Closed
Description
syzkaller-id: 05c7ddf5ee57b69d6d9d2cea1420e5e624c2a5a1
HEAD: 331b78e
Trace:
------------[ cut here ]------------
WARNING: CPU: 0 PID: 10691 at net/mptcp/protocol.c:1312 mptcp_sendmsg_frag+0xc03/0xde0
Modules linked in:
CPU: 0 PID: 10691 Comm: kworker/0:9 Not tainted 6.6.0-rc2-g331b78eb12af #45
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.11.0-2.el7 04/01/2014
Workqueue: events mptcp_worker
RIP: 0010:mptcp_sendmsg_frag+0xc03/0xde0 net/mptcp/protocol.c:1312
Code: 63 23 dc fe 48 ff cb 48 89 dd e9 09 fa ff ff e8 53 23 dc fe 0f 0b e9 0d fb ff ff e8 47 23 dc fe e9 1e fc ff ff e8 3d 23 dc fe <0f> 0b e9 a7 f8 ff ff e8 31 23 dc fe e9 2f f8 ff ff f3 0f 1e fa 65
RSP: 0000:ffffc900006fbbe0 EFLAGS: 00010293
RAX: ffffffff8243ca03 RBX: b20668d30234ad5f RCX: ffff888101859e00
RDX: 0000000000000000 RSI: b20668d30234ad5f RDI: b20668d30234ad5f
RBP: b20668d30234ad5e R08: ffffffff8243c290 R09: ffffffff82042b3c
R10: 0000000000000002 R11: ffffffff820564d0 R12: ffff888101e3b900
R13: 0000000000001458 R14: ffff88812e9f8a90 R15: ffff88811a4f5400
FS: 0000000000000000(0000) GS:ffff88813bc00000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b33724000 CR3: 0000000102176005 CR4: 0000000000170ef0
Call Trace:
<TASK>
__subflow_push_pending+0xa4/0x420 net/mptcp/protocol.c:1542
__mptcp_push_pending+0x128/0x3b0 net/mptcp/protocol.c:1611
mptcp_release_cb+0x218/0x5b0 net/mptcp/protocol.c:3388
release_sock+0xf6/0x100 net/core/sock.c:3528
mptcp_worker+0x6eb/0x900 net/mptcp/protocol.c:2743
process_scheduled_works+0x341/0x690 kernel/workqueue.c:2630
worker_thread+0x3a7/0x610 kernel/workqueue.c:2784
kthread+0x143/0x180 kernel/kthread.c:388
ret_from_fork+0x4d/0x60 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:304
</TASK>
---[ end trace 0000000000000000 ]---
------------[ cut here ]------------
WARNING: CPU: 0 PID: 10691 at net/mptcp/protocol.c:1341 mptcp_sendmsg_frag+0xbed/0xde0
Modules linked in:
CPU: 0 PID: 10691 Comm: kworker/0:9 Tainted: G W 6.6.0-rc2-g331b78eb12af #45
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.11.0-2.el7 04/01/2014
Workqueue: events mptcp_worker
RIP: 0010:mptcp_sendmsg_frag+0xbed/0xde0 net/mptcp/protocol.c:1341
Code: e9 a8 fd ff ff e8 73 23 dc fe 48 ff cb 48 89 dd e9 be f9 ff ff e8 63 23 dc fe 48 ff cb 48 89 dd e9 09 fa ff ff e8 53 23 dc fe <0f> 0b e9 0d fb ff ff e8 47 23 dc fe e9 1e fc ff ff e8 3d 23 dc fe
RSP: 0000:ffffc900006fbbe0 EFLAGS: 00010293
RAX: ffffffff8243c9ed RBX: ffff888101e3b900 RCX: ffff888101859e00
RDX: 0000000000000000 RSI: 00000000fffffc0a RDI: 0000000000000001
RBP: 00000000fffffc0a R08: ffffffff8243c2f6 R09: ffffffff82042b3c
R10: 0000000000000002 R11: ffffffff820564d0 R12: 0000000000000001
R13: 0000000000001458 R14: ffff88812e9f8a90 R15: ffff88811a4f5400
FS: 0000000000000000(0000) GS:ffff88813bc00000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b33724000 CR3: 0000000102176005 CR4: 0000000000170ef0
Call Trace:
<TASK>
__subflow_push_pending+0xa4/0x420 net/mptcp/protocol.c:1542
__mptcp_push_pending+0x128/0x3b0 net/mptcp/protocol.c:1611
mptcp_release_cb+0x218/0x5b0 net/mptcp/protocol.c:3388
release_sock+0xf6/0x100 net/core/sock.c:3528
mptcp_worker+0x6eb/0x900 net/mptcp/protocol.c:2743
process_scheduled_works+0x341/0x690 kernel/workqueue.c:2630
worker_thread+0x3a7/0x610 kernel/workqueue.c:2784
kthread+0x143/0x180 kernel/kthread.c:388
ret_from_fork+0x4d/0x60 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:304
</TASK>
---[ end trace 0000000000000000 ]---
Kconfig:
Kconfig_k7_clean.txt
No reproducer.