syzbot

 sign-in | mailing list | source | docs
🐞 Open [1156] Subsystems 🐞 Fixed [4412] 🐞 Invalid [9924] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

WARNING in notifier_chain_register

Status: upstream: reported C repro on 2022/07/06 13:50
Subsystems: kernel (incorrect?)
Reported-by: syzbot+5214f8dac5863061e37c@syzkaller.appspotmail.com
First crash: 266d, last: 178d

Cause bisection: introduced by (bisect log) :
commit ff7f2926114d3a50f5ffe461a9bce8d761748da5
Author: Vasyl Vavrychuk <vasyl.vavrychuk@opensynergy.com>
Date: Tue Apr 26 08:18:23 2022 +0000

  Bluetooth: core: Fix missing power_on work cancel on HCI close

Crash: INFO: task hung in hci_dev_close_sync (log)
Repro: C syz .config

Fix bisection: the fix commit could be any of (bisect log):
  ae3bbc04d4bf net: devlink: add port_init/fini() helpers to allow pre-register/post-unregister functions
  d82acd85cc41 net: dsa: move port_setup/teardown to be called outside devlink port registered area
Last patch testing requests:
Created Duration User Patch Repo Result
2023/01/09 19:32 22m retest repro net-next OK log
2023/01/09 19:32 22m retest repro upstream OK log
2023/01/09 19:32 22m retest repro net OK log
2023/01/09 19:32 22m retest repro upstream OK log
2022/07/08 11:16 18m hdanton@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git cb71b93c2dc3 OK log
2022/07/07 10:58 12m hdanton@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git cb71b93c2dc3 report log

Sample crash report:
------------[ cut here ]------------
notifier callback hci_suspend_notifier already registered
WARNING: CPU: 1 PID: 5022 at kernel/notifier.c:28 notifier_chain_register kernel/notifier.c:28 [inline]
WARNING: CPU: 1 PID: 5022 at kernel/notifier.c:28 notifier_chain_register+0x156/0x210 kernel/notifier.c:22
Modules linked in:
CPU: 1 PID: 5022 Comm: syz-executor271 Not tainted 6.0.0-rc6-next-20220923-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
RIP: 0010:notifier_chain_register kernel/notifier.c:28 [inline]
RIP: 0010:notifier_chain_register+0x156/0x210 kernel/notifier.c:22
Code: 89 ea 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 a5 00 00 00 49 8b 75 00 48 c7 c7 60 e6 eb 89 e8 9a 21 f7 07 <0f> 0b 41 bc ef ff ff ff e8 6d e8 2b 00 44 89 e0 48 83 c4 18 5b 5d
RSP: 0018:ffffc90006c67ce0 EFLAGS: 00010286
RAX: 0000000000000000 RBX: ffff8880733c1160 RCX: 0000000000000000
RDX: ffff88807b6057c0 RSI: ffffffff81620008 RDI: fffff52000d8cf8e
RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
R10: 0000000080000000 R11: 0000000000000001 R12: 0000000000000000
R13: ffff8880733c1160 R14: ffff888076b9d168 R15: dffffc0000000000
FS:  0000555555a47300(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000555555a47608 CR3: 0000000022830000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 __blocking_notifier_chain_register kernel/notifier.c:266 [inline]
 blocking_notifier_chain_register+0x6f/0xc0 kernel/notifier.c:284
 hci_register_suspend_notifier net/bluetooth/hci_core.c:2765 [inline]
 hci_register_suspend_notifier+0x9d/0xc0 net/bluetooth/hci_core.c:2759
 hci_sock_release+0x4a2/0x520 net/bluetooth/hci_sock.c:890
 __sock_release+0xcd/0x280 net/socket.c:650
 sock_close+0x18/0x20 net/socket.c:1365
 __fput+0x27c/0xa90 fs/file_table.c:320
 task_work_run+0x16b/0x270 kernel/task_work.c:179
 resume_user_mode_work include/linux/resume_user_mode.h:49 [inline]
 exit_to_user_mode_loop kernel/entry/common.c:171 [inline]
 exit_to_user_mode_prepare+0x23c/0x250 kernel/entry/common.c:203
 __syscall_exit_to_user_mode_work kernel/entry/common.c:285 [inline]
 syscall_exit_to_user_mode+0x19/0x50 kernel/entry/common.c:296
 do_syscall_64+0x42/0xb0 arch/x86/entry/common.c:86
 entry_SYSCALL_64_after_hwframe+0x63/0xcd
RIP: 0033:0x7f67a713a38b
Code: 0f 05 48 3d 00 f0 ff ff 77 45 c3 0f 1f 40 00 48 83 ec 18 89 7c 24 0c e8 63 fc ff ff 8b 7c 24 0c 41 89 c0 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 44 89 c7 89 44 24 0c e8 a1 fc ff ff 8b 44
RSP: 002b:00007ffdc20a89d0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
RAX: 0000000000000000 RBX: 0000000000000005 RCX: 00007f67a713a38b
RDX: ffffffffffffffb8 RSI: 00000000400448ca RDI: 0000000000000004
RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000293 R12: 0000555555a472b8
R13: 0000000000000011 R14: 00007ffdc20a8a50 R15: 00007ffdc20a8a08
 </TASK>

Crashes (16):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets Title
ci-upstream-linux-next-kasan-gce-root 2022/10/01 18:53 linux-next aaa11ce2ffc8 feb56351 .config console log report syz C [disk image] [vmlinux] WARNING in notifier_chain_register
ci-upstream-linux-next-kasan-gce-root 2022/09/24 10:04 linux-next aaa11ce2ffc8 0042f2b4 .config strace log report syz C WARNING in notifier_chain_register
ci-upstream-linux-next-kasan-gce-root 2022/07/11 01:19 linux-next cb71b93c2dc3 b5765a15 .config console log report syz C WARNING in notifier_chain_register
ci-upstream-linux-next-kasan-gce-root 2022/07/06 06:56 linux-next cb71b93c2dc3 bff65f44 .config console log report syz C WARNING in notifier_chain_register
ci-upstream-kasan-gce-selinux-root 2022/08/30 03:28 upstream b90cb1053190 5b44472d .config console log report syz C WARNING in notifier_chain_register
ci-upstream-kasan-gce-root 2022/08/17 11:33 upstream 7ebfc85e2cd7 4e72d229 .config console log report syz C WARNING in notifier_chain_register
ci-upstream-kasan-gce-selinux-root 2022/08/13 16:32 upstream 7ebfc85e2cd7 8dfcaa3d .config console log report syz C WARNING in notifier_chain_register
ci-upstream-net-this-kasan-gce 2022/08/25 21:27 net 0cf731f9ebb5 9b5bf4cd .config console log report syz C WARNING in notifier_chain_register
ci-upstream-net-kasan-gce 2022/08/25 21:56 net-next c19d893fbf3f 9b5bf4cd .config console log report syz C WARNING in notifier_chain_register
ci-upstream-net-this-kasan-gce 2022/09/23 03:07 net e738455b2c6d 0042f2b4 .config console log report info [disk image] [vmlinux] WARNING in notifier_chain_register
ci-upstream-net-this-kasan-gce 2022/08/30 19:48 net f612466ebecb 4a380809 .config console log report info WARNING in notifier_chain_register
ci-upstream-net-this-kasan-gce 2022/08/10 23:27 net 6fd2c17fb6e0 a6201f11 .config console log report info WARNING in notifier_chain_register
ci-upstream-net-kasan-gce 2022/09/24 11:34 net-next 9258b8b1be2e 0042f2b4 .config console log report info [disk image] [vmlinux] WARNING in notifier_chain_register
ci-upstream-net-kasan-gce 2022/09/19 00:20 net-next 44a8535fb87c dd9a85ff .config console log report info [disk image] [vmlinux] WARNING in notifier_chain_register
ci-upstream-net-kasan-gce 2022/09/18 04:32 net-next 44a8535fb87c dd9a85ff .config console log report info [disk image] [vmlinux] WARNING in notifier_chain_register
ci-upstream-linux-next-kasan-gce-root 2022/07/27 00:17 linux-next cb71b93c2dc3 279b89c2 .config console log report info WARNING in notifier_chain_register
* Struck through repros no longer work on HEAD.