BUG: using smp_processor_id() in preemptible [ADDR] code: syz-executor

BUG: using smp_processor_id() in preemptible [ADDR] code: syz-executor

Status: auto-closed as invalid on 2020/09/30 17:27
Reported-by: syzbot+2836a8b6c02393a157d1@syzkaller.appspotmail.com
First crash: 1541d, last: 1422d

▶ ▼ Similar bugs (1)

Kernel	Title	Repro	Cause bisect	Fix bisect	Count	Last	Reported	Patched	Status
upstream	BUG: using smp_processor_id() in preemptible [ADDR] code: syz-executor	C	done		22297	1423d	1761d	15/26	fixed on 2020/07/17 17:58

Sample crash report:

bridge1: port 1(bond0) entered blocking state
bridge1: port 1(bond0) entered disabled state
BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/16774
WARNING: can't dereference registers at ffff88821152fce8 for ip apic_timer_interrupt+0x93/0xa0 arch/x86/entry/entry_64.S:793
caller is in_entry_stack+0xd/0x50 arch/x86/kernel/dumpstack.c:50
CPU: 0 PID: 16774 Comm: syz-executor.0 Not tainted 4.14.182-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
==================================================================
BUG: KASAN: use-after-free in vsnprintf+0xad5/0x1350 lib/vsprintf.c:2214
Read of size 8 at addr ffff88821152f880 by task syz-executor.0/16774

CPU: 0 PID: 16774 Comm: syz-executor.0 Not tainted 4.14.182-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
Lost 1050 message(s)!

Crashes (4):
Time	Kernel	Commit	Syzkaller	Config	Log	Report	Manager
2020/06/02 17:27	linux-4.14.y	4f68020fef1c	52fd7b7d	.config	console log	report	ci2-linux-4-14
2020/05/05 19:49	linux-4.14.y	d71f695ce745	4b76dd25	.config	console log	report	ci2-linux-4-14
2020/05/04 00:34	linux-4.14.y	773e2b1cd56a	58ae5e18	.config	console log	report	ci2-linux-4-14
2020/02/05 02:45	linux-4.14.y	9fa690a2a016	93e5e335	.config	console log	report	ci2-linux-4-14

* ~~Struck through~~ repros no longer work on HEAD.