general protection fault in nbd_disconnect_and

general protection fault in nbd_disconnect_and_put
Status: upstream: reported C repro on 2021/02/22 09:05
Reported-by: syzbot+db0c9917f71539bc4ad1@syzkaller.appspotmail.com
First crash: 78d, last: now

Cause bisection: introduced by (bisect log) [no-op commit]:
commit 298ed2b31f55280624417f80a09de0e28db8f786
Author: Victor Ding <victording@google.com>
Date: Tue Oct 27 07:23:54 2020 +0000

x86/msr-index: sort AMD RAPL MSRs by address

Crash: BUG: sleeping function called from invalid context in sta_info_move_state (log)
Repro: C syz .config

similar bugs (2):
Kernel	Title	Repro	Cause bisect	Fix bisect	Count	Last	Reported	Patched	Status
linux-4.19	general protection fault in nbd_disconnect_and_put	C			78	3d19h	84d	0/1	upstream: reported C repro on 2021/02/14 12:13
linux-4.14	general protection fault in nbd_disconnect_and_put	C			165	1d05h	84d	0/1	upstream: reported C repro on 2021/02/14 12:55

Patch testing requests:
Created	Duration	User	Patch	Repo	Result
2021/04/20 12:48	12m	mail@anirudhrb.com		linux-next	error

Sample crash report:

block nbd0: NBD_DISCONNECT
general protection fault, probably for non-canonical address 0xdffffc0000000027: 0000 [#1] PREEMPT SMP KASAN
KASAN: null-ptr-deref in range [0x0000000000000138-0x000000000000013f]
CPU: 0 PID: 8542 Comm: systemd-udevd Not tainted 5.12.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:__lock_acquire+0xf2/0x6040 kernel/locking/lockdep.c:4771
Code: 89 bc 24 80 00 00 00 0f 85 fb 26 00 00 83 3d 48 d8 b5 0c 00 0f 84 2f 12 00 00 83 3d 77 7f 5d 0b 00 74 39 48 89 f8 48 c1 e8 03 <42> 80 3c 00 00 74 1f 48 8b bc 24 80 00 00 00 e8 4a a4 64 00 48 8b
RSP: 0018:ffffc90001caf500 EFLAGS: 00010006
RAX: 0000000000000027 RBX: 0000000000000000 RCX: 1ffff92000395ec0
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000138
RBP: ffffc90001caf890 R08: dffffc0000000000 R09: 0000000000000000
R10: fffffbfff1c2c29e R11: 0000000000000000 R12: 0000000000000000
R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000000
FS:  00007eff431968c0(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007eff422c7360 CR3: 000000002221b000 CR4: 00000000001506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 lock_acquire+0x17f/0x720 kernel/locking/lockdep.c:5511
 flush_workqueue+0x178/0x1750 kernel/workqueue.c:2786
 nbd_disconnect_and_put+0x126/0x1f0 drivers/block/nbd.c:1983
 nbd_release+0xf1/0x120 drivers/block/nbd.c:1504
 __blkdev_put+0x55c/0x6d0 fs/block_dev.c:1592
 blkdev_put+0x2cd/0x440 fs/block_dev.c:1645
 blkdev_close+0x7a/0xa0 fs/block_dev.c:1653
 __fput+0x352/0x7b0 fs/file_table.c:280
 task_work_run+0x146/0x1c0 kernel/task_work.c:140
 tracehook_notify_resume include/linux/tracehook.h:189 [inline]
 exit_to_user_mode_loop kernel/entry/common.c:174 [inline]
 exit_to_user_mode_prepare+0x10b/0x200 kernel/entry/common.c:208
 __syscall_exit_to_user_mode_work kernel/entry/common.c:290 [inline]
 syscall_exit_to_user_mode+0x26/0x70 kernel/entry/common.c:301
 do_syscall_64+0x4b/0xb0 arch/x86/entry/common.c:57
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7eff422dc270
Code: 73 01 c3 48 8b 0d 38 7d 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 59 c1 20 00 00 75 10 b8 03 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 ee fb ff ff 48 89 04 24
RSP: 002b:00007ffd36a6eae8 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
RAX: 0000000000000000 RBX: 0000000000000007 RCX: 00007eff422dc270
RDX: 000000000aba9500 RSI: 0000000000000000 RDI: 0000000000000007
RBP: 00007eff43196710 R08: 0000000000000045 R09: 0000000000000018
R10: 000055da0714fee8 R11: 0000000000000246 R12: 0000000000000000
R13: 000055da07150ef0 R14: 0000000000000003 R15: 000000000000000e
Modules linked in:
---[ end trace 4d9573b4afe5203b ]---
RIP: 0010:__lock_acquire+0xf2/0x6040 kernel/locking/lockdep.c:4771
Code: 89 bc 24 80 00 00 00 0f 85 fb 26 00 00 83 3d 48 d8 b5 0c 00 0f 84 2f 12 00 00 83 3d 77 7f 5d 0b 00 74 39 48 89 f8 48 c1 e8 03 <42> 80 3c 00 00 74 1f 48 8b bc 24 80 00 00 00 e8 4a a4 64 00 48 8b
RSP: 0018:ffffc90001caf500 EFLAGS: 00010006
RAX: 0000000000000027 RBX: 0000000000000000 RCX: 1ffff92000395ec0
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000138
RBP: ffffc90001caf890 R08: dffffc0000000000 R09: 0000000000000000
R10: fffffbfff1c2c29e R11: 0000000000000000 R12: 0000000000000000
R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000000
FS:  00007eff431968c0(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007eff422c7360 CR3: 000000002221b000 CR4: 00000000001506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400

Crashes (293):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro	VM info	Title
ci-upstream-kasan-gce-smack-root	2021/04/28 17:22	upstream	acd3d285	77e2b668	.config	log	report	syz	C		general protection fault in nbd_disconnect_and_put
ci-upstream-kasan-gce-smack-root	2021/02/21 00:19	upstream	f40ddce8	3e5ed8b4	.config	log	report	syz	C		general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/04/13 01:42	net	6628ddfe	bfeda1b1	.config	log	report	syz	C		general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/04/28 19:13	net-next	95aafe91	77e2b668	.config	log	report	syz	C		general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/04/13 03:40	net-next	c82eaa40	bfeda1b1	.config	log	report	syz	C		general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/02/21 07:55	net	3af409ca	3e5ed8b4	.config	log	report	syz			general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/02/21 07:57	net-next	38b5133a	3e5ed8b4	.config	log	report	syz			general protection fault in nbd_disconnect_and_put
ci-upstream-kasan-gce-selinux-root	2021/05/08 22:23	upstream	ab159ac5	bc5434be	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-kasan-gce-smack-root	2021/05/07 12:42	upstream	d2b6f8a1	f6da8120	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-kasan-gce-smack-root	2021/05/06 11:09	upstream	d2b6f8a1	06c27ff5	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-kasan-gce-root	2021/05/01 20:16	upstream	d2b6f8a1	77e2b668	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-kasan-gce-smack-root	2021/05/01 11:51	upstream	d2b6f8a1	77e2b668	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-kasan-gce-smack-root	2021/04/29 16:08	upstream	d72cd4ad	77e2b668	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-kasan-gce-smack-root	2021/04/29 01:17	upstream	acd3d285	77e2b668	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-kasan-gce-smack-root	2021/04/27 16:56	upstream	4a0225c3	805b5003	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-kasan-gce-smack-root	2021/04/25 02:15	upstream	8db5efb8	17f0b706	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-kasan-gce-smack-root	2021/04/24 12:53	upstream	e77a830c	17f0b706	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-kasan-gce-smack-root	2021/04/23 07:01	upstream	90c911ad	590921a5	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-kasan-gce-smack-root	2021/04/20 22:09	upstream	7af08140	c0ced557	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-kasan-gce-selinux-root	2021/04/17 19:10	upstream	9cdbf646	7e2b734b	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-qemu-upstream	2021/03/09 20:32	upstream	280d542f	26967e35	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-qemu-upstream-386	2021/03/14 08:23	upstream	280d542f	4a003785	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/05/07 10:17	net	bbd6f0a9	f6da8120	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/05/06 12:26	net	bbd6f0a9	06c27ff5	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/05/06 06:44	net	bbd6f0a9	06c27ff5	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/05/04 09:49	net	bbd6f0a9	09efdd63	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/05/01 22:14	net	bbd6f0a9	77e2b668	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/04/30 05:28	net	bbd6f0a9	77e2b668	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/04/27 14:42	net	bbd6f0a9	805b5003	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/04/27 04:24	net	bbd6f0a9	805b5003	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/04/25 13:32	net	6477dd39	36c88236	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/04/25 03:29	net	6477dd39	17f0b706	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/04/24 19:59	net	6477dd39	17f0b706	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/04/24 08:18	net	6477dd39	17f0b706	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/04/22 16:25	net	eefb45ee	33c28d03	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/04/22 10:43	net	eefb45ee	33c28d03	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-this-kasan-gce	2021/02/20 03:25	net	3af409ca	f689d40a	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/09 20:38	net-next	b7415964	bc5434be	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/07 07:16	net-next	95aafe91	06585184	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/06 21:11	net-next	95aafe91	06585184	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/06 19:05	net-next	95aafe91	06585184	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/06 02:24	net-next	95aafe91	06c27ff5	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/05 23:14	net-next	95aafe91	06c27ff5	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/05 21:02	net-next	95aafe91	06c27ff5	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/05 15:28	net-next	95aafe91	06c27ff5	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/05 09:27	net-next	95aafe91	06c27ff5	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/04 22:25	net-next	95aafe91	06c27ff5	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/04 18:34	net-next	95aafe91	09efdd63	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/04 13:42	net-next	95aafe91	09efdd63	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/04 12:35	net-next	95aafe91	09efdd63	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/04 00:53	net-next	95aafe91	ad61f371	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/03 23:30	net-next	95aafe91	ad61f371	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/03 12:41	net-next	95aafe91	77e2b668	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/03 05:22	net-next	95aafe91	77e2b668	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/02 13:56	net-next	95aafe91	77e2b668	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/05/02 09:32	net-next	95aafe91	77e2b668	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/04/29 17:55	net-next	95aafe91	77e2b668	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-net-kasan-gce	2021/04/29 05:29	net-next	95aafe91	77e2b668	.config	log	report			info	general protection fault in nbd_disconnect_and_put
ci-upstream-linux-next-kasan-gce-root	2021/05/04 20:33	linux-next	9a9aa07a	09efdd63	.config	log	report			info	general protection fault in nbd_disconnect_and_put