bisecting cause commit starting from be779f03d563981c65cc7417cc5e0dbbc5b89d30 building syzkaller on 27c5f59f504f562333e3cd5e715fea5cb69c396e testing commit be779f03d563981c65cc7417cc5e0dbbc5b89d30 with gcc (GCC) 8.1.0 kernel signature: 36b961fd6f0e4f2a57d0e0053ca15ccf37e88e60 all runs: crashed: WARNING in sk_stream_kill_queues testing release v4.17 testing commit 29dcea88779c856c7dc92040a0c01233263101d4 with gcc (GCC) 8.1.0 kernel signature: 791b451326105b18637327ef733e9f5b60aee604 run #0: crashed: WARNING in sk_stream_kill_queues run #1: crashed: WARNING in sk_stream_kill_queues run #2: crashed: WARNING in sk_stream_kill_queues run #3: crashed: WARNING in sk_stream_kill_queues run #4: crashed: WARNING in sk_stream_kill_queues run #5: crashed: WARNING in corrupted run #6: crashed: WARNING in sk_stream_kill_queues run #7: crashed: WARNING in sk_stream_kill_queues run #8: crashed: WARNING in sk_stream_kill_queues run #9: crashed: WARNING in sk_stream_kill_queues testing release v4.16 testing commit 0adb32858b0bddf4ada5f364a84ed60b196dbcda with gcc (GCC) 8.1.0 kernel signature: 43b49fcab28d68e96bb765a675be59c28eb4ea9f run #0: crashed: WARNING in sk_stream_kill_queues run #1: crashed: WARNING in corrupted run #2: crashed: WARNING in sk_stream_kill_queues run #3: crashed: WARNING in sk_stream_kill_queues run #4: crashed: WARNING in sk_stream_kill_queues run #5: crashed: WARNING in sk_stream_kill_queues run #6: crashed: WARNING in sk_stream_kill_queues run #7: crashed: WARNING in sk_stream_kill_queues run #8: crashed: WARNING in corrupted run #9: crashed: WARNING in sk_stream_kill_queues testing release v4.15 testing commit d8a5b80568a9cb66810e75b182018e9edb68e8ff with gcc (GCC) 8.1.0 kernel signature: ee6852c5ceb1c996f5299656b0f5885745771936 all runs: crashed: WARNING in sk_stream_kill_queues testing release v4.14 testing commit bebc6082da0a9f5d47a1ea2edc099bf671058bd4 with gcc (GCC) 8.1.0 kernel signature: f42cf1f9410921833a1b1ed9f4eb483bbd703f5c all runs: crashed: WARNING in sk_stream_kill_queues testing release v4.13 testing commit 569dbb88e80deb68974ef6fdd6a13edb9d686261 with gcc (GCC) 8.1.0 kernel signature: 114b75159c66d85c6625257727e96a05be868665 all runs: crashed: WARNING in sk_stream_kill_queues testing release v4.12 testing commit 6f7da290413ba713f0cdd9ff1a2a9bb129ef4f6c with gcc (GCC) 8.1.0 kernel signature: 3035c65cefc55192ad9b073554b203cfcca4fe70 all runs: OK # git bisect start 569dbb88e80deb68974ef6fdd6a13edb9d686261 6f7da290413ba713f0cdd9ff1a2a9bb129ef4f6c Bisecting: 7028 revisions left to test after this (roughly 13 steps) [ac7b75966c9c86426b55fe1c50ae148aa4571075] Merge tag 'pinctrl-v4.13-1' of git://git.kernel.org/pub/scm/linux/kernel/git/linusw/linux-pinctrl testing commit ac7b75966c9c86426b55fe1c50ae148aa4571075 with gcc (GCC) 8.1.0 kernel signature: d1d75f8b4bbc597973ddbece90ce744ea94f21c6 all runs: crashed: WARNING in sk_stream_kill_queues # git bisect bad ac7b75966c9c86426b55fe1c50ae148aa4571075 Bisecting: 3538 revisions left to test after this (roughly 12 steps) [e24dd9ee5399747b71c1d982a484fc7601795f31] Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security testing commit e24dd9ee5399747b71c1d982a484fc7601795f31 with gcc (GCC) 8.1.0 kernel signature: 9b53f48504bd283630b123882ab64ae9ada0022f all runs: OK # git bisect good e24dd9ee5399747b71c1d982a484fc7601795f31 Bisecting: 1787 revisions left to test after this (roughly 11 steps) [9cc9a5cb176ccb4f2cda5ac34da5a659926f125f] datapath: Avoid using stack larger than 1024. testing commit 9cc9a5cb176ccb4f2cda5ac34da5a659926f125f with gcc (GCC) 7.3.0 kernel signature: 9b1ab998897b393c52c0eb0fa34defb50f203d70 all runs: crashed: WARNING in sk_stream_kill_queues # git bisect bad 9cc9a5cb176ccb4f2cda5ac34da5a659926f125f Bisecting: 882 revisions left to test after this (roughly 10 steps) [073cf9e20c333ab29744717a23f9e43ec7512a20] Merge branch 'udp-reduce-cache-pressure' testing commit 073cf9e20c333ab29744717a23f9e43ec7512a20 with gcc (GCC) 7.3.0 kernel signature: d05919dc062ed0466caea8ea7cff9c65e98853de all runs: OK # git bisect good 073cf9e20c333ab29744717a23f9e43ec7512a20 Bisecting: 441 revisions left to test after this (roughly 9 steps) [8abd5599a520e9f188a750f1bde9dde5fb856230] Merge branch 's390-net-updates-part-2' testing commit 8abd5599a520e9f188a750f1bde9dde5fb856230 with gcc (GCC) 7.3.0 kernel signature: 1fc6b791c2421160a0f55270c64b907d0057f988 all runs: crashed: WARNING in sk_stream_kill_queues # git bisect bad 8abd5599a520e9f188a750f1bde9dde5fb856230 Bisecting: 220 revisions left to test after this (roughly 8 steps) [2fae5d0e647c6470d206e72b5fc24972bb900f70] Merge branch 'bpf-ctx-narrow' testing commit 2fae5d0e647c6470d206e72b5fc24972bb900f70 with gcc (GCC) 7.3.0 kernel signature: 52bb749254f361f8173270174d6440bb160cbcef all runs: OK # git bisect good 2fae5d0e647c6470d206e72b5fc24972bb900f70 Bisecting: 110 revisions left to test after this (roughly 7 steps) [41500c3e2a19ffcf40a7158fce1774de08e26ba2] rds: tcp: remove cp_outgoing testing commit 41500c3e2a19ffcf40a7158fce1774de08e26ba2 with gcc (GCC) 7.3.0 kernel signature: f2ddc702a55327892b2459083635aa8add228143 all runs: crashed: WARNING in sk_stream_kill_queues # git bisect bad 41500c3e2a19ffcf40a7158fce1774de08e26ba2 Bisecting: 54 revisions left to test after this (roughly 6 steps) [c27b32c2a4e6adc09323262d5b38b06979f063ab] r8152: support new chip 8050 testing commit c27b32c2a4e6adc09323262d5b38b06979f063ab with gcc (GCC) 7.3.0 kernel signature: d80f7a2aec04fb07a567448ef58d679e9c70135b all runs: crashed: WARNING in sk_stream_kill_queues # git bisect bad c27b32c2a4e6adc09323262d5b38b06979f063ab Bisecting: 26 revisions left to test after this (roughly 5 steps) [206f60e1451b4b90cb7f3a803d1c440602a458e0] Merge branch 'Broadcom-DTE-based-PTP-clock' testing commit 206f60e1451b4b90cb7f3a803d1c440602a458e0 with gcc (GCC) 7.3.0 kernel signature: 387d5120f420d2275e449f6a2863ca37af9fac72 all runs: OK # git bisect good 206f60e1451b4b90cb7f3a803d1c440602a458e0 Bisecting: 13 revisions left to test after this (roughly 4 steps) [57d1ef389c96b5ae192767ae16843e839b1eff74] net: dsa: mv88e6xxx: prefix Global Stats macros testing commit 57d1ef389c96b5ae192767ae16843e839b1eff74 with gcc (GCC) 7.3.0 kernel signature: 3f23a21c5a5d85ed526c3b5afffd12cec198de4e run #0: crashed: WARNING in sk_stream_kill_queues run #1: crashed: WARNING in sk_stream_kill_queues run #2: crashed: WARNING in sk_stream_kill_queues run #3: crashed: WARNING in corrupted run #4: crashed: WARNING in sk_stream_kill_queues run #5: crashed: WARNING in sk_stream_kill_queues run #6: crashed: WARNING in sk_stream_kill_queues run #7: crashed: WARNING in sk_stream_kill_queues run #8: crashed: WARNING in sk_stream_kill_queues run #9: crashed: WARNING in sk_stream_kill_queues # git bisect bad 57d1ef389c96b5ae192767ae16843e839b1eff74 Bisecting: 6 revisions left to test after this (roughly 3 steps) [83ad357dee467f63574de35752bc40033deab30e] skbuff: make skb_put_zero() return void testing commit 83ad357dee467f63574de35752bc40033deab30e with gcc (GCC) 7.3.0 kernel signature: 76a125714518071d0675fec070b7aeb4234b773b all runs: crashed: WARNING in sk_stream_kill_queues # git bisect bad 83ad357dee467f63574de35752bc40033deab30e Bisecting: 2 revisions left to test after this (roughly 2 steps) [3c4d7559159bfe1e3b94df3a657b2cda3a34e218] tls: kernel TLS support testing commit 3c4d7559159bfe1e3b94df3a657b2cda3a34e218 with gcc (GCC) 7.3.0 kernel signature: fd9f20cba221e4a24f6c751bbddbb9cc01bf9975 all runs: crashed: WARNING in sk_stream_kill_queues # git bisect bad 3c4d7559159bfe1e3b94df3a657b2cda3a34e218 Bisecting: 0 revisions left to test after this (roughly 1 step) [e3b5616a347603a521fe3ac46f3194a60900e3a7] tcp: export do_tcp_sendpages and tcp_rate_check_app_limited functions testing commit e3b5616a347603a521fe3ac46f3194a60900e3a7 with gcc (GCC) 7.3.0 kernel signature: a88400738267094ed5a7f89f25d4435e8ece93e6 all runs: OK # git bisect good e3b5616a347603a521fe3ac46f3194a60900e3a7 3c4d7559159bfe1e3b94df3a657b2cda3a34e218 is the first bad commit commit 3c4d7559159bfe1e3b94df3a657b2cda3a34e218 Author: Dave Watson Date: Wed Jun 14 11:37:39 2017 -0700 tls: kernel TLS support Software implementation of transport layer security, implemented using ULP infrastructure. tcp proto_ops are replaced with tls equivalents of sendmsg and sendpage. Only symmetric crypto is done in the kernel, keys are passed by setsockopt after the handshake is complete. All control messages are supported via CMSG data - the actual symmetric encryption is the same, just the message type needs to be passed separately. For user API, please see Documentation patch. Pieces that can be shared between hw and sw implementation are in tls_main.c Signed-off-by: Boris Pismenny Signed-off-by: Ilya Lesokhin Signed-off-by: Aviad Yehezkel Signed-off-by: Dave Watson Signed-off-by: David S. Miller :100644 100644 10f158ee95a31509882e94012affd0665088af1f 71a74555afdf4695b74267333e31a691d1e1b97e M MAINTAINERS :040000 040000 7ae2ecdd101f57ded34a9abfa2efebf204d3948c ebc8e78bcf2da708086aaddd279518a289626e81 M include :040000 040000 4ec602f2afe3dbcb390c844ea96d1df793983c6e ead4e27e5324e665f24b9b5aeacf855dc2207e68 M net kernel signature: fd9f20cba221e4a24f6c751bbddbb9cc01bf9975 previous signature: a88400738267094ed5a7f89f25d4435e8ece93e6 revisions tested: 20, total time: 3h40m8.36249096s (build: 1h26m37.234552516s, test: 2h8m13.250982384s) first bad commit: 3c4d7559159bfe1e3b94df3a657b2cda3a34e218 tls: kernel TLS support cc: ["aviadye@mellanox.com" "borisp@mellanox.com" "davejwatson@fb.com" "davem@davemloft.net" "ilyal@mellanox.com"] crash: WARNING in sk_stream_kill_queues ------------[ cut here ]------------ WARNING: CPU: 0 PID: 7103 at net/core/stream.c:205 sk_stream_kill_queues+0x37b/0x4e0 net/core/stream.c:205 Kernel panic - not syncing: panic_on_warn set ... CPU: 0 PID: 7103 Comm: syz-executor4 Not tainted 4.12.0-rc5-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:16 [inline] dump_stack+0x145/0x1f1 lib/dump_stack.c:52 panic+0x1b6/0x358 kernel/panic.c:180 __warn+0x18d/0x1b0 kernel/panic.c:541 report_bug+0x1a4/0x250 lib/bug.c:183 fixup_bug arch/x86/kernel/traps.c:190 [inline] do_trap_no_signal arch/x86/kernel/traps.c:224 [inline] do_trap+0x1d9/0x3e0 arch/x86/kernel/traps.c:273 do_error_trap+0x120/0x390 arch/x86/kernel/traps.c:310 do_invalid_op+0x1b/0x20 arch/x86/kernel/traps.c:323 invalid_op+0x1e/0x30 arch/x86/entry/entry_64.S:844 RIP: 0010:sk_stream_kill_queues+0x37b/0x4e0 net/core/stream.c:205 RSP: 0018:ffff8801ca1d6f90 EFLAGS: 00010202 RAX: 0000000000000000 RBX: ffff8801c6a83130 RCX: 0000000000000020 RDX: 1ffff10038d5062f RSI: 0000000000000813 RDI: ffff8801c6a83178 RBP: ffff8801ca1d6fd0 R08: 1ffff1003943ad5e R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000000 R12: ffff8801c6a82f40 R13: ffffffff8a219aa0 R14: 0000000000000007 R15: ffff8801c6a83078 inet_csk_destroy_sock+0x155/0x390 net/ipv4/inet_connection_sock.c:835 tcp_close+0x7e6/0xec0 net/ipv4/tcp.c:2272 tls_sk_proto_close+0x510/0x8d0 net/tls/tls_main.c:243 inet_release+0xd9/0x1c0 net/ipv4/af_inet.c:425 inet6_release+0x46/0x60 net/ipv6/af_inet6.c:432 sock_release+0x83/0x1b0 net/socket.c:597 sock_close+0xd/0x20 net/socket.c:1113 __fput+0x310/0x880 fs/file_table.c:209 ____fput+0x9/0x10 fs/file_table.c:245 task_work_run+0x140/0x230 kernel/task_work.c:116 exit_task_work include/linux/task_work.h:21 [inline] do_exit+0x981/0x1920 kernel/exit.c:878 do_group_exit+0x135/0x3c0 kernel/exit.c:982 get_signal+0x74f/0x1670 kernel/signal.c:2318 do_signal+0x90/0x1eb0 arch/x86/kernel/signal.c:808 exit_to_usermode_loop+0x1c7/0x2a0 arch/x86/entry/common.c:157 prepare_exit_to_usermode arch/x86/entry/common.c:194 [inline] syscall_return_slowpath+0x344/0x3f0 arch/x86/entry/common.c:263 entry_SYSCALL_64_fastpath+0xc0/0xc2 RIP: 0033:0x455c79 RSP: 002b:00007fa7a121dce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca RAX: fffffffffffffe00 RBX: 000000000072c0d8 RCX: 0000000000455c79 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000072c0d8 RBP: 000000000072c0d8 R08: 0000000000000000 R09: 000000000072c0b0 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffe69b9348f R14: 00007fa7a121e9c0 R15: 0000000000000003 Kernel Offset: disabled Rebooting in 86400 seconds..