syzbot


WARNING: bad unlock balance in mptcp_poll
Status: upstream: reported C repro on 2020/04/11 16:51
Reported-by: syzbot+e56606435b7bfeea8cf5@syzkaller.appspotmail.com
Fix commit: e154659b mptcp: fix double-unlock in mptcp_poll
Patched on: [ci-qemu-upstream ci-qemu-upstream-386 ci-upstream-bpf-kasan-gce ci-upstream-bpf-next-kasan-gce ci-upstream-gce-leak ci-upstream-kasan-gce ci-upstream-kasan-gce-386 ci-upstream-kasan-gce-root ci-upstream-kasan-gce-selinux-root ci-upstream-kasan-gce-smack-root ci-upstream-kmsan-gce ci-upstream-kmsan-gce-386 ci-upstream-linux-next-kasan-gce-root ci-upstream-net-kasan-gce ci-upstream-net-this-kasan-gce ci2-upstream-usb], missing on: [ci2-upstream-kcsan-gce]
First crash: 54d, last: 49d

Cause bisection: introduced by (bisect log):

commit 59832e246515ab6a4f5aa878073e6f415aa35166
Author: Florian Westphal <fw@strlen.de>
Date: Thu Apr 2 11:44:52 2020 +0000

  mptcp: subflow: check parent mptcp socket on subflow state change

Crash: WARNING: bad unlock balance in mptcp_poll (log)
Repro: C syz .config
duplicates (2):
Title Repro Bisected Count Last Reported Patched Status
WARNING: bad unlock balance in mptcp_listen 2 50d 51d 0/17 closed as dup on 2020/04/12 08:32
WARNING: bad unlock balance in mptcp_shutdown 2 55d 52d 0/17 closed as dup on 2020/04/11 22:44

Sample crash report:

Crashes (10):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro Maintainers
ci-upstream-kasan-gce 2020/04/09 11:00 upstream ae46d2aa a8c6a3f8 .config log report syz C davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, mathew.j.martineau@linux.intel.com, matthieu.baerts@tessares.net, mptcp@lists.01.org, netdev@vger.kernel.org
ci-upstream-net-this-kasan-gce 2020/04/09 11:26 net f691a25c a8c6a3f8 .config log report syz C davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, mathew.j.martineau@linux.intel.com, matthieu.baerts@tessares.net, mptcp@lists.01.org, netdev@vger.kernel.org
ci-upstream-net-kasan-gce 2020/04/09 11:30 net-next 63bef48f a8c6a3f8 .config log report syz C davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, mathew.j.martineau@linux.intel.com, matthieu.baerts@tessares.net, mptcp@lists.01.org, netdev@vger.kernel.org
ci-upstream-kasan-gce 2020/04/11 13:56 upstream 5b8b9d0c a8c6a3f8 .config log report davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, mathew.j.martineau@linux.intel.com, matthieu.baerts@tessares.net, mptcp@lists.01.org, netdev@vger.kernel.org
ci-upstream-kasan-gce-root 2020/04/11 08:07 upstream ab6f762f a8c6a3f8 .config log report davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, mathew.j.martineau@linux.intel.com, matthieu.baerts@tessares.net, mptcp@lists.01.org, netdev@vger.kernel.org
ci-upstream-kasan-gce 2020/04/10 22:30 upstream c0cc2711 a8c6a3f8 .config log report davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, mathew.j.martineau@linux.intel.com, matthieu.baerts@tessares.net, mptcp@lists.01.org, netdev@vger.kernel.org
ci-upstream-kasan-gce 2020/04/09 10:26 upstream ae46d2aa a8c6a3f8 .config log report davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, mathew.j.martineau@linux.intel.com, matthieu.baerts@tessares.net, mptcp@lists.01.org, netdev@vger.kernel.org
ci-upstream-net-this-kasan-gce 2020/04/12 04:00 net 3b72f84f a8c6a3f8 .config log report davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, mathew.j.martineau@linux.intel.com, matthieu.baerts@tessares.net, mptcp@lists.01.org, netdev@vger.kernel.org
ci-upstream-net-this-kasan-gce 2020/04/11 18:35 net 9d859289 a8c6a3f8 .config log report davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, mathew.j.martineau@linux.intel.com, matthieu.baerts@tessares.net, mptcp@lists.01.org, netdev@vger.kernel.org
ci-upstream-net-kasan-gce 2020/04/14 10:45 net-next 63bef48f 3f3c5574 .config log report davem@davemloft.net, kuba@kernel.org, linux-kernel@vger.kernel.org, mathew.j.martineau@linux.intel.com, matthieu.baerts@tessares.net, mptcp@lists.01.org, netdev@vger.kernel.org