[<prev] [next>] [day] [month] [year] [list]
Message-ID: <67373ea3.050a0220.1324f8.00ad.GAE@google.com>
Date: Fri, 15 Nov 2024 04:29:23 -0800
From: syzbot <syzbot+b63566ef71c0f462e815@...kaller.appspotmail.com>
To: kent.overstreet@...ux.dev, linux-bcachefs@...r.kernel.org,
linux-kernel@...r.kernel.org, syzkaller-bugs@...glegroups.com
Subject: [syzbot] [bcachefs?] WARNING: locking bug in rcu_pending_enqueue
Hello,
syzbot found the following issue on:
HEAD commit: 563047e691f2 Merge remote-tracking branch 'tip/irq/core' i..
git tree: git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci
console output: https://syzkaller.appspot.com/x/log.txt?x=10513ea7980000
kernel config: https://syzkaller.appspot.com/x/.config?x=1d1ed5ebe7f28fe9
dashboard link: https://syzkaller.appspot.com/bug?extid=b63566ef71c0f462e815
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
userspace arch: arm64
Unfortunately, I don't have any reproducer for this issue yet.
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/09130b543284/disk-563047e6.raw.xz
vmlinux: https://storage.googleapis.com/syzbot-assets/76ce58c74487/vmlinux-563047e6.xz
kernel image: https://storage.googleapis.com/syzbot-assets/e39916627eee/Image-563047e6.gz.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+b63566ef71c0f462e815@...kaller.appspotmail.com
------------[ cut here ]------------
Looking for class "p->lock" with key rcu_pending_init.__key, but found a different class "&p->lock" with the same key
WARNING: CPU: 0 PID: 44 at kernel/locking/lockdep.c:939 look_up_lock_class+0xec/0x160 kernel/locking/lockdep.c:936
Modules linked in:
CPU: 0 UID: 0 PID: 44 Comm: kworker/u8:3 Not tainted 6.12.0-rc6-syzkaller-g563047e691f2 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
Workqueue: btree_update btree_interior_update_work
pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : look_up_lock_class+0xec/0x160 kernel/locking/lockdep.c:936
lr : look_up_lock_class+0xec/0x160 kernel/locking/lockdep.c:936
sp : ffff800097fe6fa0
x29: ffff800097fe6fa0 x28: dfff800000000000 x27: 0000000000000000
x26: ffff8000973358c0 x25: ffff800097335000 x24: 0000000000000001
x23: 0000000000000000 x22: 1ffff00011f020ba x21: ffff8000974dc7a0
x20: fffffdffbf6f0340 x19: ffff800092e82b80 x18: 0000000000000008
x17: 747562202c79656b x16: ffff8000830cb670 x15: 0000000000000001
x14: 1fffe000366c6ce2 x13: 0000000000000000 x12: 0000000000000000
x11: 0000000000000003 x10: 0000000000ff0100 x9 : 2e0fef016daf9f00
x8 : 2e0fef016daf9f00 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff800097fe66d8 x4 : ffff80008f8fd0c0 x3 : ffff80008062728c
x2 : 0000000000000001 x1 : 0000000100000001 x0 : 0000000000000000
Call trace:
look_up_lock_class+0xec/0x160 kernel/locking/lockdep.c:936 (P)
look_up_lock_class+0xec/0x160 kernel/locking/lockdep.c:936 (L)
register_lock_class+0x8c/0x6b4 kernel/locking/lockdep.c:1290
__lock_acquire+0x18c/0x77c8 kernel/locking/lockdep.c:5077
lock_acquire+0x240/0x728 kernel/locking/lockdep.c:5825
__raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline]
_raw_spin_lock+0x48/0x60 kernel/locking/spinlock.c:154
spin_lock include/linux/spinlock.h:351 [inline]
__rcu_pending_enqueue fs/bcachefs/rcu_pending.c:418 [inline]
rcu_pending_enqueue+0x164/0x898 fs/bcachefs/rcu_pending.c:515
bkey_cached_free+0xb8/0x214 fs/bcachefs/btree_key_cache.c:115
bch2_btree_key_cache_drop+0x104/0x210 fs/bcachefs/btree_key_cache.c:586
bch2_trans_commit_write_locked fs/bcachefs/btree_trans_commit.c:824 [inline]
do_bch2_trans_commit fs/bcachefs/btree_trans_commit.c:900 [inline]
__bch2_trans_commit+0x4d64/0x6604 fs/bcachefs/btree_trans_commit.c:1121
bch2_trans_commit fs/bcachefs/btree_update.h:184 [inline]
btree_update_nodes_written fs/bcachefs/btree_update_interior.c:728 [inline]
btree_interior_update_work+0xd40/0x1e00 fs/bcachefs/btree_update_interior.c:866
process_one_work+0x7bc/0x1600 kernel/workqueue.c:3229
process_scheduled_works kernel/workqueue.c:3310 [inline]
worker_thread+0x97c/0xeec kernel/workqueue.c:3391
kthread+0x288/0x310 kernel/kthread.c:389
ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:862
irq event stamp: 938478
hardirqs last enabled at (938477): [<ffff800080ac7d3c>] kasan_quarantine_put+0x1a0/0x1c8 mm/kasan/quarantine.c:234
hardirqs last disabled at (938478): [<ffff800082a539e8>] __rcu_pending_enqueue fs/bcachefs/rcu_pending.c:416 [inline]
hardirqs last disabled at (938478): [<ffff800082a539e8>] rcu_pending_enqueue+0xe4/0x898 fs/bcachefs/rcu_pending.c:515
softirqs last enabled at (938018): [<ffff8000866510a8>] spin_unlock_bh include/linux/spinlock.h:396 [inline]
softirqs last enabled at (938018): [<ffff8000866510a8>] nsim_dev_trap_report drivers/net/netdevsim/dev.c:820 [inline]
softirqs last enabled at (938018): [<ffff8000866510a8>] nsim_dev_trap_report_work+0x620/0x938 drivers/net/netdevsim/dev.c:851
softirqs last disabled at (938016): [<ffff800086651024>] spin_lock_bh include/linux/spinlock.h:356 [inline]
softirqs last disabled at (938016): [<ffff800086651024>] nsim_dev_trap_report drivers/net/netdevsim/dev.c:816 [inline]
softirqs last disabled at (938016): [<ffff800086651024>] nsim_dev_trap_report_work+0x59c/0x938 drivers/net/netdevsim/dev.c:851
---[ end trace 0000000000000000 ]---
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzkaller@...glegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
Powered by blists - more mailing lists