX: ffff8880250e2080 RSI: ffffffff815ca6f5 RDI: fffff5200081ddb3
RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
R10: ffffffff815c452e R11: 0000000000000000 R12: ffffffff898ae820
R13: ffffffff89e2f240 R14: ffffffff814a0c90 R15: dffffc0000000000
FS:  0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f0e419ce6d8 CR3: 000000003a3ac000 CR4: 00000000001506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 __debug_check_no_obj_freed lib/debugobjects.c:987 [inline]
 debug_check_no_obj_freed+0x301/0x420 lib/debugobjects.c:1018
 kfree+0xd1/0x2c0 mm/slab.c:3802
 smsusb_term_device+0x1bd/0x2e0 drivers/media/usb/siano/smsusb.c:350
 smsusb_init_device+0xa80/0xb07 drivers/media/usb/siano/smsusb.c:487
 smsusb_probe+0xd8f/0xe2c drivers/media/usb/siano/smsusb.c:566
 usb_probe_interface+0x315/0x7f0 drivers/usb/core/driver.c:396
 really_probe+0x291/0xf60 drivers/base/dd.c:576
 driver_probe_device+0x298/0x410 drivers/base/dd.c:763
 __device_attach_driver+0x203/0x2c0 drivers/base/dd.c:870
 bus_for_each_drv+0x15f/0x1e0 drivers/base/bus.c:431
 __device_attach+0x228/0x4a0 drivers/base/dd.c:938
 bus_probe_device+0x1e4/0x290 drivers/base/bus.c:491
 device_add+0xbe0/0x2100 drivers/base/core.c:3324
 usb_set_configuration+0x113a/0x1910 drivers/usb/core/message.c:2164
 usb_generic_driver_probe+0xba/0x100 drivers/usb/core/generic.c:238
 usb_probe_device+0xd9/0x2c0 drivers/usb/core/driver.c:293
 really_probe+0x291/0xf60 drivers/base/dd.c:576
 driver_probe_device+0x298/0x410 drivers/base/dd.c:763
 __device_attach_driver+0x203/0x2c0 drivers/base/dd.c:870
 bus_for_each_drv+0x15f/0x1e0 drivers/base/bus.c:431
 __device_attach+0x228/0x4a0 drivers/base/dd.c:938
 bus_probe_device+0x1e4/0x290 drivers/base/bus.c:491
 device_add+0xbe0/0x2100 drivers/base/core.c:3324
 usb_new_device.cold+0x721/0x1058 drivers/usb/core/hub.c:2558
 hub_port_connect drivers/usb/core/hub.c:5278 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5418 [inline]
 port_event drivers/usb/core/hub.c:5564 [inline]
 hub_event+0x2357/0x4330 drivers/usb/core/hub.c:5646
 process_one_work+0x98d/0x1630 kernel/workqueue.c:2276
 worker_thread+0x658/0x11f0 kernel/workqueue.c:2422
 kthread+0x3e5/0x4d0 kernel/kthread.c:319
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295

Crashes (35):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets Manager Title
2021/07/09 01:03 upstream 3dbdb38e2869 1b20171a .config console log report syz ci-upstream-kasan-gce-selinux-root WARNING: ODEBUG bug in smsusb_term_device
2021/05/30 10:16 upstream 6799d4f2da49 325a8dab .config console log report syz ci-upstream-kasan-gce-smack-root WARNING: ODEBUG bug in smsusb_term_device
2021/06/20 19:22 linux-next a1f92694393a aba2b2fb .config console log report syz ci-upstream-linux-next-kasan-gce-root WARNING: ODEBUG bug in smsusb_term_device
2020/12/09 02:13 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing b175d273d4e4 40cc414d .config console log report syz ci2-upstream-usb
2022/03/26 13:13 upstream cb7cbaae7fd9 89bc8608 .config console log report syz C ci-qemu-upstream WARNING: ODEBUG bug in smsusb_term_device
2022/03/13 08:31 upstream aad611a868d1 9e8eaa75 .config console log report syz C ci-qemu-upstream WARNING: ODEBUG bug in smsusb_term_device
2022/03/04 19:55 upstream 38f80f42147f 45a13a73 .config console log report syz C ci-qemu-upstream WARNING: ODEBUG bug in smsusb_term_device
2021/02/16 23:15 upstream f40ddce88593 98682e5e .config console log report syz C ci-qemu-upstream WARNING: ODEBUG bug in smsusb_term_device
2020/06/19 18:37 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing f8f02d5c671f 123cf502 .config console log report syz C ci2-upstream-usb
2020/05/28 21:48 https://github.com/google/kasan.git usb-fuzzer d19c64b3d097 c7192a2f .config console log report syz C ci2-upstream-usb
2020/05/14 02:53 https://github.com/google/kasan.git usb-fuzzer 059e7e0ff26c a885920d .config console log report syz C ci2-upstream-usb
2020/03/24 15:08 https://github.com/google/kasan.git usb-fuzzer e17994d1e7b1 33e14df3 .config console log report syz C ci2-upstream-usb
2020/03/06 14:54 https://github.com/google/kasan.git usb-fuzzer d6ff8147a51c 7fb694ef .config console log report syz C ci2-upstream-usb
2020/02/28 21:48 https://github.com/google/kasan.git usb-fuzzer d6ff8147a51c c88c7b75 .config console log report syz C ci2-upstream-usb
2020/02/26 20:16 https://github.com/google/kasan.git usb-fuzzer d6ff8147a51c 251aabb7 .config console log report syz C ci2-upstream-usb
2020/02/24 23:18 https://github.com/google/kasan.git usb-fuzzer d6ff8147a51c 59b57593 .config console log report syz C ci2-upstream-usb
2020/01/31 16:23 https://github.com/google/kasan.git usb-fuzzer cd234325a5f1 5ed23f9a .config console log report syz C ci2-upstream-usb
2020/01/23 01:16 https://github.com/google/kasan.git usb-fuzzer 4cc301ee04d9 3334d684 .config console log report syz C ci2-upstream-usb
2019/12/17 05:09 https://github.com/google/kasan.git usb-fuzzer 4cc037ecf2cb d13d7958 .config console log report syz C ci2-upstream-usb
2019/09/22 10:56 https://github.com/google/kasan.git usb-fuzzer e0bd8d794fc9 d96e88f3 .config console log report syz C ci2-upstream-usb
2019/07/23 03:06 https://github.com/google/kasan.git usb-fuzzer 6a3599ceaa39 55e0c077 .config console log report syz C ci2-upstream-usb
2022/03/11 03:22 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 98d107b84614 9e8eaa75 .config console log report info ci2-upstream-usb WARNING: ODEBUG bug in smsusb_term_device
2021/11/14 17:11 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing c8c109546a19 75b04091 .config console log report info ci2-upstream-usb WARNING: ODEBUG bug in smsusb_term_device
2021/09/03 01:36 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 1b4f3dfb4792 f62a5829 .config console log report info ci2-upstream-usb WARNING: ODEBUG bug in smsusb_term_device
2021/02/06 13:14 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 23e32a595e11 0655e081 .config console log report info ci2-upstream-usb WARNING: ODEBUG bug in smsusb_term_device
2020/12/08 12:49 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 08a02f954b0d 9af51e31 .config console log report info ci2-upstream-usb
2020/11/19 22:53 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing e1e52361c61a 0767f13f .config console log report info ci2-upstream-usb
2020/10/10 16:15 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 93578a25d4e2 b74c49a6 .config console log report info ci2-upstream-usb
2019/12/14 10:38 https://github.com/google/kasan.git usb-fuzzer 4cc037ecf2cb eef6e580 .config console log report ci2-upstream-usb
2019/12/14 00:45 https://github.com/google/kasan.git usb-fuzzer 4cc037ecf2cb a5c1ab05 .config console log report ci2-upstream-usb
2019/09/07 07:12 https://github.com/google/kasan.git usb-fuzzer f0df5c1be1e9 a60cb4cd .config console log report ci2-upstream-usb
2019/09/02 10:24 https://github.com/google/kasan.git usb-fuzzer eea39f24f4a5 db7c31ca .config console log report ci2-upstream-usb
2019/09/01 18:17 https://github.com/google/kasan.git usb-fuzzer eea39f24f4a5 bad3cce2 .config console log report ci2-upstream-usb
2019/08/31 10:26 https://github.com/google/kasan.git usb-fuzzer eea39f24f4a5 bcd7bcc2 .config console log report ci2-upstream-usb
2019/08/30 22:38 https://github.com/google/kasan.git usb-fuzzer eea39f24f4a5 9adfa876 .config console log report ci2-upstream-usb
* Struck through repros no longer work on HEAD.