syzbot

 sign-in | mailing list | source | docs
🐞 Open [142] 🐞 Fixed [16] 🐞 Invalid [163] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

BUG: using __this_cpu_add() in preemptible code in tcp_collapse

Status: auto-closed as invalid on 2019/02/22 14:55
First crash: 2324d, last: 2324d

Sample crash report:
netlink: 1 bytes leftover after parsing attributes in process `syz-executor7'.
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor6/9009
caller is __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
CPU: 0 PID: 9009 Comm: syz-executor6 Not tainted 4.4.105-ge303a83 #5
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
netlink: 1 bytes leftover after parsing attributes in process `syz-executor7'.
 0000000000000000 9e89b34b9aabcfb2 ffff8801d347f7b8 ffffffff81cc9b4f
 0000000000000000 ffffffff839fd4a0 ffff8801d347f7f8 ffffffff81d28d58
 ffffffff83ced1a0 0000000000002900 ffff8801d3dc7080 ffff8801d347f960
Call Trace:
 [<ffffffff81cc9b4f>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b4f>] dump_stack+0x8e/0xcf lib/dump_stack.c:51
 [<ffffffff81d28d58>] check_preemption_disabled+0x1b8/0x1f0 lib/smp_processor_id.c:46
 [<ffffffff81d28dc3>] __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
 [<ffffffff830e72b0>] tcp_prune_queue net/ipv4/tcp_input.c:4861 [inline]
 [<ffffffff830e72b0>] tcp_try_rmem_schedule+0x1c0/0x1140 net/ipv4/tcp_input.c:4337
 [<ffffffff830ffd0f>] tcp_send_rcvq+0x1cf/0x4a0 net/ipv4/tcp_input.c:4520
 [<ffffffff830d20cc>] tcp_sendmsg+0x1d1c/0x36a0 net/ipv4/tcp.c:1134
 [<ffffffff8319024c>] inet_sendmsg+0x26c/0x430 net/ipv4/af_inet.c:755
 [<ffffffff82d94005>] sock_sendmsg_nosec net/socket.c:625 [inline]
 [<ffffffff82d94005>] sock_sendmsg+0xb5/0xf0 net/socket.c:635
 [<ffffffff82d9422a>] sock_write_iter+0x1ea/0x3d0 net/socket.c:834
 [<ffffffff814f7331>] new_sync_write fs/read_write.c:478 [inline]
 [<ffffffff814f7331>] __vfs_write+0x2a1/0x3f0 fs/read_write.c:491
 [<ffffffff814f8dcb>] vfs_write+0x14b/0x520 fs/read_write.c:538
 [<ffffffff814fb553>] SYSC_write fs/read_write.c:585 [inline]
 [<ffffffff814fb553>] SyS_write+0xd3/0x1c0 fs/read_write.c:577
 [<ffffffff8374ab36>] entry_SYSCALL_64_fastpath+0x16/0x76
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor6/9009
caller is __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
CPU: 0 PID: 9009 Comm: syz-executor6 Not tainted 4.4.105-ge303a83 #5
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 9e89b34b9aabcfb2 ffff8801d347f718 ffffffff81cc9b4f
 0000000000000000 ffffffff839fd4a0 ffff8801d347f758 ffffffff81d28d58
 ffffffff83ced1a0 ffff8801d6fde240 0000000000000000 dffffc0000000000
Call Trace:
 [<ffffffff81cc9b4f>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b4f>] dump_stack+0x8e/0xcf lib/dump_stack.c:51
 [<ffffffff81d28d58>] check_preemption_disabled+0x1b8/0x1f0 lib/smp_processor_id.c:46
 [<ffffffff81d28dc3>] __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
 [<ffffffff830e69b1>] tcp_collapse_one net/ipv4/tcp_input.c:4673 [inline]
 [<ffffffff830e69b1>] tcp_collapse+0x721/0xe60 net/ipv4/tcp_input.c:4766
 [<ffffffff830e7603>] tcp_prune_queue net/ipv4/tcp_input.c:4870 [inline]
 [<ffffffff830e7603>] tcp_try_rmem_schedule+0x513/0x1140 net/ipv4/tcp_input.c:4337
 [<ffffffff830ffd0f>] tcp_send_rcvq+0x1cf/0x4a0 net/ipv4/tcp_input.c:4520
 [<ffffffff830d20cc>] tcp_sendmsg+0x1d1c/0x36a0 net/ipv4/tcp.c:1134
 [<ffffffff8319024c>] inet_sendmsg+0x26c/0x430 net/ipv4/af_inet.c:755
 [<ffffffff82d94005>] sock_sendmsg_nosec net/socket.c:625 [inline]
 [<ffffffff82d94005>] sock_sendmsg+0xb5/0xf0 net/socket.c:635
 [<ffffffff82d9422a>] sock_write_iter+0x1ea/0x3d0 net/socket.c:834
 [<ffffffff814f7331>] new_sync_write fs/read_write.c:478 [inline]
 [<ffffffff814f7331>] __vfs_write+0x2a1/0x3f0 fs/read_write.c:491
 [<ffffffff814f8dcb>] vfs_write+0x14b/0x520 fs/read_write.c:538
 [<ffffffff814fb553>] SYSC_write fs/read_write.c:585 [inline]
 [<ffffffff814fb553>] SyS_write+0xd3/0x1c0 fs/read_write.c:577
 [<ffffffff8374ab36>] entry_SYSCALL_64_fastpath+0x16/0x76
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor6/9009
caller is __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
CPU: 0 PID: 9009 Comm: syz-executor6 Not tainted 4.4.105-ge303a83 #5
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 9e89b34b9aabcfb2 ffff8801d347f718 ffffffff81cc9b4f
 0000000000000000 ffffffff839fd4a0 ffff8801d347f758 ffffffff81d28d58
 ffffffff83ced1a0 ffff8801d6fdfb00 0000000000000100 dffffc0000000000
Call Trace:
 [<ffffffff81cc9b4f>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b4f>] dump_stack+0x8e/0xcf lib/dump_stack.c:51
 [<ffffffff81d28d58>] check_preemption_disabled+0x1b8/0x1f0 lib/smp_processor_id.c:46
 [<ffffffff81d28dc3>] __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
 [<ffffffff830e69b1>] tcp_collapse_one net/ipv4/tcp_input.c:4673 [inline]
 [<ffffffff830e69b1>] tcp_collapse+0x721/0xe60 net/ipv4/tcp_input.c:4766
 [<ffffffff830e7603>] tcp_prune_queue net/ipv4/tcp_input.c:4870 [inline]
 [<ffffffff830e7603>] tcp_try_rmem_schedule+0x513/0x1140 net/ipv4/tcp_input.c:4337
 [<ffffffff830ffd0f>] tcp_send_rcvq+0x1cf/0x4a0 net/ipv4/tcp_input.c:4520
 [<ffffffff830d20cc>] tcp_sendmsg+0x1d1c/0x36a0 net/ipv4/tcp.c:1134
 [<ffffffff8319024c>] inet_sendmsg+0x26c/0x430 net/ipv4/af_inet.c:755
 [<ffffffff82d94005>] sock_sendmsg_nosec net/socket.c:625 [inline]
 [<ffffffff82d94005>] sock_sendmsg+0xb5/0xf0 net/socket.c:635
 [<ffffffff82d9422a>] sock_write_iter+0x1ea/0x3d0 net/socket.c:834
 [<ffffffff814f7331>] new_sync_write fs/read_write.c:478 [inline]
 [<ffffffff814f7331>] __vfs_write+0x2a1/0x3f0 fs/read_write.c:491
 [<ffffffff814f8dcb>] vfs_write+0x14b/0x520 fs/read_write.c:538
 [<ffffffff814fb553>] SYSC_write fs/read_write.c:585 [inline]
 [<ffffffff814fb553>] SyS_write+0xd3/0x1c0 fs/read_write.c:577
 [<ffffffff8374ab36>] entry_SYSCALL_64_fastpath+0x16/0x76
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor6/9009
caller is __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
CPU: 0 PID: 9009 Comm: syz-executor6 Not tainted 4.4.105-ge303a83 #5
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 9e89b34b9aabcfb2 ffff8801d347f718 ffffffff81cc9b4f
 0000000000000000 ffffffff839fd4a0 ffff8801d347f758 ffffffff81d28d58
 ffffffff83ced1a0 ffff8801d6fdfd40 0000000000000001 dffffc0000000000
Call Trace:
 [<ffffffff81cc9b4f>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b4f>] dump_stack+0x8e/0xcf lib/dump_stack.c:51
 [<ffffffff81d28d58>] check_preemption_disabled+0x1b8/0x1f0 lib/smp_processor_id.c:46
 [<ffffffff81d28dc3>] __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
 [<ffffffff830e69b1>] tcp_collapse_one net/ipv4/tcp_input.c:4673 [inline]
 [<ffffffff830e69b1>] tcp_collapse+0x721/0xe60 net/ipv4/tcp_input.c:4766
 [<ffffffff830e7603>] tcp_prune_queue net/ipv4/tcp_input.c:4870 [inline]
 [<ffffffff830e7603>] tcp_try_rmem_schedule+0x513/0x1140 net/ipv4/tcp_input.c:4337
 [<ffffffff830ffd0f>] tcp_send_rcvq+0x1cf/0x4a0 net/ipv4/tcp_input.c:4520
 [<ffffffff830d20cc>] tcp_sendmsg+0x1d1c/0x36a0 net/ipv4/tcp.c:1134
 [<ffffffff8319024c>] inet_sendmsg+0x26c/0x430 net/ipv4/af_inet.c:755
 [<ffffffff82d94005>] sock_sendmsg_nosec net/socket.c:625 [inline]
 [<ffffffff82d94005>] sock_sendmsg+0xb5/0xf0 net/socket.c:635
 [<ffffffff82d9422a>] sock_write_iter+0x1ea/0x3d0 net/socket.c:834
 [<ffffffff814f7331>] new_sync_write fs/read_write.c:478 [inline]
 [<ffffffff814f7331>] __vfs_write+0x2a1/0x3f0 fs/read_write.c:491
 [<ffffffff814f8dcb>] vfs_write+0x14b/0x520 fs/read_write.c:538
 [<ffffffff814fb553>] SYSC_write fs/read_write.c:585 [inline]
 [<ffffffff814fb553>] SyS_write+0xd3/0x1c0 fs/read_write.c:577
 [<ffffffff8374ab36>] entry_SYSCALL_64_fastpath+0x16/0x76
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor6/9009
caller is __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
CPU: 0 PID: 9009 Comm: syz-executor6 Not tainted 4.4.105-ge303a83 #5
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 9e89b34b9aabcfb2 ffff8801d347f7b8 ffffffff81cc9b4f
 0000000000000000 ffffffff839fd4a0 ffff8801d347f7f8 ffffffff81d28d58
 ffffffff83ced1a0 0000000000001a00 ffff8801d3dc7080 0000000000600000
Call Trace:
 [<ffffffff81cc9b4f>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b4f>] dump_stack+0x8e/0xcf lib/dump_stack.c:51
 [<ffffffff81d28d58>] check_preemption_disabled+0x1b8/0x1f0 lib/smp_processor_id.c:46
 [<ffffffff81d28dc3>] __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
 [<ffffffff830e7e14>] tcp_prune_queue net/ipv4/tcp_input.c:4891 [inline]
 [<ffffffff830e7e14>] tcp_try_rmem_schedule+0xd24/0x1140 net/ipv4/tcp_input.c:4337
 [<ffffffff830ffd0f>] tcp_send_rcvq+0x1cf/0x4a0 net/ipv4/tcp_input.c:4520
 [<ffffffff830d20cc>] tcp_sendmsg+0x1d1c/0x36a0 net/ipv4/tcp.c:1134
 [<ffffffff8319024c>] inet_sendmsg+0x26c/0x430 net/ipv4/af_inet.c:755
 [<ffffffff82d94005>] sock_sendmsg_nosec net/socket.c:625 [inline]
 [<ffffffff82d94005>] sock_sendmsg+0xb5/0xf0 net/socket.c:635
 [<ffffffff82d9422a>] sock_write_iter+0x1ea/0x3d0 net/socket.c:834
 [<ffffffff814f7331>] new_sync_write fs/read_write.c:478 [inline]
 [<ffffffff814f7331>] __vfs_write+0x2a1/0x3f0 fs/read_write.c:491
 [<ffffffff814f8dcb>] vfs_write+0x14b/0x520 fs/read_write.c:538
 [<ffffffff814fb553>] SYSC_write fs/read_write.c:585 [inline]
 [<ffffffff814fb553>] SyS_write+0xd3/0x1c0 fs/read_write.c:577
 [<ffffffff8374ab36>] entry_SYSCALL_64_fastpath+0x16/0x76
netlink: 5 bytes leftover after parsing attributes in process `syz-executor6'.
netlink: 5 bytes leftover after parsing attributes in process `syz-executor6'.
netlink: 1 bytes leftover after parsing attributes in process `syz-executor4'.
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor4/9270
caller is __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
CPU: 1 PID: 9270 Comm: syz-executor4 Not tainted 4.4.105-ge303a83 #5
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 718baf82740f3c8e ffff8801d347f7b8 ffffffff81cc9b4f
 0000000000000001 ffffffff839fd4a0 ffff8801d347f7f8 ffffffff81d28d58
 ffffffff83ced1a0 0000000000002900 ffff8801d3dc5a00 ffff8801d347f960
Call Trace:
 [<ffffffff81cc9b4f>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b4f>] dump_stack+0x8e/0xcf lib/dump_stack.c:51
 [<ffffffff81d28d58>] check_preemption_disabled+0x1b8/0x1f0 lib/smp_processor_id.c:46
netlink: 5 bytes leftover after parsing attributes in process `syz-executor2'.
 [<ffffffff81d28dc3>] __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
 [<ffffffff830e72b0>] tcp_prune_queue net/ipv4/tcp_input.c:4861 [inline]
 [<ffffffff830e72b0>] tcp_try_rmem_schedule+0x1c0/0x1140 net/ipv4/tcp_input.c:4337
 [<ffffffff830ffd0f>] tcp_send_rcvq+0x1cf/0x4a0 net/ipv4/tcp_input.c:4520
netlink: 5 bytes leftover after parsing attributes in process `syz-executor2'.
 [<ffffffff830d20cc>] tcp_sendmsg+0x1d1c/0x36a0 net/ipv4/tcp.c:1134
 [<ffffffff8319024c>] inet_sendmsg+0x26c/0x430 net/ipv4/af_inet.c:755
 [<ffffffff82d94005>] sock_sendmsg_nosec net/socket.c:625 [inline]
 [<ffffffff82d94005>] sock_sendmsg+0xb5/0xf0 net/socket.c:635
 [<ffffffff82d9422a>] sock_write_iter+0x1ea/0x3d0 net/socket.c:834
 [<ffffffff814f7331>] new_sync_write fs/read_write.c:478 [inline]
 [<ffffffff814f7331>] __vfs_write+0x2a1/0x3f0 fs/read_write.c:491
 [<ffffffff814f8dcb>] vfs_write+0x14b/0x520 fs/read_write.c:538
 [<ffffffff814fb553>] SYSC_write fs/read_write.c:585 [inline]
 [<ffffffff814fb553>] SyS_write+0xd3/0x1c0 fs/read_write.c:577
 [<ffffffff8374ab36>] entry_SYSCALL_64_fastpath+0x16/0x76
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor4/9270
caller is __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
CPU: 1 PID: 9270 Comm: syz-executor4 Not tainted 4.4.105-ge303a83 #5
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 718baf82740f3c8e ffff8801d347f718 ffffffff81cc9b4f
 0000000000000001 ffffffff839fd4a0 ffff8801d347f758 ffffffff81d28d58
 ffffffff83ced1a0 ffff8801d3ae7b00 0000000000000000 dffffc0000000000
Call Trace:
 [<ffffffff81cc9b4f>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b4f>] dump_stack+0x8e/0xcf lib/dump_stack.c:51
 [<ffffffff81d28d58>] check_preemption_disabled+0x1b8/0x1f0 lib/smp_processor_id.c:46
 [<ffffffff81d28dc3>] __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
 [<ffffffff830e69b1>] tcp_collapse_one net/ipv4/tcp_input.c:4673 [inline]
 [<ffffffff830e69b1>] tcp_collapse+0x721/0xe60 net/ipv4/tcp_input.c:4766
 [<ffffffff830e7603>] tcp_prune_queue net/ipv4/tcp_input.c:4870 [inline]
 [<ffffffff830e7603>] tcp_try_rmem_schedule+0x513/0x1140 net/ipv4/tcp_input.c:4337
 [<ffffffff830ffd0f>] tcp_send_rcvq+0x1cf/0x4a0 net/ipv4/tcp_input.c:4520
 [<ffffffff830d20cc>] tcp_sendmsg+0x1d1c/0x36a0 net/ipv4/tcp.c:1134
 [<ffffffff8319024c>] inet_sendmsg+0x26c/0x430 net/ipv4/af_inet.c:755
 [<ffffffff82d94005>] sock_sendmsg_nosec net/socket.c:625 [inline]
 [<ffffffff82d94005>] sock_sendmsg+0xb5/0xf0 net/socket.c:635
 [<ffffffff82d9422a>] sock_write_iter+0x1ea/0x3d0 net/socket.c:834
 [<ffffffff814f7331>] new_sync_write fs/read_write.c:478 [inline]
 [<ffffffff814f7331>] __vfs_write+0x2a1/0x3f0 fs/read_write.c:491
 [<ffffffff814f8dcb>] vfs_write+0x14b/0x520 fs/read_write.c:538
 [<ffffffff814fb553>] SYSC_write fs/read_write.c:585 [inline]
 [<ffffffff814fb553>] SyS_write+0xd3/0x1c0 fs/read_write.c:577
 [<ffffffff8374ab36>] entry_SYSCALL_64_fastpath+0x16/0x76
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor4/9270
caller is __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
CPU: 1 PID: 9270 Comm: syz-executor4 Not tainted 4.4.105-ge303a83 #5
netlink: 5 bytes leftover after parsing attributes in process `syz-executor5'.
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 718baf82740f3c8e ffff8801d347f718 ffffffff81cc9b4f
 0000000000000001 ffffffff839fd4a0 ffff8801d347f758 ffffffff81d28d58
 ffffffff83ced1a0 ffff8801d3ae7d40 0000000000000100 dffffc0000000000
Call Trace:
 [<ffffffff81cc9b4f>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b4f>] dump_stack+0x8e/0xcf lib/dump_stack.c:51
 [<ffffffff81d28d58>] check_preemption_disabled+0x1b8/0x1f0 lib/smp_processor_id.c:46
 [<ffffffff81d28dc3>] __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
 [<ffffffff830e69b1>] tcp_collapse_one net/ipv4/tcp_input.c:4673 [inline]
 [<ffffffff830e69b1>] tcp_collapse+0x721/0xe60 net/ipv4/tcp_input.c:4766
 [<ffffffff830e7603>] tcp_prune_queue net/ipv4/tcp_input.c:4870 [inline]
 [<ffffffff830e7603>] tcp_try_rmem_schedule+0x513/0x1140 net/ipv4/tcp_input.c:4337
 [<ffffffff830ffd0f>] tcp_send_rcvq+0x1cf/0x4a0 net/ipv4/tcp_input.c:4520
 [<ffffffff830d20cc>] tcp_sendmsg+0x1d1c/0x36a0 net/ipv4/tcp.c:1134
 [<ffffffff8319024c>] inet_sendmsg+0x26c/0x430 net/ipv4/af_inet.c:755
 [<ffffffff82d94005>] sock_sendmsg_nosec net/socket.c:625 [inline]
 [<ffffffff82d94005>] sock_sendmsg+0xb5/0xf0 net/socket.c:635
 [<ffffffff82d9422a>] sock_write_iter+0x1ea/0x3d0 net/socket.c:834
 [<ffffffff814f7331>] new_sync_write fs/read_write.c:478 [inline]
 [<ffffffff814f7331>] __vfs_write+0x2a1/0x3f0 fs/read_write.c:491
 [<ffffffff814f8dcb>] vfs_write+0x14b/0x520 fs/read_write.c:538
 [<ffffffff814fb553>] SYSC_write fs/read_write.c:585 [inline]
 [<ffffffff814fb553>] SyS_write+0xd3/0x1c0 fs/read_write.c:577
 [<ffffffff8374ab36>] entry_SYSCALL_64_fastpath+0x16/0x76
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor4/9270
caller is __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
CPU: 1 PID: 9270 Comm: syz-executor4 Not tainted 4.4.105-ge303a83 #5
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 718baf82740f3c8e ffff8801d347f718 ffffffff81cc9b4f
 0000000000000001 ffffffff839fd4a0 ffff8801d347f758 ffffffff81d28d58
 ffffffff83ced1a0 ffff8801d3ae6240 0000000000000001 dffffc0000000000
Call Trace:
 [<ffffffff81cc9b4f>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b4f>] dump_stack+0x8e/0xcf lib/dump_stack.c:51
 [<ffffffff81d28d58>] check_preemption_disabled+0x1b8/0x1f0 lib/smp_processor_id.c:46
 [<ffffffff81d28dc3>] __this_cpu_preempt_check+0x13/0x20 lib/smp_processor_id.c:62
 [<ffffffff830e69b1>] tcp_collapse_one net/ipv4/tcp_input.c:4673 [inline]
 [<ffffffff830e69b1>] tcp_collapse+0x721/0xe60 net/ipv4/tcp_input.c:4766
 [<ffffffff830e7603>] tcp_prune_queue net/ipv4/tcp_input.c:4870 [inline]
 [<ffffffff830e7603>] tcp_try_rmem_schedule+0x513/0x1140 net/ipv4/tcp_input.c:4337
 [<ffffffff830ffd0f>] tcp_send_rcvq+0x1cf/0x4a0 net/ipv4/tcp_input.c:4520
 [<ffffffff830d20cc>] tcp_sendmsg+0x1d1c/0x36a0 net/ipv4/tcp.c:1134
 [<ffffffff8319024c>] inet_sendmsg+0x26c/0x430 net/ipv4/af_inet.c:755
 [<ffffffff82d94005>] sock_sendmsg_nosec net/socket.c:625 [inline]
 [<ffffffff82d94005>] sock_sendmsg+0xb5/0xf0 net/socket.c:635
 [<ffffffff82d9422a>] sock_write_iter+0x1ea/0x3d0 net/socket.c:834
 [<ffffffff814f7331>] new_sync_write fs/read_write.c:478 [inline]
 [<ffffffff814f7331>] __vfs_write+0x2a1/0x3f0 fs/read_write.c:491
 [<ffffffff814f8dcb>] vfs_write+0x14b/0x520 fs/read_write.c:538
 [<ffffffff814fb553>] SYSC_write fs/read_write.c:585 [inline]
 [<ffffffff814fb553>] SyS_write+0xd3/0x1c0 fs/read_write.c:577
 [<ffffffff8374ab36>] entry_SYSCALL_64_fastpath+0x16/0x76
netlink: 5 bytes leftover after parsing attributes in process `syz-executor5'.
netlink: 5 bytes leftover after parsing attributes in process `syz-executor3'.
netlink: 5 bytes leftover after parsing attributes in process `syz-executor3'.
netlink: 1 bytes leftover after parsing attributes in process `syz-executor2'.
audit_printk_skb: 6 callbacks suppressed
audit: type=1400 audit(1513156540.482:13): avc:  denied  { getattr } for  pid=10068 comm="syz-executor6" name="NETLINK" dev="sockfs" ino=18001 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1
qtaguid: iface_stat: create(lo): no inet dev
qtaguid: iface_stat: create6(lo): no inet dev
IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
qtaguid: iface_stat: create6(lo): no inet dev
nla_parse: 5 callbacks suppressed
netlink: 5 bytes leftover after parsing attributes in process `syz-executor6'.
netlink: 11 bytes leftover after parsing attributes in process `syz-executor6'.
netlink: 11 bytes leftover after parsing attributes in process `syz-executor6'.
SELinux: unrecognized netlink message: protocol=4 nlmsg_type=30 sclass=netlink_tcpdiag_socket
SELinux: unrecognized netlink message: protocol=4 nlmsg_type=30 sclass=netlink_tcpdiag_socket
netlink: 5 bytes leftover after parsing attributes in process `syz-executor1'.
netlink: 5 bytes leftover after parsing attributes in process `syz-executor1'.

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2017/12/13 09:15 https://android.googlesource.com/kernel/common android-4.4 e303a832d93e ce7f2399 .config console log report ci-android-44-kasan-gce
* Struck through repros no longer work on HEAD.