WARNING in ovl_real_fdget

WARNING in ovl_real_fdget_meta
Status: upstream: reported C repro on 2019/07/24 19:18
Reported-by: syzbot+032bc63605089a199d30@syzkaller.appspotmail.com
First crash: 919d, last: 512d

Cause bisection: introduced by (bisect log) :
commit 387e3746d01c34457d6a73688acd90428725070b
Author: Amir Goldstein <amir73il@gmail.com>
Date: Fri Jun 7 14:24:38 2019 +0000

locks: eliminate false positive conflicts for write lease

Crash: WARNING in ovl_real_fdget_meta (log)
Repro: C syz .config

Fix bisection: failed (bisect log)

similar bugs (1):
Kernel	Title	Repro	Cause bisect	Fix bisect	Count	Last	Reported	Patched	Status
linux-4.19	WARNING in ovl_real_fdget_meta	C		error	23	20d	748d	0/1	upstream: reported C repro on 2020/01/11 04:27

Patch testing requests:
Created	Duration	User	Patch	Repo	Result
2019/07/26 16:31	19m	amir73il@gmail.com		https://github.com/amir73il/linux.git ovl-check-nested-overlap	error

Sample crash report:

------------[ cut here ]------------
WARNING: CPU: 1 PID: 6847 at fs/overlayfs/file.c:81 ovl_change_flags fs/overlayfs/file.c:81 [inline]
WARNING: CPU: 1 PID: 6847 at fs/overlayfs/file.c:81 ovl_real_fdget_meta+0x49c/0x530 fs/overlayfs/file.c:132
Kernel panic - not syncing: panic_on_warn set ...
CPU: 1 PID: 6847 Comm: syz-executor194 Not tainted 5.8.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x18f/0x20d lib/dump_stack.c:118
 panic+0x2e3/0x75c kernel/panic.c:231
 __warn.cold+0x20/0x4a kernel/panic.c:600
 report_bug+0x1bd/0x210 lib/bug.c:198
 handle_bug+0x38/0x90 arch/x86/kernel/traps.c:234
 exc_invalid_op+0x14/0x40 arch/x86/kernel/traps.c:254
 asm_exc_invalid_op+0x12/0x20 arch/x86/include/asm/idtentry.h:536
RIP: 0010:ovl_change_flags fs/overlayfs/file.c:81 [inline]
RIP: 0010:ovl_real_fdget_meta+0x49c/0x530 fs/overlayfs/file.c:132
Code: ff 4c 89 ff e8 45 de 2a ff e9 ff fc ff ff e8 3b de 2a ff e9 c5 fc ff ff 4c 89 f7 e8 9e de 2a ff e9 5d fd ff ff e8 74 cc ea fe <0f> 0b 41 bd fb ff ff ff e9 fd fc ff ff e8 22 de 2a ff e9 84 fb ff
RSP: 0018:ffffc90005ee7a78 EFLAGS: 00010293
RAX: 0000000000000000 RBX: 0000000000002000 RCX: ffffffff82897279
RDX: ffff88808ae902c0 RSI: ffffffff828974ac RDI: 0000000000000005
RBP: 0000000004048000 R08: 0000000000000000 R09: ffff88808ae90ba0
R10: 0000000000000000 R11: 0000000000000001 R12: ffff8880a7476d00
R13: ffff8880860d73f8 R14: 000000000000a000 R15: ffff8880a7476d80
 ovl_real_fdget fs/overlayfs/file.c:139 [inline]
 ovl_splice_read+0x83/0x1f0 fs/overlayfs/file.c:396
 do_splice_to+0x10b/0x170 fs/splice.c:870
 splice_direct_to_actor+0x307/0x980 fs/splice.c:950
 do_splice_direct+0x1b3/0x280 fs/splice.c:1059
 do_sendfile+0x55f/0xd40 fs/read_write.c:1540
 __do_sys_sendfile64 fs/read_write.c:1601 [inline]
 __se_sys_sendfile64 fs/read_write.c:1587 [inline]
 __x64_sys_sendfile64+0x1cc/0x210 fs/read_write.c:1587
 do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x4403d9
Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00
RSP: 002b:00007ffe4a9344e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004403d9
RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8
R10: 000000000000bd96 R11: 0000000000000246 R12: 0000000000401be0
R13: 0000000000401c70 R14: 0000000000000000 R15: 0000000000000000
Kernel Offset: disabled
Rebooting in 86400 seconds..

Crashes (115):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro
ci-upstream-kasan-gce-root	2020/08/16 17:07	upstream	4b6c093e21d3	424dd8e7	.config	log	report	syz	C
ci-upstream-kasan-gce-selinux-root	2020/08/15 14:09	upstream	7fca4dee610d	424dd8e7	.config	log	report	syz	C
ci-upstream-kasan-gce-smack-root	2020/08/15 07:20	upstream	7fca4dee610d	424dd8e7	.config	log	report	syz	C
ci-upstream-kasan-gce-selinux-root	2020/04/22 20:18	upstream	18bf34080c4c	2e44d63e	.config	log	report	syz	C
ci-upstream-kasan-gce-smack-root	2020/04/22 18:41	upstream	18bf34080c4c	2e44d63e	.config	log	report	syz	C
ci-upstream-kasan-gce-root	2020/04/21 07:16	upstream	ae83d0b416db	98a9f9e6	.config	log	report	syz	C
ci-upstream-kasan-gce-selinux-root	2020/01/11 17:55	upstream	bef1d88263ff	4c04afaa	.config	log	report	syz	C
ci-upstream-kasan-gce-root	2020/01/11 09:00	upstream	e69ec487b2c7	4de4e9f0	.config	log	report	syz	C
ci-upstream-kasan-gce-selinux-root	2019/12/25 19:41	upstream	46cf053efec6	be5c2c81	.config	log	report	syz	C
ci-upstream-kasan-gce-root	2019/12/25 19:39	upstream	46cf053efec6	be5c2c81	.config	log	report	syz	C
ci-upstream-kasan-gce-selinux-root	2019/07/24 09:37	upstream	c6dd78fcb8ee	de453f34	.config	log	report	syz	C
ci-upstream-kasan-gce-smack-root	2019/07/24 09:33	upstream	c6dd78fcb8ee	de453f34	.config	log	report	syz	C
ci-upstream-kasan-gce-root	2019/07/24 09:02	upstream	c6dd78fcb8ee	de453f34	.config	log	report	syz	C
ci-upstream-linux-next-kasan-gce-root	2020/08/19 03:49	linux-next	83c52faab7b1	e1c29030	.config	log	report	syz	C
ci-upstream-linux-next-kasan-gce-root	2020/04/23 21:10	linux-next	ac935d227366	2e44d63e	.config	log	report	syz	C
ci-upstream-linux-next-kasan-gce-root	2020/01/01 20:14	linux-next	7ddd09fc4b74	25a0186e	.config	log	report	syz	C
ci-upstream-linux-next-kasan-gce-root	2019/07/24 09:36	linux-next	6d21a41b7b1f	de453f34	.config	log	report	syz	C
ci-upstream-kasan-gce-selinux-root	2020/09/03 13:48	upstream	fc3abb53250a	abf9ba4f	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/09/03 08:13	upstream	fc3abb53250a	abf9ba4f	.config	log	report
ci-upstream-kasan-gce-root	2020/09/03 00:04	upstream	9c7d619be5a0	abf9ba4f	.config	log	report
ci-upstream-kasan-gce-root	2020/09/01 06:05	upstream	f75aef392f86	d5a3ae1f	.config	log	report
ci-upstream-kasan-gce-root	2020/08/30 05:05	upstream	1127b219ce94	d5a3ae1f	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/05/25 18:45	upstream	9cb1fd0efd19	30927cd7	.config	log	report
ci-upstream-kasan-gce-root	2020/05/25 18:43	upstream	9cb1fd0efd19	30927cd7	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/05/20 19:08	upstream	115a54162a6c	1255f02a	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/05/20 06:56	upstream	3c9e66568ad4	67fa1f59	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/05/20 01:23	upstream	3c9e66568ad4	67fa1f59	.config	log	report
ci-upstream-kasan-gce-root	2020/05/18 08:35	upstream	b9bbe6ed63b2	37bccd4e	.config	log	report
ci-upstream-kasan-gce-selinux-root	2020/05/14 08:03	upstream	24085f70a6e1	a885920d	.config	log	report
ci-upstream-kasan-gce-root	2020/05/04 04:10	upstream	262f7a6b8317	58ae5e18	.config	log	report
ci-upstream-kasan-gce-selinux-root	2020/04/08 00:23	upstream	763dede1b248	db9bcd4b	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/04/07 14:14	upstream	7e63420847ae	99a96044	.config	log	report
ci-upstream-kasan-gce-root	2020/03/11 13:28	upstream	e94148454103	35f53e45	.config	log	report
ci-upstream-kasan-gce-selinux-root	2020/03/11 04:54	upstream	f35111a94654	35f53e45	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/03/02 04:25	upstream	63623fd44972	c88c7b75	.config	log	report
ci-upstream-kasan-gce-selinux-root	2020/02/29 05:04	upstream	f8788d86ab28	59b57593	.config	log	report
ci-upstream-kasan-gce-root	2020/02/27 03:28	upstream	f8788d86ab28	59b57593	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/02/23 13:50	upstream	54dedb5b571d	2c36e7a7	.config	log	report
ci-upstream-kasan-gce-root	2020/02/18 21:43	upstream	b1da3acc781c	012fbc32	.config	log	report
ci-upstream-kasan-gce-root	2020/02/17 09:42	upstream	11a48a5a18c6	1f448cd6	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/02/10 15:32	upstream	bb6d3fb354c5	18847f55	.config	log	report
ci-upstream-kasan-gce-root	2020/01/27 02:52	upstream	a45ea48e2bcd	dd56146d	.config	log	report
ci-upstream-kasan-gce-root	2020/01/21 22:07	upstream	d96d875ef5dd	8eda0b95	.config	log	report
ci-upstream-kasan-gce-root	2020/01/20 19:37	upstream	def9d2780727	d2557fb5	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/01/19 05:51	upstream	244dc2689085	bc8bc756	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/01/18 11:27	upstream	25e73aadf297	3de7aabb	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/01/18 11:27	upstream	25e73aadf297	3de7aabb	.config	log	report
ci-upstream-kasan-gce-selinux-root	2020/01/17 14:10	upstream	f4353c3e2aaf	3de7aabb	.config	log	report
ci-upstream-kasan-gce-root	2020/01/17 14:09	upstream	f4353c3e2aaf	3de7aabb	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/01/17 09:47	upstream	f4353c3e2aaf	3de7aabb	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/01/17 09:46	upstream	f4353c3e2aaf	3de7aabb	.config	log	report
ci-upstream-kasan-gce-root	2020/01/17 09:42	upstream	f4353c3e2aaf	3de7aabb	.config	log	report
ci-qemu-upstream	2020/01/16 18:44	upstream	f5ae2ea6347a	3de7aabb	.config	log	report
ci-upstream-kasan-gce-selinux-root	2020/01/16 18:39	upstream	f5ae2ea6347a	3de7aabb	.config	log	report
ci-upstream-kasan-gce-root	2020/01/16 18:39	upstream	f5ae2ea6347a	3de7aabb	.config	log	report
ci-upstream-kasan-gce-selinux-root	2020/01/16 07:00	upstream	51d69817519f	f9b69507	.config	log	report
ci-upstream-kasan-gce-smack-root	2020/01/16 06:56	upstream	51d69817519f	f9b69507	.config	log	report
ci-upstream-linux-next-kasan-gce-root	2020/09/02 10:30	linux-next	b36c969764ab	abf9ba4f	.config	log	report
ci-upstream-linux-next-kasan-gce-root	2020/05/23 04:04	linux-next	c11d28ab4a69	9682898d	.config	log	report
ci-upstream-linux-next-kasan-gce-root	2020/04/07 19:47	linux-next	5fab54423a0a	db9bcd4b	.config	log	report
ci-upstream-linux-next-kasan-gce-root	2020/02/29 00:18	linux-next	bdc5461b23ca	59b57593	.config	log	report
ci-upstream-linux-next-kasan-gce-root	2020/02/24 11:28	linux-next	bdc5461b23ca	d801cb02	.config	log	report
ci-upstream-linux-next-kasan-gce-root	2020/02/14 05:44	linux-next	9f01828e9e16	c5ed587f	.config	log	report
ci-upstream-linux-next-kasan-gce-root	2020/01/18 11:22	linux-next	2747d5fdab78	3de7aabb	.config	log	report
ci-upstream-linux-next-kasan-gce-root	2020/01/17 12:16	linux-next	2747d5fdab78	3de7aabb	.config	log	report
ci-upstream-linux-next-kasan-gce-root	2020/01/17 09:55	linux-next	2747d5fdab78	3de7aabb	.config	log	report
ci-upstream-linux-next-kasan-gce-root	2020/01/17 09:54	linux-next	2747d5fdab78	3de7aabb	.config	log	report
ci-upstream-linux-next-kasan-gce-root	2020/01/16 06:54	linux-next	5b483a1a0ea1	f9b69507	.config	log	report