This is the start of the stable review cycle for the 5.10.26 release.
There are 156 patches in this series, all will be posted as a response
to this one. If anyone has any issues with these being applied, please
let me know.
Responses should be made by Wed, 24 Mar 2021 15:18:19 +0000.
Anything received after that time might be too late.
The whole patch series can be found in one patch at:
https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.10.26-rc2.gz
or in the git tree and branch at:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.10.y
and the diffstat can be found below.
thanks,
greg k-h
-------------
Pseudo-Shortlog of commits:
Greg Kroah-Hartman <[email protected]>
Linux 5.10.26-rc2
Vincent Whitchurch <[email protected]>
cifs: Fix preauth hash corruption
Johan Hovold <[email protected]>
x86/apic/of: Fix CPU devicetree-node lookups
Thomas Gleixner <[email protected]>
genirq: Disable interrupts for force threaded handlers
Lv Yunlong <[email protected]>
firmware/efi: Fix a use after bug in efi_mem_reserve_persistent
Ard Biesheuvel <[email protected]>
efi: use 32-bit alignment for efi_guid_t literals
Peter Zijlstra <[email protected]>
static_call: Fix static_call_update() sanity check
Greg Kroah-Hartman <[email protected]>
MAINTAINERS: move the staging subsystem to lists.linux.dev
Greg Kroah-Hartman <[email protected]>
MAINTAINERS: move some real subsystems off of the staging mailing list
Harshad Shirwadkar <[email protected]>
ext4: fix rename whiteout with fast commit
Shijie Luo <[email protected]>
ext4: fix potential error in ext4_do_update_inode
zhangyi (F) <[email protected]>
ext4: do not try to set xattr into ea_inode if value is empty
Pan Bian <[email protected]>
ext4: stop inode update before return
zhangyi (F) <[email protected]>
ext4: find old entry again if failed to rename whiteout
Eric Biggers <[email protected]>
ext4: fix error handling in ext4_end_enable_verity()
Shawn Guo <[email protected]>
efivars: respect EFI_UNSUPPORTED return from firmware
Oleg Nesterov <[email protected]>
x86: Introduce TS_COMPAT_RESTART to fix get_nr_restart_syscall()
Oleg Nesterov <[email protected]>
x86: Move TS_COMPAT back to asm/thread_info.h
Oleg Nesterov <[email protected]>
kernel, fs: Introduce and use set_restart_fn() and arch_set_restart_data()
Thomas Gleixner <[email protected]>
x86/ioapic: Ignore IRQ2 again
Kan Liang <[email protected]>
perf/x86/intel: Fix unchecked MSR access error caused by VLBR_EVENT
Kan Liang <[email protected]>
perf/x86/intel: Fix a crash caused by zero PEBS status
Tyrel Datwyler <[email protected]>
PCI: rpadlpar: Fix potential drc_name corruption in store functions
Fabrice Gasnier <[email protected]>
counter: stm32-timer-cnt: fix ceiling miss-alignment with reload register
Fabrice Gasnier <[email protected]>
counter: stm32-timer-cnt: fix ceiling write max value
Ye Xiang <[email protected]>
iio: hid-sensor-temperature: Fix issues of timestamp channel
Ye Xiang <[email protected]>
iio: hid-sensor-prox: Fix scale not correct issue
Ye Xiang <[email protected]>
iio: hid-sensor-humidity: Fix alignment issue of timestamp channel
Alexandru Ardelean <[email protected]>
iio: adc: adi-axi-adc: add proper Kconfig dependencies
Wilfried Wessner <[email protected]>
iio: adc: ad7949: fix wrong ADC result due to incorrect bit mask
Linus Walleij <[email protected]>
iio: adc: ab8500-gpadc: Fix off by 10 to 3
Dinghao Liu <[email protected]>
iio: gyro: mpu3050: Fix error handling in mpu3050_trigger_handler
Dan Carpenter <[email protected]>
iio: adis16400: Fix an error code in adis16400_initial_setup()
Jonathan Albrieux <[email protected]>
iio:adc:qcom-spmi-vadc: add default scale to LR_MUX2_BAT_ID channel
Jonathan Cameron <[email protected]>
iio:adc:stm32-adc: Add HAS_IOMEM dependency
Mika Westerberg <[email protected]>
thunderbolt: Increase runtime PM reference count on DP tunnel discovery
Mika Westerberg <[email protected]>
thunderbolt: Initialize HopID IDAs in tb_switch_alloc()
Wesley Cheng <[email protected]>
usb: dwc3: gadget: Prevent EP queuing while stopping transfers
Wesley Cheng <[email protected]>
usb: dwc3: gadget: Allow runtime suspend if UDC unbinded
Badhri Jagan Sridharan <[email protected]>
usb: typec: tcpm: Invoke power_supply_changed for tcpm-source-psy-
Elias Rudberg <[email protected]>
usb: typec: Remove vdo[3] part of tps6598x_rx_identity_reg struct
Jim Lin <[email protected]>
usb: gadget: configfs: Fix KASAN use-after-free
Colin Ian King <[email protected]>
usbip: Fix incorrect double assignment to udc->ud.tcp_rx
Alan Stern <[email protected]>
usb-storage: Add quirk to defeat Kindle's automatic unload
Christophe Leroy <[email protected]>
powerpc: Force inlining of cpu_has_feature() to avoid build failure
Bob Peterson <[email protected]>
gfs2: bypass signal_our_withdraw if no journal
Bob Peterson <[email protected]>
gfs2: move freeze glock outside the make_fs_rw and _ro functions
Bob Peterson <[email protected]>
gfs2: Add common helper for holding and releasing the freeze glock
Frieder Schrempf <[email protected]>
regulator: pca9450: Clear PRESET_EN bit to fix BUCK1/2/3 voltage setting
Frieder Schrempf <[email protected]>
regulator: pca9450: Enable system reset on WDOG_B assertion
Frieder Schrempf <[email protected]>
regulator: pca9450: Add SD_VSEL GPIO for LDO5
Jia-Ju Bai <[email protected]>
net: bonding: fix error return code of bond_neigh_init()
Jens Axboe <[email protected]>
io_uring: clear IOCB_WAITQ for non -EIOCBQUEUED return
Jens Axboe <[email protected]>
io_uring: don't attempt IO reissue from the ring exit path
Florian Westphal <[email protected]>
mptcp: put subflow sock on connect error
Evan Quan <[email protected]>
drm/amd/pm: fulfill the Polaris implementation for get_clock_by_type_with_latency()
Julian Wiedmann <[email protected]>
s390/qeth: schedule TX NAPI on QAOB completion
Junlin Yang <[email protected]>
ibmvnic: remove excessive irqsave
Ezequiel Garcia <[email protected]>
media: cedrus: h264: Support profile controls
Pavel Begunkov <[email protected]>
io_uring: fix inconsistent lock state
Paolo Abeni <[email protected]>
mptcp: reduce the arguments of mptcp_sendmsg_frag
Florian Westphal <[email protected]>
mptcp: split mptcp_clean_una function
Matti Gottlieb <[email protected]>
iwlwifi: Add a new card for MA family
Frederic Weisbecker <[email protected]>
entry/kvm: Explicitly flush pending rcuog wakeup before last rescheduling point
Frederic Weisbecker <[email protected]>
entry: Explicitly flush pending rcuog wakeup before last rescheduling point
Frederic Weisbecker <[email protected]>
rcu/nocb: Trigger self-IPI on late deferred wake up before user resume
Aurabindo Pillai <[email protected]>
drm/amd/display: turn DPMS off on connector unplug
Alexander Lobakin <[email protected]>
MIPS: compressed: fix build with enabled UBSAN
Christian Melki <[email protected]>
net: phy: micrel: set soft_reset callback to genphy_soft_reset for KSZ8081
Norbert Ciosek <[email protected]>
i40e: Fix endianness conversions
Sandipan Das <[email protected]>
powerpc/sstep: Fix darn emulation
Sandipan Das <[email protected]>
powerpc/sstep: Fix load-store and update emulation
Mark Bloch <[email protected]>
RDMA/mlx5: Allow creating all QPs even when non RDMA profile is used
Ahmed S. Darwish <[email protected]>
scsi: isci: Pass gfp_t flags in isci_port_bc_change_received()
Ahmed S. Darwish <[email protected]>
scsi: isci: Pass gfp_t flags in isci_port_link_up()
Ahmed S. Darwish <[email protected]>
scsi: isci: Pass gfp_t flags in isci_port_link_down()
Ahmed S. Darwish <[email protected]>
scsi: mvsas: Pass gfp_t flags to libsas event notifiers
Ahmed S. Darwish <[email protected]>
scsi: libsas: Introduce a _gfp() variant of event notifiers
John Garry <[email protected]>
scsi: libsas: Remove notifier indirection
Joe Perches <[email protected]>
scsi: pm8001: Neaten debug logging macros and uses
yuuzheng <[email protected]>
scsi: pm80xx: Fix pm8001_mpi_get_nvmd_resp() race condition
Viswas G <[email protected]>
scsi: pm80xx: Make running_req atomic
peter chang <[email protected]>
scsi: pm80xx: Make mpi_build_cmd locking consistent
Frank van der Linden <[email protected]>
module: harden ELF info handling
Sergey Shtylyov <[email protected]>
module: avoid *goto*s in module_sig_check()
Sergey Shtylyov <[email protected]>
module: merge repetitive strings in module_sig_check()
Jack Wang <[email protected]>
RDMA/rtrs: Fix KASAN: stack-out-of-bounds bug
Guoqing Jiang <[email protected]>
RDMA/rtrs: Introduce rtrs_post_send
Guoqing Jiang <[email protected]>
RDMA/rtrs-srv: Jump to dereg_mr label if allocate iu fails
Gioh Kim <[email protected]>
RDMA/rtrs: Remove unnecessary argument dir of rtrs_iu_free
Andrii Nakryiko <[email protected]>
bpf: Declare __bpf_free_used_maps() unconditionally
Erwan Le Ray <[email protected]>
serial: stm32: fix DMA initialization error handling
Lee Jones <[email protected]>
tty: serial: stm32-usart: Remove set but unused 'cookie' variables
Sukadev Bhattiprolu <[email protected]>
ibmvnic: serialize access to work queue on remove
Sukadev Bhattiprolu <[email protected]>
ibmvnic: add some debugs
Sagi Grimberg <[email protected]>
nvme-rdma: fix possible hang when failing to set io queues
Andy Shevchenko <[email protected]>
gpiolib: Assign fwnode to parent's if no primary one provided
William Breathitt Gray <[email protected]>
counter: stm32-timer-cnt: Report count function when SLAVE_MODE_DISABLED
Heinrich Schuchardt <[email protected]>
RISC-V: correct enum sbi_ext_rfence_fid
dongjian <[email protected]>
scsi: ufs: ufs-mediatek: Correct operator & -> &&
Lv Yunlong <[email protected]>
scsi: myrs: Fix a double free in myrs_cleanup()
Dan Carpenter <[email protected]>
scsi: lpfc: Fix some error codes in debugfs
Kefeng Wang <[email protected]>
riscv: Correct SPARSEMEM configuration
Steve French <[email protected]>
cifs: fix allocation size on newly created files
Masahiro Yamada <[email protected]>
kbuild: Fix <linux/version.h> for empty SUBLEVEL or PATCHLEVEL again
Pavel Skripkin <[email protected]>
net/qrtr: fix __netdev_alloc_skb call
Jens Axboe <[email protected]>
io_uring: ensure that SQPOLL thread is started for exit
Tetsuo Handa <[email protected]>
pstore: Fix warning in pstore_kill_sb()
Umesh Nerlige Ramappa <[email protected]>
i915/perf: Start hrtimer only if sampling the OA buffer
Daniel Kobras <[email protected]>
sunrpc: fix refcount leak for rpc auth modules
Gautam Dawar <[email protected]>
vhost_vdpa: fix the missing irq_bypass_unregister_producer() invocation
Jason Gunthorpe <[email protected]>
vfio: IOMMU_API should be selected
Timo Rothenpieler <[email protected]>
svcrdma: disable timeouts on rdma backchannel
Olga Kornievskaia <[email protected]>
NFSD: fix dest to src mount in inter-server COPY
Joe Korty <[email protected]>
NFSD: Repair misuse of sv_lock in 5.10.16-rt30.
J. Bruce Fields <[email protected]>
nfsd: don't abort copies early
Trond Myklebust <[email protected]>
nfsd: Don't keep looking up unhashed files in the nfsd file cache
Sagi Grimberg <[email protected]>
nvmet: don't check iosqes,iocqes for discovery controllers
Sagi Grimberg <[email protected]>
nvme-tcp: fix a NULL deref when receiving a 0-length r2t PDU
Sagi Grimberg <[email protected]>
nvme-tcp: fix possible hang when failing to set io queues
Sagi Grimberg <[email protected]>
nvme-tcp: fix misuse of __smp_processor_id with preemption enabled
Christoph Hellwig <[email protected]>
nvme: fix Write Zeroes limitations
Colin Ian King <[email protected]>
ALSA: usb-audio: Fix unintentional sign extension issue
David Howells <[email protected]>
afs: Stop listxattr() from listing "afs.*" attributes
David Howells <[email protected]>
afs: Fix accessing YFS xattrs on a non-YFS server
Sameer Pujar <[email protected]>
ASoC: simple-card-utils: Do not handle device clock
Srinivasa Rao Mandadapu <[email protected]>
ASoC: qcom: lpass-cpu: Fix lpass dai ids parse
Srinivas Kandagatla <[email protected]>
ASoC: codecs: wcd934x: add a sanity check in set channel map
Srinivas Kandagatla <[email protected]>
ASoC: qcom: sdm845: Fix array out of range on rx slim channels
Srinivas Kandagatla <[email protected]>
ASoC: qcom: sdm845: Fix array out of bounds access
Pan Xiuli <[email protected]>
ASoC: SOF: intel: fix wrong poll bits in dsp power down
Pierre-Louis Bossart <[email protected]>
ASoC: SOF: Intel: unregister DMIC device on probe error
Hans de Goede <[email protected]>
ASoC: Intel: bytcr_rt5640: Fix HP Pavilion x2 10-p0XX OVCD current threshold
Alexander Shiyan <[email protected]>
ASoC: fsl_ssi: Fix TDM slot setup for I2S mode
Calvin Hou <[email protected]>
drm/amd/display: Correct algorithm for reversed gamma
Stefano Garzarella <[email protected]>
vhost-vdpa: set v->config_ctx to NULL if eventfd_ctx_fdget() fails
Stefano Garzarella <[email protected]>
vhost-vdpa: fix use-after-free of v->config_ctx
David Sterba <[email protected]>
btrfs: fix slab cache flags for free space tree bitmap
Filipe Manana <[email protected]>
btrfs: fix race when cloning extent buffer during rewind of an old root
Chao Yu <[email protected]>
zonefs: fix to update .i_wr_refcnt correctly in zonefs_open_zone()
Damien Le Moal <[email protected]>
zonefs: prevent use of seq files as swap file
Damien Le Moal <[email protected]>
zonefs: Fix O_APPEND async write handling
Niklas Schnelle <[email protected]>
s390/pci: fix leak of PCI device structure
Niklas Schnelle <[email protected]>
s390/pci: remove superfluous zdev->zbus check
Niklas Schnelle <[email protected]>
s390/pci: refactor zpci_create_device()
Gerald Schaefer <[email protected]>
s390/vtime: fix increased steal time accounting
Rafael J. Wysocki <[email protected]>
Revert "PM: runtime: Update device status before letting suppliers suspend"
Jeremy Szu <[email protected]>
ALSA: hda/realtek: fix mute/micmute LEDs for HP 850 G8
Jeremy Szu <[email protected]>
ALSA: hda/realtek: fix mute/micmute LEDs for HP 440 G8
Jeremy Szu <[email protected]>
ALSA: hda/realtek: fix mute/micmute LEDs for HP 840 G8
Xiaoliang Yu <[email protected]>
ALSA: hda/realtek: Apply headset-mic quirks for Xiaomi Redmibook Air
Hui Wang <[email protected]>
ALSA: hda: generic: Fix the micmute led init state
Xiaoliang Yu <[email protected]>
ALSA: hda/realtek: apply pin quirk for XiaomiNotebook Pro
Takashi Sakamoto <[email protected]>
ALSA: dice: fix null pointer dereference when node is disconnected
Meng Li <[email protected]>
spi: cadence: set cqspi to the driver_data field of struct device
Shengjiu Wang <[email protected]>
ASoC: ak5558: Add MODULE_DEVICE_TABLE
Shengjiu Wang <[email protected]>
ASoC: ak4458: Add MODULE_DEVICE_TABLE
-------------
Diffstat:
Documentation/scsi/libsas.rst | 10 +-
MAINTAINERS | 7 +-
Makefile | 10 +-
arch/mips/boot/compressed/Makefile | 1 +
arch/powerpc/include/asm/cpu_has_feature.h | 4 +-
arch/powerpc/lib/sstep.c | 16 +-
arch/riscv/Kconfig | 4 +-
arch/riscv/include/asm/sbi.h | 4 +-
arch/s390/include/asm/pci.h | 6 +-
arch/s390/kernel/vtime.c | 2 +-
arch/s390/pci/pci.c | 85 +-
arch/s390/pci/pci_clp.c | 40 +-
arch/s390/pci/pci_event.c | 22 +-
arch/x86/events/intel/core.c | 3 +
arch/x86/events/intel/ds.c | 2 +-
arch/x86/include/asm/processor.h | 9 -
arch/x86/include/asm/thread_info.h | 23 +-
arch/x86/kernel/apic/apic.c | 5 +
arch/x86/kernel/apic/io_apic.c | 10 +
arch/x86/kernel/signal.c | 24 +-
arch/x86/kvm/x86.c | 1 +
drivers/base/power/runtime.c | 62 +-
drivers/counter/stm32-timer-cnt.c | 55 +-
drivers/firmware/efi/efi.c | 3 +-
drivers/firmware/efi/vars.c | 4 +
drivers/gpio/gpiolib.c | 7 +
drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c | 32 +-
drivers/gpu/drm/amd/display/dc/core/dc.c | 13 +
drivers/gpu/drm/amd/display/dc/dc_stream.h | 1 +
.../gpu/drm/amd/display/dc/dcn30/dcn30_cm_common.c | 26 +-
.../gpu/drm/amd/pm/powerplay/hwmgr/smu7_hwmgr.c | 67 +
drivers/gpu/drm/i915/i915_perf.c | 13 +-
drivers/iio/adc/Kconfig | 3 +
drivers/iio/adc/ab8500-gpadc.c | 2 +-
drivers/iio/adc/ad7949.c | 2 +-
drivers/iio/adc/qcom-spmi-vadc.c | 2 +-
drivers/iio/gyro/mpu3050-core.c | 2 +
drivers/iio/humidity/hid-sensor-humidity.c | 12 +-
drivers/iio/imu/adis16400.c | 3 +-
drivers/iio/light/hid-sensor-prox.c | 13 +-
drivers/iio/temperature/hid-sensor-temperature.c | 14 +-
drivers/infiniband/hw/mlx5/qp.c | 26 +-
drivers/infiniband/ulp/rtrs/rtrs-clt.c | 14 +-
drivers/infiniband/ulp/rtrs/rtrs-pri.h | 3 +-
drivers/infiniband/ulp/rtrs/rtrs-srv.c | 17 +-
drivers/infiniband/ulp/rtrs/rtrs.c | 73 +-
drivers/net/bonding/bond_main.c | 8 +-
drivers/net/ethernet/ibm/ibmvnic.c | 52 +-
drivers/net/ethernet/ibm/ibmvnic.h | 5 +-
drivers/net/ethernet/intel/i40e/i40e_main.c | 12 +-
drivers/net/ethernet/intel/i40e/i40e_txrx.c | 2 +-
drivers/net/phy/micrel.c | 1 +
drivers/net/wireless/intel/iwlwifi/cfg/22000.c | 11 +
drivers/net/wireless/intel/iwlwifi/iwl-config.h | 2 +
drivers/net/wireless/intel/iwlwifi/pcie/drv.c | 6 +
drivers/nvme/host/core.c | 36 +-
drivers/nvme/host/rdma.c | 7 +-
drivers/nvme/host/tcp.c | 16 +-
drivers/nvme/target/core.c | 17 +-
drivers/pci/hotplug/rpadlpar_sysfs.c | 14 +-
drivers/pci/hotplug/s390_pci_hpc.c | 3 +-
drivers/regulator/pca9450-regulator.c | 30 +
drivers/s390/net/qeth_core_main.c | 18 +-
drivers/scsi/aic94xx/aic94xx_scb.c | 20 +-
drivers/scsi/hisi_sas/hisi_sas_main.c | 12 +-
drivers/scsi/hisi_sas/hisi_sas_v1_hw.c | 3 +-
drivers/scsi/hisi_sas/hisi_sas_v2_hw.c | 3 +-
drivers/scsi/hisi_sas/hisi_sas_v3_hw.c | 3 +-
drivers/scsi/isci/port.c | 11 +-
drivers/scsi/libsas/sas_event.c | 66 +-
drivers/scsi/libsas/sas_init.c | 27 +-
drivers/scsi/libsas/sas_internal.h | 5 +-
drivers/scsi/lpfc/lpfc_debugfs.c | 4 +-
drivers/scsi/mvsas/mv_sas.c | 25 +-
drivers/scsi/myrs.c | 2 +-
drivers/scsi/pm8001/pm8001_ctl.c | 7 +-
drivers/scsi/pm8001/pm8001_hwi.c | 1492 ++++++++---------
drivers/scsi/pm8001/pm8001_init.c | 93 +-
drivers/scsi/pm8001/pm8001_sas.c | 150 +-
drivers/scsi/pm8001/pm8001_sas.h | 47 +-
drivers/scsi/pm8001/pm80xx_hwi.c | 1740 +++++++++-----------
drivers/scsi/ufs/ufs-mediatek.c | 2 +-
drivers/spi/spi-cadence-quadspi.c | 1 +
drivers/staging/media/sunxi/cedrus/cedrus.c | 19 +
drivers/thunderbolt/switch.c | 18 +-
drivers/thunderbolt/tb.c | 4 +
drivers/tty/serial/stm32-usart.c | 26 +-
drivers/usb/dwc3/gadget.c | 22 +-
drivers/usb/gadget/configfs.c | 14 +-
drivers/usb/storage/transport.c | 7 +
drivers/usb/storage/unusual_devs.h | 12 +
drivers/usb/typec/tcpm/tcpm.c | 9 +-
drivers/usb/typec/tps6598x.c | 1 -
drivers/usb/usbip/vudc_sysfs.c | 2 +-
drivers/vfio/Kconfig | 2 +-
drivers/vhost/vdpa.c | 20 +-
fs/afs/dir.c | 1 -
fs/afs/file.c | 1 -
fs/afs/fs_operation.c | 7 +-
fs/afs/inode.c | 1 -
fs/afs/internal.h | 1 -
fs/afs/mntpt.c | 1 -
fs/afs/xattr.c | 31 +-
fs/btrfs/ctree.c | 2 +
fs/btrfs/inode.c | 2 +-
fs/cifs/inode.c | 10 +-
fs/cifs/transport.c | 7 +-
fs/ext4/ext4.h | 2 +
fs/ext4/fast_commit.c | 9 +-
fs/ext4/inode.c | 12 +-
fs/ext4/namei.c | 32 +-
fs/ext4/verity.c | 89 +-
fs/ext4/xattr.c | 2 +-
fs/gfs2/ops_fstype.c | 33 +-
fs/gfs2/recovery.c | 8 +-
fs/gfs2/super.c | 45 +-
fs/gfs2/util.c | 58 +-
fs/gfs2/util.h | 3 +
fs/io_uring.c | 19 +-
fs/nfsd/filecache.c | 2 +
fs/nfsd/nfs4proc.c | 2 +-
fs/nfsd/nfs4state.c | 2 +-
fs/pstore/inode.c | 2 +-
fs/select.c | 10 +-
fs/zonefs/super.c | 101 +-
include/linux/bpf.h | 5 +-
include/linux/efi.h | 6 +-
include/linux/entry-kvm.h | 14 +
include/linux/regulator/pca9450.h | 10 +
include/linux/thread_info.h | 13 +
include/linux/usb_usual.h | 2 +
include/scsi/libsas.h | 11 +-
kernel/entry/common.c | 7 +
kernel/futex.c | 3 +-
kernel/irq/manage.c | 4 +
kernel/jump_label.c | 8 +
kernel/module.c | 166 +-
kernel/module_signature.c | 2 +-
kernel/module_signing.c | 2 +-
kernel/rcu/tree.c | 57 +-
kernel/rcu/tree.h | 2 +-
kernel/rcu/tree_plugin.h | 26 +-
kernel/static_call.c | 11 +-
kernel/time/alarmtimer.c | 2 +-
kernel/time/hrtimer.c | 2 +-
kernel/time/posix-cpu-timers.c | 2 +-
net/mptcp/protocol.c | 81 +-
net/mptcp/subflow.c | 1 +
net/qrtr/qrtr.c | 2 +-
net/sunrpc/svc.c | 6 +-
net/sunrpc/svc_xprt.c | 4 +-
net/sunrpc/xprtrdma/svc_rdma_backchannel.c | 6 +-
sound/firewire/dice/dice-stream.c | 5 +-
sound/pci/hda/hda_generic.c | 2 +-
sound/pci/hda/patch_realtek.c | 16 +
sound/soc/codecs/ak4458.c | 1 +
sound/soc/codecs/ak5558.c | 1 +
sound/soc/codecs/wcd934x.c | 6 +
sound/soc/fsl/fsl_ssi.c | 6 +-
sound/soc/generic/simple-card-utils.c | 13 +-
sound/soc/intel/boards/bytcr_rt5640.c | 2 +-
sound/soc/qcom/lpass-cpu.c | 2 +-
sound/soc/qcom/sdm845.c | 6 +-
sound/soc/sof/intel/hda-dsp.c | 2 +-
sound/soc/sof/intel/hda.c | 1 +
sound/usb/mixer_quirks.c | 4 +-
166 files changed, 3132 insertions(+), 2751 deletions(-)
On 3/22/2021 8:19 AM, Greg Kroah-Hartman wrote:
> This is the start of the stable review cycle for the 5.10.26 release.
> There are 156 patches in this series, all will be posted as a response
> to this one. If anyone has any issues with these being applied, please
> let me know.
>
> Responses should be made by Wed, 24 Mar 2021 15:18:19 +0000.
> Anything received after that time might be too late.
>
> The whole patch series can be found in one patch at:
> https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.10.26-rc2.gz
> or in the git tree and branch at:
> git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.10.y
> and the diffstat can be found below.
>
> thanks,
>
> greg k-h
On ARCH_BRCMSTB using 32-bit and 64-bit ARM kernels:
Tested-by: Florian Fainelli <[email protected]>
--
Florian
Hi!
> This is the start of the stable review cycle for the 5.10.26 release.
> There are 156 patches in this series, all will be posted as a response
> to this one. If anyone has any issues with these being applied, please
> let me know.
CIP testing did not find any problems here:
https://gitlab.com/cip-project/cip-testing/linux-stable-rc-ci/-/tree/linux-5.10.y
Tested-by: Pavel Machek (CIP) <[email protected]>
Best regards,
Pavel
--
DENX Software Engineering GmbH, Managing Director: Wolfgang Denk
HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany
On Mon, Mar 22, 2021 at 04:19:10PM +0100, Greg Kroah-Hartman wrote:
> This is the start of the stable review cycle for the 5.10.26 release.
> There are 156 patches in this series, all will be posted as a response
> to this one. If anyone has any issues with these being applied, please
> let me know.
>
> Responses should be made by Wed, 24 Mar 2021 15:18:19 +0000.
> Anything received after that time might be too late.
>
Building arm:realview-pb-a8:realview_defconfig:realview_pb:mem512:arm-realview-pba8:initrd ... failed
------------
Error log:
kernel/rcu/tree.c:683:2: error: implicit declaration of function 'IRQ_WORK_INIT' [-Werror=implicit-function-declaration]
683 | IRQ_WORK_INIT(late_wakeup_func);
| ^~~~~~~~~~~~~
kernel/rcu/tree.c:683:2: error: invalid initializer
$ git reset --hard local-stable/linux-5.10.y.queue
HEAD is now at deabac90f919 Linux 5.10.26-rc2
$ git grep IRQ_WORK_INIT
kernel/rcu/tree.c: IRQ_WORK_INIT(late_wakeup_func);
$ git describe
v5.10.25-157-gdeabac90f919
Guenter
On Mon, Mar 22, 2021 at 04:19:10PM +0100, Greg Kroah-Hartman wrote:
> This is the start of the stable review cycle for the 5.10.26 release.
> There are 156 patches in this series, all will be posted as a response
> to this one. If anyone has any issues with these being applied, please
> let me know.
>
> Responses should be made by Wed, 24 Mar 2021 15:18:19 +0000.
> Anything received after that time might be too late.
>
Build results:
total: 156 pass: 156 fail: 0
Qemu test results:
total: 432 pass: 428 fail: 4
Failed tests:
arm:realview-pb-a8:realview_defconfig:realview_pb:mem512:arm-realview-pba8:initrd
arm:realview-pbx-a9:realview_defconfig:realview_pb:arm-realview-pbx-a9:initrd
arm:realview-eb:realview_defconfig:realview_eb:mem512:arm-realview-eb:initrd
arm:realview-eb-mpcore:realview_defconfig:realview_eb:mem512:arm-realview-eb-11mp-ctrevb:initrd
Build failure:
kernel/rcu/tree.c:683:2: error: implicit declaration of function 'IRQ_WORK_INIT'
The patch introducing IRQ_WORK_INIT is not in v5.10.y.
Guenter
On 2021/3/22 23:19, Greg Kroah-Hartman wrote:
> This is the start of the stable review cycle for the 5.10.26 release.
> There are 156 patches in this series, all will be posted as a response
> to this one. If anyone has any issues with these being applied, please
> let me know.
>
> Responses should be made by Wed, 24 Mar 2021 15:18:19 +0000.
> Anything received after that time might be too late.
>
> The whole patch series can be found in one patch at:
> https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.10.26-rc2.gz
> or in the git tree and branch at:
> git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.10.y
> and the diffstat can be found below.
>
> thanks,
>
> greg k-h
>
Kernel repo:
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git
Branch: linux-5.10.y
Arch: arm64
Version: 5.10.26-rc2
Commit: deabac90f919203307e6eee2606366bdb19bbe93
Compiler: gcc version 7.3.0 (GCC)
--------------------------------------------------------------------
Kernel build failed, error log:
kernel/rcu/tree.c:683:2: error: implicit declaration of function
‘IRQ_WORK_INIT’; did you mean ‘QSTR_INIT’?
[-Werror=implicit-function-declaration]
IRQ_WORK_INIT(late_wakeup_func);
^~~~~~~~~~~~~
QSTR_INIT
kernel/rcu/tree.c:683:2: error: invalid initializer
--------------------------------------------------------------------
Tested-by: Hulk Robot <[email protected]>
On 2021/3/22 23:19, Greg Kroah-Hartman wrote:
> This is the start of the stable review cycle for the 5.10.26 release.
> There are 156 patches in this series, all will be posted as a response
> to this one. If anyone has any issues with these being applied, please
> let me know.
>
> Responses should be made by Wed, 24 Mar 2021 15:18:19 +0000.
> Anything received after that time might be too late.
>
> The whole patch series can be found in one patch at:
> https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.10.26-rc2.gz
> or in the git tree and branch at:
> git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.10.y
> and the diffstat can be found below.
>
> thanks,
>
> greg k-h
>
Tested on x86 for 5.10.26-rc2,
Kernel repo:
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git
Branch: linux-5.10.y
Version: 5.10.26-rc2
Commit: deabac90f919203307e6eee2606366bdb19bbe93
Compiler: gcc version 7.3.0 (GCC)
x86:
--------------------------------------------------------------------
Testcase Result Summary:
total: 4721
passed: 4721
failed: 0
timeout: 0
--------------------------------------------------------------------
Tested-by: Hulk Robot <[email protected]>
On Mon, Mar 22, 2021 at 02:52:31PM -0700, Guenter Roeck wrote:
> On Mon, Mar 22, 2021 at 04:19:10PM +0100, Greg Kroah-Hartman wrote:
> > This is the start of the stable review cycle for the 5.10.26 release.
> > There are 156 patches in this series, all will be posted as a response
> > to this one. If anyone has any issues with these being applied, please
> > let me know.
> >
> > Responses should be made by Wed, 24 Mar 2021 15:18:19 +0000.
> > Anything received after that time might be too late.
> >
>
> Build results:
> total: 156 pass: 156 fail: 0
> Qemu test results:
> total: 432 pass: 428 fail: 4
> Failed tests:
> arm:realview-pb-a8:realview_defconfig:realview_pb:mem512:arm-realview-pba8:initrd
> arm:realview-pbx-a9:realview_defconfig:realview_pb:arm-realview-pbx-a9:initrd
> arm:realview-eb:realview_defconfig:realview_eb:mem512:arm-realview-eb:initrd
> arm:realview-eb-mpcore:realview_defconfig:realview_eb:mem512:arm-realview-eb-11mp-ctrevb:initrd
>
> Build failure:
>
> kernel/rcu/tree.c:683:2: error: implicit declaration of function 'IRQ_WORK_INIT'
>
> The patch introducing IRQ_WORK_INIT is not in v5.10.y.
That patch keeps coming back, Sasha and I have both added it multiple
times now... I'll go drop it, thanks.
greg k-h
On Mon, 22 Mar 2021 at 20:49, Greg Kroah-Hartman
<[email protected]> wrote:
>
> This is the start of the stable review cycle for the 5.10.26 release.
> There are 156 patches in this series, all will be posted as a response
> to this one. If anyone has any issues with these being applied, please
> let me know.
>
> Responses should be made by Wed, 24 Mar 2021 15:18:19 +0000.
> Anything received after that time might be too late.
>
> The whole patch series can be found in one patch at:
> https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.10.26-rc2.gz
> or in the git tree and branch at:
> git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.10.y
> and the diffstat can be found below.
>
> thanks,
>
> greg k-h
> Gautam Dawar <[email protected]>
> vhost_vdpa: fix the missing irq_bypass_unregister_producer() invocation
>
> Stefano Garzarella <[email protected]>
> vhost-vdpa: set v->config_ctx to NULL if eventfd_ctx_fdget() fails
>
> Stefano Garzarella <[email protected]>
> vhost-vdpa: fix use-after-free of v->config_ctx
While runnning Kselftest net mptcp_join.sh tests the following warnings and
kernel panic triggered on arm64, x86 and i386.
- arm64 juno-r2
- arm64 hikey
- x86
- i386
easy to reproduce:
Please find more details in this email.
Warning:
--------
[ 1040.114695] refcount_t: addition on 0; use-after-free.
[ 1040.119857] WARNING: CPU: 3 PID: 31925 at
/usr/src/kernel/lib/refcount.c:25 refcount_warn_saturate+0xd7/0x100
[ 1040.129769] Modules linked in: act_mirred cls_u32 sch_netem sch_etf
ip6table_nat xt_nat iptable_nat nf_nat ip6table_filter xt_conntrack
nf_conntrack nf_defrag_ipv4 libcrc32c ip6_tables nf_defrag_ipv6 sch_fq
iptable_filter xt_mark ip_tables cls_bpf sch_ingress algif_hash
x86_pkg_temp_thermal fuse [last unloaded: test_blackhole_dev]
[ 1040.159030] CPU: 3 PID: 31925 Comm: mptcp_connect Tainted: G
W K 5.10.26-rc2 #1
[ 1040.167459] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
2.2 05/23/2018
[ 1040.174851] RIP: 0010:refcount_warn_saturate+0xd7/0x100
And
Kernel Panic:
-------------
[ 1069.557485] BUG: kernel NULL pointer dereference, address: 0000000000000010
[ 1069.564446] #PF: supervisor read access in kernel mode
[ 1069.569583] #PF: error_code(0x0000) - not-present page
[ 1069.574714] PGD 0 P4D 0
[ 1069.577246] Oops: 0000 [#1] SMP PTI
[ 1069.580730] CPU: 1 PID: 17 Comm: ksoftirqd/1 Tainted: G W
K 5.10.26-rc2 #1
[ 1069.588719] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
2.2 05/23/2018
[ 1069.596106] RIP: 0010:selinux_socket_sock_rcv_skb+0x3f/0x290
...
[ 1069.961697] Kernel panic - not syncing: Fatal exception in interrupt
[ 1069.968083] Kernel Offset: 0x18600000 from 0xffffffff81000000
(relocation range: 0xffffffff80000000-0xffffffffbfffffff)
steps to reproduce:
--------------------------
- cd /opt/kselftests/mainline/net/mptcp
- ./mptcp_join.sh || true
Summary
------------------------------------------------------------------------
kernel: 5.10.26-rc2
git repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git
git branch: linux-5.10.y
git commit: deabac90f919203307e6eee2606366bdb19bbe93
git describe: v5.10.25-157-gdeabac90f919
Test details: https://qa-reports.linaro.org/lkft/linux-stable-rc-linux-5.10.y/build/v5.10.25-157-gdeabac90f919
Test config: http://snapshots.linaro.org/openembedded/lkft/lkft/sumo/juno/lkft/linux-stable-rc-5.10/113/config
# selftests: net/mptcp: mptcp_join.sh
[ 1032.910970] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
[ 1032.946716] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
[ 1033.003858] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
[ 1033.072944] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
# Created /tmp/tmp.YJ5EeX04Tc (size 1 KB) containing data sent by client
# Created /tmp/tmp.TzVm9gRu34 (size 1 KB) containing data sent by server
[ 1033.918127] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
# 01 no JOIN syn[ ok ] - synack[ ok ] - ack[ ok ]
[ 1035.374798] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
[ 1035.440014] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
[ 1035.493485] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
[ 1035.548411] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
[ 1036.350125] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
# 02 single subflow, limited by client syn[ ok ] - synack[ ok ] - ack[ ok ]
[ 1037.842366] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
[ 1037.910581] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
[ 1037.977716] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
[ 1038.047941] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
[ 1039.106156] IPv4: Attempt to release alive inet socket 00000000e87684f6
[ 1040.110048] ------------[ cut here ]------------
[ 1040.114695] refcount_t: addition on 0; use-after-free.
[ 1040.119857] WARNING: CPU: 3 PID: 31925 at
/usr/src/kernel/lib/refcount.c:25 refcount_warn_saturate+0xd7/0x100
[ 1040.129769] Modules linked in: act_mirred cls_u32 sch_netem sch_etf
ip6table_nat xt_nat iptable_nat nf_nat ip6table_filter xt_conntrack
nf_conntrack nf_defrag_ipv4 libcrc32c ip6_tables nf_defrag_ipv6 sch_fq
iptable_filter xt_mark ip_tables cls_bpf sch_ingress algif_hash
x86_pkg_temp_thermal fuse [last unloaded: test_blackhole_dev]
[ 1040.159030] CPU: 3 PID: 31925 Comm: mptcp_connect Tainted: G
W K 5.10.26-rc2 #1
[ 1040.167459] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
2.2 05/23/2018
[ 1040.174851] RIP: 0010:refcount_warn_saturate+0xd7/0x100
[ 1040.180076] Code: 01 e8 ed 52 ad ff 0f 0b 5d c3 80 3d 7e b1 a2 01
00 0f 85 67 ff ff ff 48 c7 c7 b0 b0 0a 9b c6 05 6a b1 a2 01 01 e8 c9
52 ad ff <0f> 0b 5d c3 48 c7 c7 68 b0 0a 9b c6 05 54 b1 a2 01 01 e8 b2
52 ad
[ 1040.198822] RSP: 0018:ffffa57ec5733d30 EFLAGS: 00010282
[ 1040.204049] RAX: 0000000000000000 RBX: ffff90cfc7d6b840 RCX: 0000000000000000
[ 1040.211181] RDX: 0000000000000001 RSI: ffff90d12fb97f30 RDI: ffff90d12fb97f30
[ 1040.218313] RBP: ffffa57ec5733d30 R08: 0000000000000000 R09: 0000000000000000
[ 1040.225445] R10: 0000000000000000 R11: ffffa57ec5733ae8 R12: 0000000000000000
[ 1040.232578] R13: ffff90cfc7d6b8c0 R14: 0000000000000007 R15: ffff90cffe32d8f0
[ 1040.239712] FS: 00007f3b5fbb14c0(0000) GS:ffff90d12fb80000(0000)
knlGS:0000000000000000
[ 1040.247798] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1040.253542] CR2: 00007ffec6cbecb0 CR3: 00000001041ec001 CR4: 00000000003706e0
[ 1040.260677] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1040.267809] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1040.274940] Call Trace:
[ 1040.277397] tcp_close+0x45b/0x4f0
[ 1040.280808] inet_release+0x47/0x80
[ 1040.284302] __sock_release+0x8b/0xc0
[ 1040.287977] sock_release+0x10/0x20
[ 1040.291478] __mptcp_close_ssk+0x59/0x60
[ 1040.295412] mptcp_close+0x173/0x2f0
[ 1040.298992] inet_release+0x47/0x80
[ 1040.302493] __sock_release+0x42/0xc0
[ 1040.306167] sock_close+0x18/0x20
[ 1040.309486] __fput+0xb6/0x270
[ 1040.312546] ____fput+0xe/0x10
[ 1040.315612] task_work_run+0x6f/0xc0
[ 1040.319192] exit_to_user_mode_prepare+0x1a0/0x1b0
[ 1040.323985] syscall_exit_to_user_mode+0x3e/0x240
[ 1040.328692] do_syscall_64+0x43/0x50
[ 1040.332278] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1040.337331] RIP: 0033:0x7f3b5f6c47c4
[ 1040.340910] Code: ff eb 98 b8 ff ff ff ff eb 91 66 2e 0f 1f 84 00
00 00 00 00 66 90 48 8d 05 41 e1 2c 00 8b 00 85 c0 75 13 b8 03 00 00
00 0f 05 <48> 3d 00 f0 ff ff 77 3c c3 0f 1f 00 53 89 fb 48 83 ec 10 e8
e4 a6
[ 1040.359656] RSP: 002b:00007ffec6cbcc98 EFLAGS: 00000246 ORIG_RAX:
0000000000000003
[ 1040.367222] RAX: 0000000000000000 RBX: 00000000000003b8 RCX: 00007f3b5f6c47c4
[ 1040.374354] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[ 1040.381484] RBP: 0000000000000005 R08: 00007f3b5f98d1e0 R09: 00007f3b5f98d240
[ 1040.388629] R10: 0000000000000403 R11: 0000000000000246 R12: 0000000000000000
[ 1040.395770] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1040.402904] irq event stamp: 0
[ 1040.405969] hardirqs last enabled at (0): [<0000000000000000>] 0x0
[ 1040.412236] hardirqs last disabled at (0): [<ffffffff997bbde3>]
copy_process+0x753/0x1d40
[ 1040.420408] softirqs last enabled at (0): [<ffffffff997bbde3>]
copy_process+0x753/0x1d40
[ 1040.428581] softirqs last disabled at (0): [<0000000000000000>] 0x0
[ 1040.434846] ---[ end trace 8a7765e77d8e79e5 ]---
[ 1040.439466] ------------[ cut here ]------------
[ 1040.444085] refcount_t: underflow; use-after-free.
[ 1040.448882] WARNING: CPU: 3 PID: 31925 at
/usr/src/kernel/lib/refcount.c:28 refcount_warn_saturate+0x93/0x100
[ 1040.458799] Modules linked in: act_mirred cls_u32 sch_netem sch_etf
ip6table_nat xt_nat iptable_nat nf_nat ip6table_filter xt_conntrack
nf_conntrack nf_defrag_ipv4 libcrc32c ip6_tables nf_defrag_ipv6 sch_fq
iptable_filter xt_mark ip_tables cls_bpf sch_ingress algif_hash
x86_pkg_temp_thermal fuse [last unloaded: test_blackhole_dev]
[ 1040.488060] CPU: 3 PID: 31925 Comm: mptcp_connect Tainted: G
W K 5.10.26-rc2 #1
[ 1040.496497] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
2.2 05/23/2018
[ 1040.503891] RIP: 0010:refcount_warn_saturate+0x93/0x100
[ 1040.509118] Code: cb b1 a2 01 01 e8 2d 53 ad ff 0f 0b 5d c3 80 3d
bd b1 a2 01 00 75 ab 48 c7 c7 e0 b0 0a 9b c6 05 ad b1 a2 01 01 e8 0d
53 ad ff <0f> 0b 5d c3 80 3d a0 b1 a2 01 00 75 8b 48 c7 c7 68 b0 0a 9b
c6 05
[ 1040.527863] RSP: 0018:ffffa57ec5733d18 EFLAGS: 00010286
[ 1040.533087] RAX: 0000000000000000 RBX: ffff90cfc7d6b840 RCX: 0000000000000000
[ 1040.540220] RDX: 0000000000000001 RSI: ffff90d12fb97f30 RDI: ffff90d12fb97f30
[ 1040.547353] RBP: ffffa57ec5733d18 R08: 0000000000000000 R09: 0000000000000000
[ 1040.554486] R10: 0000000000000000 R11: ffffa57ec5733ad0 R12: ffff90cfc7d6b8c8
[ 1040.561618] R13: ffff90cfc7d6b8c0 R14: 0000000000000007 R15: ffff90cffe32d8f0
[ 1040.568751] FS: 00007f3b5fbb14c0(0000) GS:ffff90d12fb80000(0000)
knlGS:0000000000000000
[ 1040.576836] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1040.582584] CR2: 00007ffec6cbecb0 CR3: 00000001041ec001 CR4: 00000000003706e0
[ 1040.589717] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1040.596851] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1040.603987] Call Trace:
[ 1040.606444] inet_csk_destroy_sock+0xd8/0x130
[ 1040.610811] tcp_close+0x426/0x4f0
[ 1040.614217] inet_release+0x47/0x80
[ 1040.617710] __sock_release+0x8b/0xc0
[ 1040.621375] sock_release+0x10/0x20
[ 1040.624867] __mptcp_close_ssk+0x59/0x60
[ 1040.628795] mptcp_close+0x173/0x2f0
[ 1040.632383] inet_release+0x47/0x80
[ 1040.635884] __sock_release+0x42/0xc0
[ 1040.639557] sock_close+0x18/0x20
[ 1040.642877] __fput+0xb6/0x270
[ 1040.645935] ____fput+0xe/0x10
[ 1040.648994] task_work_run+0x6f/0xc0
[ 1040.652574] exit_to_user_mode_prepare+0x1a0/0x1b0
[ 1040.657367] syscall_exit_to_user_mode+0x3e/0x240
[ 1040.662072] do_syscall_64+0x43/0x50
[ 1040.665653] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1040.670713] RIP: 0033:0x7f3b5f6c47c4
[ 1040.674293] Code: ff eb 98 b8 ff ff ff ff eb 91 66 2e 0f 1f 84 00
00 00 00 00 66 90 48 8d 05 41 e1 2c 00 8b 00 85 c0 75 13 b8 03 00 00
00 0f 05 <48> 3d 00 f0 ff ff 77 3c c3 0f 1f 00 53 89 fb 48 83 ec 10 e8
e4 a6
[ 1040.693038] RSP: 002b:00007ffec6cbcc98 EFLAGS: 00000246 ORIG_RAX:
0000000000000003
[ 1040.700604] RAX: 0000000000000000 RBX: 00000000000003b8 RCX: 00007f3b5f6c47c4
[ 1040.707735] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[ 1040.714869] RBP: 0000000000000005 R08: 00007f3b5f98d1e0 R09: 00007f3b5f98d240
[ 1040.722002] R10: 0000000000000403 R11: 0000000000000246 R12: 0000000000000000
[ 1040.729134] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1040.736267] irq event stamp: 0
[ 1040.739325] hardirqs last enabled at (0): [<0000000000000000>] 0x0
[ 1040.745592] hardirqs last disabled at (0): [<ffffffff997bbde3>]
copy_process+0x753/0x1d40
[ 1040.753764] softirqs last enabled at (0): [<ffffffff997bbde3>]
copy_process+0x753/0x1d40
[ 1040.761935] softirqs last disabled at (0): [<0000000000000000>] 0x0
[ 1040.768202] ---[ end trace 8a7765e77d8e79e6 ]---
# 03 single subflow, limited by server syn[ ok ] - synack[ ok ] - ack[ ok ]
[ 1040.917139] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
[ 1040.989376] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
[ 1041.057848] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
[ 1041.128414] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
[ 1041.918135] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
# 04 single subflow syn[ ok ] - synack[ ok ] - ack[ ok ]
[ 1043.451283] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
[ 1043.519437] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
[ 1043.591193] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
[ 1043.662269] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
[ 1045.735845] ------------[ cut here ]------------
[ 1045.740483] refcount_t: decrement hit 0; leaking memory.
[ 1045.745809] WARNING: CPU: 1 PID: 32066 at
/usr/src/kernel/lib/refcount.c:31 refcount_warn_saturate+0x53/0x100
[ 1045.755724] Modules linked in: act_mirred cls_u32 sch_netem sch_etf
ip6table_nat xt_nat iptable_nat nf_nat ip6table_filter xt_conntrack
nf_conntrack nf_defrag_ipv4 libcrc32c ip6_tables nf_defrag_ipv6 sch_fq
iptable_filter xt_mark ip_tables cls_bpf sch_ingress algif_hash
x86_pkg_temp_thermal fuse [last unloaded: test_blackhole_dev]
[ 1045.784988] CPU: 1 PID: 32066 Comm: mptcp_connect Tainted: G
W K 5.10.26-rc2 #1
[ 1045.793427] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
2.2 05/23/2018
[ 1045.800821] RIP: 0010:refcount_warn_saturate+0x53/0x100
[ 1045.806053] Code: 00 00 5d c3 83 fe 03 74 45 83 fe 04 75 20 80 3d
fc b1 a2 01 00 75 eb 48 c7 c7 08 b1 0a 9b c6 05 ec b1 a2 01 01 e8 4d
53 ad ff <0f> 0b 5d c3 80 3d db b1 a2 01 00 75 cb 48 c7 c7 38 b1 0a 9b
c6 05
[ 1045.824798] RSP: 0018:ffffa57ec59f3cf0 EFLAGS: 00010282
[ 1045.830025] RAX: 0000000000000000 RBX: 0000000000000010 RCX: 0000000000000000
[ 1045.837158] RDX: 0000000000000001 RSI: ffff90d12fa97f30 RDI: ffff90d12fa97f30
[ 1045.844290] RBP: ffffa57ec59f3cf0 R08: 0000000000000000 R09: 0000000000000000
[ 1045.851424] R10: 0000000000000000 R11: ffffa57ec59f3aa8 R12: ffff90d007a02d00
[ 1045.858555] R13: ffff90d007a02d80 R14: 0000000000000009 R15: ffff90d00be4c4f0
[ 1045.865689] FS: 00007f55368c24c0(0000) GS:ffff90d12fa80000(0000)
knlGS:0000000000000000
[ 1045.873783] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1045.879527] CR2: 00007ffe2b569540 CR3: 000000013dd62002 CR4: 00000000003706e0
[ 1045.886659] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1045.893791] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1045.900924] Call Trace:
[ 1045.903380] tcp_release_cb+0x10f/0x180
[ 1045.907220] release_sock+0x48/0xb0
[ 1045.910719] tcp_close+0x25e/0x4f0
[ 1045.914125] inet_release+0x47/0x80
[ 1045.917620] __sock_release+0x8b/0xc0
[ 1045.921291] sock_release+0x10/0x20
[ 1045.924784] __mptcp_close_ssk+0x59/0x60
[ 1045.928712] mptcp_close+0x173/0x2f0
[ 1045.932291] inet_release+0x47/0x80
[ 1045.935782] __sock_release+0x42/0xc0
[ 1045.939450] sock_close+0x18/0x20
[ 1045.942769] __fput+0xb6/0x270
[ 1045.945837] ____fput+0xe/0x10
[ 1045.948905] task_work_run+0x6f/0xc0
[ 1045.952492] exit_to_user_mode_prepare+0x1a0/0x1b0
[ 1045.957283] syscall_exit_to_user_mode+0x3e/0x240
[ 1045.961990] do_syscall_64+0x43/0x50
[ 1045.965569] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1045.970623] RIP: 0033:0x7f55363d57c4
[ 1045.974201] Code: ff eb 98 b8 ff ff ff ff eb 91 66 2e 0f 1f 84 00
00 00 00 00 66 90 48 8d 05 41 e1 2c 00 8b 00 85 c0 75 13 b8 03 00 00
00 0f 05 <48> 3d 00 f0 ff ff 77 3c c3 0f 1f 00 53 89 fb 48 83 ec 10 e8
e4 a6
[ 1045.992944] RSP: 002b:00007ffe2b567528 EFLAGS: 00000246 ORIG_RAX:
0000000000000003
[ 1046.000513] RAX: 0000000000000000 RBX: 000000000000011c RCX: 00007f55363d57c4
[ 1046.007652] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[ 1046.014784] RBP: 0000000000000005 R08: 00007f553669e1e4 R09: 00007f553669e240
[ 1046.021918] R10: 0000000000000403 R11: 0000000000000246 R12: 0000000000000000
[ 1046.029052] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1046.036185] irq event stamp: 0
[ 1046.039251] hardirqs last enabled at (0): [<0000000000000000>] 0x0
[ 1046.045517] hardirqs last disabled at (0): [<ffffffff997bbde3>]
copy_process+0x753/0x1d40
[ 1046.053690] softirqs last enabled at (0): [<ffffffff997bbde3>]
copy_process+0x753/0x1d40
[ 1046.061862] softirqs last disabled at (0): [<0000000000000000>] 0x0
[ 1046.068129] ---[ end trace 8a7765e77d8e79e7 ]---
# 05 multiple subflows syn[ ok ] - synack[ ok ] - ack[ ok ]
[ 1046.222612] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
[ 1046.292278] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
[ 1046.366140] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
[ 1046.436225] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
[ 1047.230122] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
[ 1047.510886] IPv4: Attempt to release alive inet socket 000000003578f3a2
# 06 multiple subflows, limited by server syn[ ok ] - synack[ ok ] - ack[ ok ]
[ 1048.769959] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
[ 1048.845133] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
[ 1048.916783] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
[ 1048.985439] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
[ 1049.726207] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
# 07 unused signal address syn[ ok ] - synack[ ok ] - ack[ ok ]
# add[ ok ] - echo [ ok ]
[ 1051.315169] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
[ 1051.384917] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
[ 1051.452335] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
[ 1051.519687] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
# 08 signal address syn[ ok ] - synack[ ok ] - ack[ ok ]
# add[ ok ] - echo [ ok ]
[ 1053.866917] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
[ 1053.934026] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
[ 1054.003350] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
[ 1054.071502] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
# 09 subflow and signal syn[ ok ] - synack[ ok ] - ack[ ok ]
# add[ ok ] - echo [ ok ]
[ 1056.407692] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
[ 1056.461570] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
[ 1056.516522] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
[ 1056.573242] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
[ 1057.406178] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
# 10 multiple subflows and signal syn[ ok ] - synack[ ok ] - ack[ ok ]
# add[ ok ] - echo [ ok ]
[ 1058.944588] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
[ 1058.998517] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
[ 1059.051399] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
[ 1059.114126] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
[ 1059.902128] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
# 11 remove single subflow syn[ ok ] - synack[ ok ] - ack[ ok ]
# rm [ ok ] - sf [ ok ]
[ 1065.672583] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
[ 1065.712249] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
[ 1065.751709] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
[ 1065.792078] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
[ 1066.686117] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
[ 1067.902073] IPv4: Attempt to release TCP socket in state 1 0000000079de8dcd
[ 1068.875113] ------------[ cut here ]------------
[ 1068.879758] refcount_t: saturated; leaking memory.
[ 1068.884577] WARNING: CPU: 1 PID: 32609 at
/usr/src/kernel/lib/refcount.c:22 refcount_warn_saturate+0xee/0x100
[ 1068.894497] Modules linked in: act_mirred cls_u32 sch_netem sch_etf
ip6table_nat xt_nat iptable_nat nf_nat ip6table_filter xt_conntrack
nf_conntrack nf_defrag_ipv4 libcrc32c ip6_tables nf_defrag_ipv6 sch_fq
iptable_filter xt_mark ip_tables cls_bpf sch_ingress algif_hash
x86_pkg_temp_thermal fuse [last unloaded: test_blackhole_dev]
[ 1068.923755] CPU: 1 PID: 32609 Comm: pm_nl_ctl Tainted: G W
K 5.10.26-rc2 #1
[ 1068.931842] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
2.2 05/23/2018
[ 1068.939240] RIP: 0010:refcount_warn_saturate+0xee/0x100
[ 1068.944468] Code: 48 c7 c7 b0 b0 0a 9b c6 05 6a b1 a2 01 01 e8 c9
52 ad ff 0f 0b 5d c3 48 c7 c7 68 b0 0a 9b c6 05 54 b1 a2 01 01 e8 b2
52 ad ff <0f> 0b 5d c3 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 8b 07
3d 00
[ 1068.963224] RSP: 0018:ffffa57ec64af7f0 EFLAGS: 00010282
[ 1068.968456] RAX: 0000000000000000 RBX: 000000000000002c RCX: 0000000000000000
[ 1068.975587] RDX: 0000000000000001 RSI: ffff90d12fa97f30 RDI: ffff90d12fa97f30
[ 1068.982719] RBP: ffffa57ec64af7f0 R08: 0000000000000000 R09: 0000000000000000
[ 1068.989854] R10: 000000000000058c R11: ffffa57ec64af5a8 R12: ffffa57ec64af830
[ 1068.996993] R13: ffff90cfc08eaee0 R14: 000000000000058c R15: ffff90d007a04380
[ 1069.004131] FS: 00007f018dc0d4c0(0000) GS:ffff90d12fa80000(0000)
knlGS:0000000000000000
[ 1069.012220] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1069.017966] CR2: 00007f018d79c285 CR3: 000000013d894001 CR4: 00000000003706e0
[ 1069.025098] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1069.032231] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1069.039362] Call Trace:
[ 1069.041820] __tcp_transmit_skb+0x851/0xcf0
[ 1069.046017] tcp_write_xmit+0x251/0x11a0
[ 1069.049946] __tcp_push_pending_frames+0x37/0x100
[ 1069.054651] tcp_send_fin+0x4f/0x240
[ 1069.058230] tcp_close+0x36f/0x4f0
[ 1069.061640] inet_release+0x47/0x80
[ 1069.065141] __sock_release+0x8b/0xc0
[ 1069.068814] sock_release+0x10/0x20
[ 1069.072306] __mptcp_close_ssk+0x59/0x60
[ 1069.076232] mptcp_pm_nl_rm_subflow_received+0xcb/0x110
[ 1069.081461] mptcp_pm_remove_subflow+0x34/0x70
[ 1069.085913] mptcp_nl_cmd_del_addr+0x3eb/0x440
[ 1069.090361] genl_family_rcv_msg_doit.isra.16+0x117/0x150
[ 1069.095767] ? genl_family_rcv_msg_doit.isra.16+0x117/0x150
[ 1069.101341] genl_rcv_msg+0xe8/0x1e0
[ 1069.104926] ? remove_anno_list_by_saddr+0x50/0x50
[ 1069.109722] ? genl_family_rcv_msg_doit.isra.16+0x150/0x150
[ 1069.115301] netlink_rcv_skb+0x56/0x100
[ 1069.119141] genl_rcv+0x28/0x40
[ 1069.122285] netlink_unicast+0x1b8/0x270
[ 1069.126213] netlink_sendmsg+0x339/0x460
[ 1069.130148] sock_sendmsg+0x63/0x70
[ 1069.133649] __sys_sendto+0x142/0x180
[ 1069.137323] ? __audit_syscall_entry+0xdd/0x130
[ 1069.141855] ? syscall_trace_enter.isra.16+0x179/0x230
[ 1069.147000] __x64_sys_sendto+0x28/0x30
[ 1069.150852] do_syscall_64+0x37/0x50
[ 1069.154438] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1069.159490] RIP: 0033:0x7f018d72f577
[ 1069.163070] Code: 64 89 02 48 c7 c0 ff ff ff ff eb b6 0f 1f 80 00
00 00 00 48 8d 05 91 f3 2b 00 41 89 ca 8b 00 85 c0 75 10 b8 2c 00 00
00 0f 05 <48> 3d 00 f0 ff ff 77 71 c3 41 57 4d 89 c7 41 56 41 89 ce 41
55 49
[ 1069.181815] RSP: 002b:00007ffd65cf3ae8 EFLAGS: 00000246 ORIG_RAX:
000000000000002c
[ 1069.189382] RAX: ffffffffffffffda RBX: 00007ffd65cf3b30 RCX: 00007f018d72f577
[ 1069.196512] RDX: 0000000000000020 RSI: 00007ffd65cf3b30 RDI: 0000000000000005
[ 1069.203647] RBP: 0000000000000020 R08: 00007ffd65cf3af4 R09: 000000000000000c
[ 1069.210777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1069.217910] R13: 0000000000000005 R14: 0000000000000000 R15: 0000000000000000
[ 1069.225047] irq event stamp: 0
[ 1069.228112] hardirqs last enabled at (0): [<0000000000000000>] 0x0
[ 1069.234378] hardirqs last disabled at (0): [<ffffffff997bbde3>]
copy_process+0x753/0x1d40
[ 1069.242548] softirqs last enabled at (0): [<ffffffff997bbde3>]
copy_process+0x753/0x1d40
[ 1069.250722] softirqs last disabled at (0): [<0000000000000000>] 0x0
[ 1069.256987] ---[ end trace 8a7765e77d8e79e8 ]---
[ 1069.261660] ------------[ cut here ]------------
[ 1069.266292] refcount_t: saturated; leaking memory.
[ 1069.271104] WARNING: CPU: 1 PID: 17 at
/usr/src/kernel/lib/refcount.c:19 refcount_warn_saturate+0xb3/0x100
[ 1069.280759] Modules linked in: act_mirred cls_u32 sch_netem sch_etf
ip6table_nat xt_nat iptable_nat nf_nat ip6table_filter xt_conntrack
nf_conntrack nf_defrag_ipv4 libcrc32c ip6_tables nf_defrag_ipv6 sch_fq
iptable_filter xt_mark ip_tables cls_bpf sch_ingress algif_hash
x86_pkg_temp_thermal fuse [last unloaded: test_blackhole_dev]
[ 1069.310010] CPU: 1 PID: 17 Comm: ksoftirqd/1 Tainted: G W
K 5.10.26-rc2 #1
[ 1069.318007] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
2.2 05/23/2018
[ 1069.325401] RIP: 0010:refcount_warn_saturate+0xb3/0x100
[ 1069.330627] Code: ad b1 a2 01 01 e8 0d 53 ad ff 0f 0b 5d c3 80 3d
a0 b1 a2 01 00 75 8b 48 c7 c7 68 b0 0a 9b c6 05 90 b1 a2 01 01 e8 ed
52 ad ff <0f> 0b 5d c3 80 3d 7e b1 a2 01 00 0f 85 67 ff ff ff 48 c7 c7
b0 b0
[ 1069.349374] RSP: 0018:ffffa57ec00e7bd8 EFLAGS: 00010282
[ 1069.354599] RAX: 0000000000000000 RBX: ffff90d007a043e8 RCX: 0000000000000000
[ 1069.361731] RDX: 0000000000000001 RSI: ffff90d12fa97f30 RDI: ffff90d12fa97f30
[ 1069.368862] RBP: ffffa57ec00e7bd8 R08: 0000000000000000 R09: 0000000000000000
[ 1069.375997] R10: 0000000000000000 R11: ffffa57ec00e7990 R12: 0000000096271b27
[ 1069.383128] R13: 0203000a0101000a R14: ffff90cfffa66500 R15: 00000000bbb40c37
[ 1069.390260] FS: 0000000000000000(0000) GS:ffff90d12fa80000(0000)
knlGS:0000000000000000
[ 1069.398346] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1069.404092] CR2: 00007f018d79c285 CR3: 00000001ed026002 CR4: 00000000003706e0
[ 1069.411223] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1069.418357] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1069.425488] Call Trace:
[ 1069.427943] __inet_lookup_established+0x141/0x170
[ 1069.432735] tcp_v4_early_demux+0xab/0x180
[ 1069.436836] ? rcu_read_lock_held+0x25/0x60
[ 1069.441022] ip_rcv_finish_core.isra.23+0x483/0x570
[ 1069.445900] ip_rcv_finish+0x6d/0xc0
[ 1069.449478] ip_rcv+0x142/0x200
[ 1069.452625] ? lock_acquire+0x1d4/0x3a0
[ 1069.456466] ? kfree+0x3e4/0x720
[ 1069.459697] ? process_backlog+0x73/0x250
[ 1069.463709] __netif_receive_skb_one_core+0x86/0xa0
[ 1069.468591] __netif_receive_skb+0x18/0x60
[ 1069.472697] process_backlog+0xe2/0x250
[ 1069.476537] net_rx_action+0x144/0x460
[ 1069.480288] __do_softirq+0xc3/0x42a
[ 1069.483869] ? smpboot_thread_fn+0x2b/0x1f0
[ 1069.488053] ? smpboot_thread_fn+0x70/0x1f0
[ 1069.492242] run_ksoftirqd+0x2b/0x60
[ 1069.495818] smpboot_thread_fn+0x149/0x1f0
[ 1069.499920] ? sort_range+0x30/0x30
[ 1069.503411] kthread+0x142/0x160
[ 1069.506642] ? kthread_insert_work_sanity_check+0x60/0x60
[ 1069.512045] ret_from_fork+0x22/0x30
[ 1069.515632] irq event stamp: 195412
[ 1069.519131] hardirqs last enabled at (195411):
[<ffffffff997c6db0>] run_ksoftirqd+0x30/0x60
[ 1069.527564] hardirqs last disabled at (195412):
[<ffffffff9a739c94>] __schedule+0x624/0x950
[ 1069.535910] softirqs last enabled at (195410):
[<ffffffff9aa00308>] __do_softirq+0x308/0x42a
[ 1069.544428] softirqs last disabled at (195383):
[<ffffffff997c6dab>] run_ksoftirqd+0x2b/0x60
[ 1069.552860] ---[ end trace 8a7765e77d8e79e9 ]---
[ 1069.557485] BUG: kernel NULL pointer dereference, address: 0000000000000010
[ 1069.564446] #PF: supervisor read access in kernel mode
[ 1069.569583] #PF: error_code(0x0000) - not-present page
[ 1069.574714] PGD 0 P4D 0
[ 1069.577246] Oops: 0000 [#1] SMP PTI
[ 1069.580730] CPU: 1 PID: 17 Comm: ksoftirqd/1 Tainted: G W
K 5.10.26-rc2 #1
[ 1069.588719] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
2.2 05/23/2018
[ 1069.596106] RIP: 0010:selinux_socket_sock_rcv_skb+0x3f/0x290
[ 1069.601762] Code: 54 4c 8d 75 98 53 49 89 fd 48 83 ec 78 0f b7 5f
10 65 48 8b 04 25 28 00 00 00 48 89 45 d0 31 c0 48 8b 87 48 04 00 00
4c 89 f7 <44> 8b 78 10 31 c0 f3 48 ab 89 d8 83 e0 f7 66 83 f8 02 0f 85
4a 01
[ 1069.620498] RSP: 0018:ffffa57ec00e7a20 EFLAGS: 00010246
[ 1069.625715] RAX: 0000000000000000 RBX: 0000000000000002 RCX: 0000000000000007
[ 1069.632841] RDX: ffffffff9995c813 RSI: ffff90cffe966b00 RDI: ffffa57ec00e7a58
[ 1069.639965] RBP: ffffa57ec00e7ac0 R08: 0000000000000000 R09: 0000000000000000
[ 1069.647090] R10: 0000000000000000 R11: ffff90cfffa66500 R12: ffff90cffe966b00
[ 1069.654221] R13: ffff90d007a04380 R14: ffffa57ec00e7a58 R15: ffff90d007a04380
[ 1069.661344] FS: 0000000000000000(0000) GS:ffff90d12fa80000(0000)
knlGS:0000000000000000
[ 1069.669421] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1069.675159] CR2: 0000000000000010 CR3: 00000001ed026002 CR4: 00000000003706e0
[ 1069.682284] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1069.689407] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1069.696530] Call Trace:
[ 1069.698976] ? __cgroup_bpf_run_filter_skb+0x20c/0x670
[ 1069.704115] ? lock_release+0xcf/0x270
[ 1069.707868] ? rcu_read_lock_held_common+0x12/0x50
[ 1069.712659] ? rcu_read_lock_held+0x25/0x60
[ 1069.716837] security_sock_rcv_skb+0x2f/0x50
[ 1069.721112] sk_filter_trim_cap+0x48/0x350
[ 1069.725208] ? tcp_v4_inbound_md5_hash+0x60/0x1e0
[ 1069.729906] tcp_v4_rcv+0xb59/0xd70
[ 1069.733390] ? lock_acquire+0x1d4/0x3a0
[ 1069.737229] ip_protocol_deliver_rcu+0x3c/0x270
[ 1069.741754] ip_local_deliver_finish+0x92/0x130
[ 1069.746286] ip_local_deliver+0x1a1/0x200
[ 1069.750289] ? rcu_read_lock_held+0x25/0x60
[ 1069.754468] ip_rcv_finish+0x8a/0xc0
[ 1069.758046] ip_rcv+0x142/0x200
[ 1069.761183] ? lock_acquire+0x1d4/0x3a0
[ 1069.765014] ? kfree+0x3e4/0x720
[ 1069.768248] ? process_backlog+0x73/0x250
[ 1069.772261] __netif_receive_skb_one_core+0x86/0xa0
[ 1069.777138] __netif_receive_skb+0x18/0x60
[ 1069.781228] process_backlog+0xe2/0x250
[ 1069.785061] net_rx_action+0x144/0x460
[ 1069.788812] __do_softirq+0xc3/0x42a
[ 1069.792382] ? smpboot_thread_fn+0x2b/0x1f0
[ 1069.796561] ? smpboot_thread_fn+0x70/0x1f0
[ 1069.800746] run_ksoftirqd+0x2b/0x60
[ 1069.804326] smpboot_thread_fn+0x149/0x1f0
[ 1069.808423] ? sort_range+0x30/0x30
[ 1069.811908] kthread+0x142/0x160
[ 1069.815132] ? kthread_insert_work_sanity_check+0x60/0x60
[ 1069.820524] ret_from_fork+0x22/0x30
[ 1069.824104] Modules linked in: act_mirred cls_u32 sch_netem sch_etf
ip6table_nat xt_nat iptable_nat nf_nat ip6table_filter xt_conntrack
nf_conntrack nf_defrag_ipv4 libcrc32c ip6_tables nf_defrag_ipv6 sch_fq
iptable_filter xt_mark ip_tables cls_bpf sch_ingress algif_hash
x86_pkg_temp_thermal fuse [last unloaded: test_blackhole_dev]
[ 1069.853359] CR2: 0000000000000010
[ 1069.856671] ---[ end trace 8a7765e77d8e79ea ]---
[ 1069.861290] RIP: 0010:selinux_socket_sock_rcv_skb+0x3f/0x290
[ 1069.866940] Code: 54 4c 8d 75 98 53 49 89 fd 48 83 ec 78 0f b7 5f
10 65 48 8b 04 25 28 00 00 00 48 89 45 d0 31 c0 48 8b 87 48 04 00 00
4c 89 f7 <44> 8b 78 10 31 c0 f3 48 ab 89 d8 83 e0 f7 66 83 f8 02 0f 85
4a 01
[ 1069.885676] RSP: 0018:ffffa57ec00e7a20 EFLAGS: 00010246
[ 1069.890893] RAX: 0000000000000000 RBX: 0000000000000002 RCX: 0000000000000007
[ 1069.898018] RDX: ffffffff9995c813 RSI: ffff90cffe966b00 RDI: ffffa57ec00e7a58
[ 1069.905141] RBP: ffffa57ec00e7ac0 R08: 0000000000000000 R09: 0000000000000000
[ 1069.912264] R10: 0000000000000000 R11: ffff90cfffa66500 R12: ffff90cffe966b00
[ 1069.919389] R13: ffff90d007a04380 R14: ffffa57ec00e7a58 R15: ffff90d007a04380
[ 1069.926514] FS: 0000000000000000(0000) GS:ffff90d12fa80000(0000)
knlGS:0000000000000000
[ 1069.934589] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1069.940328] CR2: 0000000000000010 CR3: 00000001ed026002 CR4: 00000000003706e0
[ 1069.947449] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1069.954575] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1069.961697] Kernel panic - not syncing: Fatal exception in interrupt
[ 1069.968083] Kernel Offset: 0x18600000 from 0xffffffff81000000
(relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[ 1069.978859] ---[ end Kernel panic - not syncing: Fatal exception in
interrupt ]---
https://qa-reports.linaro.org/lkft/linux-stable-rc-linux-5.10.y/build/v5.10.25-157-gdeabac90f919/testrun/4220685/suite/linux-log-parser/test/check-kernel-bug-2434782/log
https://qa-reports.linaro.org/lkft/linux-stable-rc-linux-5.10.y/build/v5.10.25-157-gdeabac90f919/testrun/4221759/suite/linux-log-parser/test/check-kernel-warning-2434838/log
https://qa-reports.linaro.org/lkft/linux-stable-rc-linux-5.10.y/build/v5.10.25-157-gdeabac90f919/testrun/4221747/suite/linux-log-parser/test/check-kernel-bug-2434809/log
LAVA jobs link,
https://lkft.validation.linaro.org/scheduler/job/2436164
Reported-by: Naresh Kamboju <[email protected]>
--
Linaro LKFT
https://lkft.linaro.org
On Mon, 22 Mar 2021 16:19:10 +0100
Greg Kroah-Hartman <[email protected]> wrote:
> This is the start of the stable review cycle for the 5.10.26 release.
> There are 156 patches in this series, all will be posted as a response
> to this one. If anyone has any issues with these being applied,
> please let me know.
>
> Responses should be made by Wed, 24 Mar 2021 15:18:19 +0000.
> Anything received after that time might be too late.
>
> The whole patch series can be found in one patch at:
> https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.10.26-rc2.gz
> or in the git tree and branch at:
> git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git
> linux-5.10.y and the diffstat can be found below.
>
> thanks,
>
> greg k-h
Tested on i686 (ThinkPad R50p) with gcc 10.2 (slackware-current)
I spotted no problems with this rc.
Tested-by: Andrei Rabusov <[email protected]>
On Tue, 23 Mar 2021 at 14:19, Naresh Kamboju <[email protected]> wrote:
>
> On Mon, 22 Mar 2021 at 20:49, Greg Kroah-Hartman
> <[email protected]> wrote:
> >
> > This is the start of the stable review cycle for the 5.10.26 release.
> > There are 156 patches in this series, all will be posted as a response
> > to this one. If anyone has any issues with these being applied, please
> > let me know.
> >
> > Responses should be made by Wed, 24 Mar 2021 15:18:19 +0000.
> > Anything received after that time might be too late.
> >
> > The whole patch series can be found in one patch at:
> > https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.10.26-rc2.gz
> > or in the git tree and branch at:
> > git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.10.y
> > and the diffstat can be found below.
> >
> > thanks,
> >
> > greg k-h
> While runnning Kselftest net mptcp_join.sh tests the following warnings and
> kernel panic triggered on arm64, x86 and i386.
> - arm64 juno-r2
> - arm64 hikey
> - x86
> - i386
>
> easy to reproduce:
> Please find more details in this email.
>
> Warning:
> --------
> [ 1040.114695] refcount_t: addition on 0; use-after-free.
> [ 1040.119857] WARNING: CPU: 3 PID: 31925 at
> /usr/src/kernel/lib/refcount.c:25 refcount_warn_saturate+0xd7/0x100
> [ 1040.129769] Modules linked in: act_mirred cls_u32 sch_netem sch_etf
> ip6table_nat xt_nat iptable_nat nf_nat ip6table_filter xt_conntrack
> nf_conntrack nf_defrag_ipv4 libcrc32c ip6_tables nf_defrag_ipv6 sch_fq
> iptable_filter xt_mark ip_tables cls_bpf sch_ingress algif_hash
> x86_pkg_temp_thermal fuse [last unloaded: test_blackhole_dev]
> [ 1040.159030] CPU: 3 PID: 31925 Comm: mptcp_connect Tainted: G
> W K 5.10.26-rc2 #1
> [ 1040.167459] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
> 2.2 05/23/2018
> [ 1040.174851] RIP: 0010:refcount_warn_saturate+0xd7/0x100
>
> And
>
> Kernel Panic:
> -------------
> [ 1069.557485] BUG: kernel NULL pointer dereference, address: 0000000000000010
> [ 1069.564446] #PF: supervisor read access in kernel mode
> [ 1069.569583] #PF: error_code(0x0000) - not-present page
> [ 1069.574714] PGD 0 P4D 0
> [ 1069.577246] Oops: 0000 [#1] SMP PTI
> [ 1069.580730] CPU: 1 PID: 17 Comm: ksoftirqd/1 Tainted: G W
> K 5.10.26-rc2 #1
> [ 1069.588719] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
> 2.2 05/23/2018
> [ 1069.596106] RIP: 0010:selinux_socket_sock_rcv_skb+0x3f/0x290
> ...
> [ 1069.961697] Kernel panic - not syncing: Fatal exception in interrupt
> [ 1069.968083] Kernel Offset: 0x18600000 from 0xffffffff81000000
> (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
>
> steps to reproduce:
> --------------------------
> - cd /opt/kselftests/mainline/net/mptcp
> - ./mptcp_join.sh || true
>
The reported warning and kernel crash is bisected and found this commit is
cause.
> Florian Westphal <[email protected]>
> mptcp: put subflow sock on connect error
We have reverted this patch and re-tested and confirmed that after reverting
the reported issue got disappeared.
>
> Summary
> ------------------------------------------------------------------------
>
> kernel: 5.10.26-rc2
> git repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git
> git branch: linux-5.10.y
> git commit: deabac90f919203307e6eee2606366bdb19bbe93
> git describe: v5.10.25-157-gdeabac90f919
> Test details: https://qa-reports.linaro.org/lkft/linux-stable-rc-linux-5.10.y/build/v5.10.25-157-gdeabac90f919
> Test config: http://snapshots.linaro.org/openembedded/lkft/lkft/sumo/juno/lkft/linux-stable-rc-5.10/113/config
>
>
> # selftests: net/mptcp: mptcp_join.sh
> [ 1032.910970] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
> [ 1032.946716] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
> [ 1033.003858] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
> [ 1033.072944] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
> # Created /tmp/tmp.YJ5EeX04Tc (size 1 KB) containing data sent by client
> # Created /tmp/tmp.TzVm9gRu34 (size 1 KB) containing data sent by server
> [ 1033.918127] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
> # 01 no JOIN syn[ ok ] - synack[ ok ] - ack[ ok ]
> [ 1035.374798] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
> [ 1035.440014] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
> [ 1035.493485] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
> [ 1035.548411] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
> [ 1036.350125] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
> # 02 single subflow, limited by client syn[ ok ] - synack[ ok ] - ack[ ok ]
> [ 1037.842366] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
> [ 1037.910581] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
> [ 1037.977716] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
> [ 1038.047941] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
> [ 1039.106156] IPv4: Attempt to release alive inet socket 00000000e87684f6
> [ 1040.110048] ------------[ cut here ]------------
> [ 1040.114695] refcount_t: addition on 0; use-after-free.
> [ 1040.119857] WARNING: CPU: 3 PID: 31925 at
> /usr/src/kernel/lib/refcount.c:25 refcount_warn_saturate+0xd7/0x100
> [ 1040.129769] Modules linked in: act_mirred cls_u32 sch_netem sch_etf
> ip6table_nat xt_nat iptable_nat nf_nat ip6table_filter xt_conntrack
> nf_conntrack nf_defrag_ipv4 libcrc32c ip6_tables nf_defrag_ipv6 sch_fq
> iptable_filter xt_mark ip_tables cls_bpf sch_ingress algif_hash
> x86_pkg_temp_thermal fuse [last unloaded: test_blackhole_dev]
> [ 1040.159030] CPU: 3 PID: 31925 Comm: mptcp_connect Tainted: G
> W K 5.10.26-rc2 #1
> [ 1040.167459] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
> 2.2 05/23/2018
> [ 1040.174851] RIP: 0010:refcount_warn_saturate+0xd7/0x100
> [ 1040.180076] Code: 01 e8 ed 52 ad ff 0f 0b 5d c3 80 3d 7e b1 a2 01
> 00 0f 85 67 ff ff ff 48 c7 c7 b0 b0 0a 9b c6 05 6a b1 a2 01 01 e8 c9
> 52 ad ff <0f> 0b 5d c3 48 c7 c7 68 b0 0a 9b c6 05 54 b1 a2 01 01 e8 b2
> 52 ad
> [ 1040.198822] RSP: 0018:ffffa57ec5733d30 EFLAGS: 00010282
> [ 1040.204049] RAX: 0000000000000000 RBX: ffff90cfc7d6b840 RCX: 0000000000000000
> [ 1040.211181] RDX: 0000000000000001 RSI: ffff90d12fb97f30 RDI: ffff90d12fb97f30
> [ 1040.218313] RBP: ffffa57ec5733d30 R08: 0000000000000000 R09: 0000000000000000
> [ 1040.225445] R10: 0000000000000000 R11: ffffa57ec5733ae8 R12: 0000000000000000
> [ 1040.232578] R13: ffff90cfc7d6b8c0 R14: 0000000000000007 R15: ffff90cffe32d8f0
> [ 1040.239712] FS: 00007f3b5fbb14c0(0000) GS:ffff90d12fb80000(0000)
> knlGS:0000000000000000
> [ 1040.247798] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
> [ 1040.253542] CR2: 00007ffec6cbecb0 CR3: 00000001041ec001 CR4: 00000000003706e0
> [ 1040.260677] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
> [ 1040.267809] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
> [ 1040.274940] Call Trace:
> [ 1040.277397] tcp_close+0x45b/0x4f0
> [ 1040.280808] inet_release+0x47/0x80
> [ 1040.284302] __sock_release+0x8b/0xc0
> [ 1040.287977] sock_release+0x10/0x20
> [ 1040.291478] __mptcp_close_ssk+0x59/0x60
> [ 1040.295412] mptcp_close+0x173/0x2f0
> [ 1040.298992] inet_release+0x47/0x80
> [ 1040.302493] __sock_release+0x42/0xc0
> [ 1040.306167] sock_close+0x18/0x20
> [ 1040.309486] __fput+0xb6/0x270
> [ 1040.312546] ____fput+0xe/0x10
> [ 1040.315612] task_work_run+0x6f/0xc0
> [ 1040.319192] exit_to_user_mode_prepare+0x1a0/0x1b0
> [ 1040.323985] syscall_exit_to_user_mode+0x3e/0x240
> [ 1040.328692] do_syscall_64+0x43/0x50
> [ 1040.332278] entry_SYSCALL_64_after_hwframe+0x44/0xa9
> [ 1040.337331] RIP: 0033:0x7f3b5f6c47c4
> [ 1040.340910] Code: ff eb 98 b8 ff ff ff ff eb 91 66 2e 0f 1f 84 00
> 00 00 00 00 66 90 48 8d 05 41 e1 2c 00 8b 00 85 c0 75 13 b8 03 00 00
> 00 0f 05 <48> 3d 00 f0 ff ff 77 3c c3 0f 1f 00 53 89 fb 48 83 ec 10 e8
> e4 a6
> [ 1040.359656] RSP: 002b:00007ffec6cbcc98 EFLAGS: 00000246 ORIG_RAX:
> 0000000000000003
> [ 1040.367222] RAX: 0000000000000000 RBX: 00000000000003b8 RCX: 00007f3b5f6c47c4
> [ 1040.374354] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
> [ 1040.381484] RBP: 0000000000000005 R08: 00007f3b5f98d1e0 R09: 00007f3b5f98d240
> [ 1040.388629] R10: 0000000000000403 R11: 0000000000000246 R12: 0000000000000000
> [ 1040.395770] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
> [ 1040.402904] irq event stamp: 0
> [ 1040.405969] hardirqs last enabled at (0): [<0000000000000000>] 0x0
> [ 1040.412236] hardirqs last disabled at (0): [<ffffffff997bbde3>]
> copy_process+0x753/0x1d40
> [ 1040.420408] softirqs last enabled at (0): [<ffffffff997bbde3>]
> copy_process+0x753/0x1d40
> [ 1040.428581] softirqs last disabled at (0): [<0000000000000000>] 0x0
> [ 1040.434846] ---[ end trace 8a7765e77d8e79e5 ]---
> [ 1040.439466] ------------[ cut here ]------------
> [ 1040.444085] refcount_t: underflow; use-after-free.
> [ 1040.448882] WARNING: CPU: 3 PID: 31925 at
> /usr/src/kernel/lib/refcount.c:28 refcount_warn_saturate+0x93/0x100
> [ 1040.458799] Modules linked in: act_mirred cls_u32 sch_netem sch_etf
> ip6table_nat xt_nat iptable_nat nf_nat ip6table_filter xt_conntrack
> nf_conntrack nf_defrag_ipv4 libcrc32c ip6_tables nf_defrag_ipv6 sch_fq
> iptable_filter xt_mark ip_tables cls_bpf sch_ingress algif_hash
> x86_pkg_temp_thermal fuse [last unloaded: test_blackhole_dev]
> [ 1040.488060] CPU: 3 PID: 31925 Comm: mptcp_connect Tainted: G
> W K 5.10.26-rc2 #1
> [ 1040.496497] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
> 2.2 05/23/2018
> [ 1040.503891] RIP: 0010:refcount_warn_saturate+0x93/0x100
> [ 1040.509118] Code: cb b1 a2 01 01 e8 2d 53 ad ff 0f 0b 5d c3 80 3d
> bd b1 a2 01 00 75 ab 48 c7 c7 e0 b0 0a 9b c6 05 ad b1 a2 01 01 e8 0d
> 53 ad ff <0f> 0b 5d c3 80 3d a0 b1 a2 01 00 75 8b 48 c7 c7 68 b0 0a 9b
> c6 05
> [ 1040.527863] RSP: 0018:ffffa57ec5733d18 EFLAGS: 00010286
> [ 1040.533087] RAX: 0000000000000000 RBX: ffff90cfc7d6b840 RCX: 0000000000000000
> [ 1040.540220] RDX: 0000000000000001 RSI: ffff90d12fb97f30 RDI: ffff90d12fb97f30
> [ 1040.547353] RBP: ffffa57ec5733d18 R08: 0000000000000000 R09: 0000000000000000
> [ 1040.554486] R10: 0000000000000000 R11: ffffa57ec5733ad0 R12: ffff90cfc7d6b8c8
> [ 1040.561618] R13: ffff90cfc7d6b8c0 R14: 0000000000000007 R15: ffff90cffe32d8f0
> [ 1040.568751] FS: 00007f3b5fbb14c0(0000) GS:ffff90d12fb80000(0000)
> knlGS:0000000000000000
> [ 1040.576836] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
> [ 1040.582584] CR2: 00007ffec6cbecb0 CR3: 00000001041ec001 CR4: 00000000003706e0
> [ 1040.589717] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
> [ 1040.596851] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
> [ 1040.603987] Call Trace:
> [ 1040.606444] inet_csk_destroy_sock+0xd8/0x130
> [ 1040.610811] tcp_close+0x426/0x4f0
> [ 1040.614217] inet_release+0x47/0x80
> [ 1040.617710] __sock_release+0x8b/0xc0
> [ 1040.621375] sock_release+0x10/0x20
> [ 1040.624867] __mptcp_close_ssk+0x59/0x60
> [ 1040.628795] mptcp_close+0x173/0x2f0
> [ 1040.632383] inet_release+0x47/0x80
> [ 1040.635884] __sock_release+0x42/0xc0
> [ 1040.639557] sock_close+0x18/0x20
> [ 1040.642877] __fput+0xb6/0x270
> [ 1040.645935] ____fput+0xe/0x10
> [ 1040.648994] task_work_run+0x6f/0xc0
> [ 1040.652574] exit_to_user_mode_prepare+0x1a0/0x1b0
> [ 1040.657367] syscall_exit_to_user_mode+0x3e/0x240
> [ 1040.662072] do_syscall_64+0x43/0x50
> [ 1040.665653] entry_SYSCALL_64_after_hwframe+0x44/0xa9
> [ 1040.670713] RIP: 0033:0x7f3b5f6c47c4
> [ 1040.674293] Code: ff eb 98 b8 ff ff ff ff eb 91 66 2e 0f 1f 84 00
> 00 00 00 00 66 90 48 8d 05 41 e1 2c 00 8b 00 85 c0 75 13 b8 03 00 00
> 00 0f 05 <48> 3d 00 f0 ff ff 77 3c c3 0f 1f 00 53 89 fb 48 83 ec 10 e8
> e4 a6
> [ 1040.693038] RSP: 002b:00007ffec6cbcc98 EFLAGS: 00000246 ORIG_RAX:
> 0000000000000003
> [ 1040.700604] RAX: 0000000000000000 RBX: 00000000000003b8 RCX: 00007f3b5f6c47c4
> [ 1040.707735] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
> [ 1040.714869] RBP: 0000000000000005 R08: 00007f3b5f98d1e0 R09: 00007f3b5f98d240
> [ 1040.722002] R10: 0000000000000403 R11: 0000000000000246 R12: 0000000000000000
> [ 1040.729134] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
> [ 1040.736267] irq event stamp: 0
> [ 1040.739325] hardirqs last enabled at (0): [<0000000000000000>] 0x0
> [ 1040.745592] hardirqs last disabled at (0): [<ffffffff997bbde3>]
> copy_process+0x753/0x1d40
> [ 1040.753764] softirqs last enabled at (0): [<ffffffff997bbde3>]
> copy_process+0x753/0x1d40
> [ 1040.761935] softirqs last disabled at (0): [<0000000000000000>] 0x0
> [ 1040.768202] ---[ end trace 8a7765e77d8e79e6 ]---
> # 03 single subflow, limited by server syn[ ok ] - synack[ ok ] - ack[ ok ]
> [ 1040.917139] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
> [ 1040.989376] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
> [ 1041.057848] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
> [ 1041.128414] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
> [ 1041.918135] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
> # 04 single subflow syn[ ok ] - synack[ ok ] - ack[ ok ]
> [ 1043.451283] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
> [ 1043.519437] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
> [ 1043.591193] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
> [ 1043.662269] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
> [ 1045.735845] ------------[ cut here ]------------
> [ 1045.740483] refcount_t: decrement hit 0; leaking memory.
> [ 1045.745809] WARNING: CPU: 1 PID: 32066 at
> /usr/src/kernel/lib/refcount.c:31 refcount_warn_saturate+0x53/0x100
> [ 1045.755724] Modules linked in: act_mirred cls_u32 sch_netem sch_etf
> ip6table_nat xt_nat iptable_nat nf_nat ip6table_filter xt_conntrack
> nf_conntrack nf_defrag_ipv4 libcrc32c ip6_tables nf_defrag_ipv6 sch_fq
> iptable_filter xt_mark ip_tables cls_bpf sch_ingress algif_hash
> x86_pkg_temp_thermal fuse [last unloaded: test_blackhole_dev]
> [ 1045.784988] CPU: 1 PID: 32066 Comm: mptcp_connect Tainted: G
> W K 5.10.26-rc2 #1
> [ 1045.793427] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
> 2.2 05/23/2018
> [ 1045.800821] RIP: 0010:refcount_warn_saturate+0x53/0x100
> [ 1045.806053] Code: 00 00 5d c3 83 fe 03 74 45 83 fe 04 75 20 80 3d
> fc b1 a2 01 00 75 eb 48 c7 c7 08 b1 0a 9b c6 05 ec b1 a2 01 01 e8 4d
> 53 ad ff <0f> 0b 5d c3 80 3d db b1 a2 01 00 75 cb 48 c7 c7 38 b1 0a 9b
> c6 05
> [ 1045.824798] RSP: 0018:ffffa57ec59f3cf0 EFLAGS: 00010282
> [ 1045.830025] RAX: 0000000000000000 RBX: 0000000000000010 RCX: 0000000000000000
> [ 1045.837158] RDX: 0000000000000001 RSI: ffff90d12fa97f30 RDI: ffff90d12fa97f30
> [ 1045.844290] RBP: ffffa57ec59f3cf0 R08: 0000000000000000 R09: 0000000000000000
> [ 1045.851424] R10: 0000000000000000 R11: ffffa57ec59f3aa8 R12: ffff90d007a02d00
> [ 1045.858555] R13: ffff90d007a02d80 R14: 0000000000000009 R15: ffff90d00be4c4f0
> [ 1045.865689] FS: 00007f55368c24c0(0000) GS:ffff90d12fa80000(0000)
> knlGS:0000000000000000
> [ 1045.873783] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
> [ 1045.879527] CR2: 00007ffe2b569540 CR3: 000000013dd62002 CR4: 00000000003706e0
> [ 1045.886659] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
> [ 1045.893791] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
> [ 1045.900924] Call Trace:
> [ 1045.903380] tcp_release_cb+0x10f/0x180
> [ 1045.907220] release_sock+0x48/0xb0
> [ 1045.910719] tcp_close+0x25e/0x4f0
> [ 1045.914125] inet_release+0x47/0x80
> [ 1045.917620] __sock_release+0x8b/0xc0
> [ 1045.921291] sock_release+0x10/0x20
> [ 1045.924784] __mptcp_close_ssk+0x59/0x60
> [ 1045.928712] mptcp_close+0x173/0x2f0
> [ 1045.932291] inet_release+0x47/0x80
> [ 1045.935782] __sock_release+0x42/0xc0
> [ 1045.939450] sock_close+0x18/0x20
> [ 1045.942769] __fput+0xb6/0x270
> [ 1045.945837] ____fput+0xe/0x10
> [ 1045.948905] task_work_run+0x6f/0xc0
> [ 1045.952492] exit_to_user_mode_prepare+0x1a0/0x1b0
> [ 1045.957283] syscall_exit_to_user_mode+0x3e/0x240
> [ 1045.961990] do_syscall_64+0x43/0x50
> [ 1045.965569] entry_SYSCALL_64_after_hwframe+0x44/0xa9
> [ 1045.970623] RIP: 0033:0x7f55363d57c4
> [ 1045.974201] Code: ff eb 98 b8 ff ff ff ff eb 91 66 2e 0f 1f 84 00
> 00 00 00 00 66 90 48 8d 05 41 e1 2c 00 8b 00 85 c0 75 13 b8 03 00 00
> 00 0f 05 <48> 3d 00 f0 ff ff 77 3c c3 0f 1f 00 53 89 fb 48 83 ec 10 e8
> e4 a6
> [ 1045.992944] RSP: 002b:00007ffe2b567528 EFLAGS: 00000246 ORIG_RAX:
> 0000000000000003
> [ 1046.000513] RAX: 0000000000000000 RBX: 000000000000011c RCX: 00007f55363d57c4
> [ 1046.007652] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
> [ 1046.014784] RBP: 0000000000000005 R08: 00007f553669e1e4 R09: 00007f553669e240
> [ 1046.021918] R10: 0000000000000403 R11: 0000000000000246 R12: 0000000000000000
> [ 1046.029052] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
> [ 1046.036185] irq event stamp: 0
> [ 1046.039251] hardirqs last enabled at (0): [<0000000000000000>] 0x0
> [ 1046.045517] hardirqs last disabled at (0): [<ffffffff997bbde3>]
> copy_process+0x753/0x1d40
> [ 1046.053690] softirqs last enabled at (0): [<ffffffff997bbde3>]
> copy_process+0x753/0x1d40
> [ 1046.061862] softirqs last disabled at (0): [<0000000000000000>] 0x0
> [ 1046.068129] ---[ end trace 8a7765e77d8e79e7 ]---
> # 05 multiple subflows syn[ ok ] - synack[ ok ] - ack[ ok ]
> [ 1046.222612] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
> [ 1046.292278] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
> [ 1046.366140] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
> [ 1046.436225] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
> [ 1047.230122] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
> [ 1047.510886] IPv4: Attempt to release alive inet socket 000000003578f3a2
> # 06 multiple subflows, limited by server syn[ ok ] - synack[ ok ] - ack[ ok ]
> [ 1048.769959] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
> [ 1048.845133] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
> [ 1048.916783] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
> [ 1048.985439] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
> [ 1049.726207] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
> # 07 unused signal address syn[ ok ] - synack[ ok ] - ack[ ok ]
> # add[ ok ] - echo [ ok ]
> [ 1051.315169] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
> [ 1051.384917] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
> [ 1051.452335] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
> [ 1051.519687] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
> # 08 signal address syn[ ok ] - synack[ ok ] - ack[ ok ]
> # add[ ok ] - echo [ ok ]
> [ 1053.866917] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
> [ 1053.934026] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
> [ 1054.003350] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
> [ 1054.071502] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
> # 09 subflow and signal syn[ ok ] - synack[ ok ] - ack[ ok ]
> # add[ ok ] - echo [ ok ]
> [ 1056.407692] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
> [ 1056.461570] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
> [ 1056.516522] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
> [ 1056.573242] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
> [ 1057.406178] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
> # 10 multiple subflows and signal syn[ ok ] - synack[ ok ] - ack[ ok ]
> # add[ ok ] - echo [ ok ]
> [ 1058.944588] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
> [ 1058.998517] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
> [ 1059.051399] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
> [ 1059.114126] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
> [ 1059.902128] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
> # 11 remove single subflow syn[ ok ] - synack[ ok ] - ack[ ok ]
> # rm [ ok ] - sf [ ok ]
> [ 1065.672583] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth1: link becomes ready
> [ 1065.712249] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth2: link becomes ready
> [ 1065.751709] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth3: link becomes ready
> [ 1065.792078] IPv6: ADDRCONF(NETDEV_CHANGE): ns1eth4: link becomes ready
> [ 1066.686117] IPv6: ADDRCONF(NETDEV_CHANGE): ns2eth1: link becomes ready
> [ 1067.902073] IPv4: Attempt to release TCP socket in state 1 0000000079de8dcd
> [ 1068.875113] ------------[ cut here ]------------
> [ 1068.879758] refcount_t: saturated; leaking memory.
> [ 1068.884577] WARNING: CPU: 1 PID: 32609 at
> /usr/src/kernel/lib/refcount.c:22 refcount_warn_saturate+0xee/0x100
> [ 1068.894497] Modules linked in: act_mirred cls_u32 sch_netem sch_etf
> ip6table_nat xt_nat iptable_nat nf_nat ip6table_filter xt_conntrack
> nf_conntrack nf_defrag_ipv4 libcrc32c ip6_tables nf_defrag_ipv6 sch_fq
> iptable_filter xt_mark ip_tables cls_bpf sch_ingress algif_hash
> x86_pkg_temp_thermal fuse [last unloaded: test_blackhole_dev]
> [ 1068.923755] CPU: 1 PID: 32609 Comm: pm_nl_ctl Tainted: G W
> K 5.10.26-rc2 #1
> [ 1068.931842] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
> 2.2 05/23/2018
> [ 1068.939240] RIP: 0010:refcount_warn_saturate+0xee/0x100
> [ 1068.944468] Code: 48 c7 c7 b0 b0 0a 9b c6 05 6a b1 a2 01 01 e8 c9
> 52 ad ff 0f 0b 5d c3 48 c7 c7 68 b0 0a 9b c6 05 54 b1 a2 01 01 e8 b2
> 52 ad ff <0f> 0b 5d c3 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 8b 07
> 3d 00
> [ 1068.963224] RSP: 0018:ffffa57ec64af7f0 EFLAGS: 00010282
> [ 1068.968456] RAX: 0000000000000000 RBX: 000000000000002c RCX: 0000000000000000
> [ 1068.975587] RDX: 0000000000000001 RSI: ffff90d12fa97f30 RDI: ffff90d12fa97f30
> [ 1068.982719] RBP: ffffa57ec64af7f0 R08: 0000000000000000 R09: 0000000000000000
> [ 1068.989854] R10: 000000000000058c R11: ffffa57ec64af5a8 R12: ffffa57ec64af830
> [ 1068.996993] R13: ffff90cfc08eaee0 R14: 000000000000058c R15: ffff90d007a04380
> [ 1069.004131] FS: 00007f018dc0d4c0(0000) GS:ffff90d12fa80000(0000)
> knlGS:0000000000000000
> [ 1069.012220] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
> [ 1069.017966] CR2: 00007f018d79c285 CR3: 000000013d894001 CR4: 00000000003706e0
> [ 1069.025098] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
> [ 1069.032231] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
> [ 1069.039362] Call Trace:
> [ 1069.041820] __tcp_transmit_skb+0x851/0xcf0
> [ 1069.046017] tcp_write_xmit+0x251/0x11a0
> [ 1069.049946] __tcp_push_pending_frames+0x37/0x100
> [ 1069.054651] tcp_send_fin+0x4f/0x240
> [ 1069.058230] tcp_close+0x36f/0x4f0
> [ 1069.061640] inet_release+0x47/0x80
> [ 1069.065141] __sock_release+0x8b/0xc0
> [ 1069.068814] sock_release+0x10/0x20
> [ 1069.072306] __mptcp_close_ssk+0x59/0x60
> [ 1069.076232] mptcp_pm_nl_rm_subflow_received+0xcb/0x110
> [ 1069.081461] mptcp_pm_remove_subflow+0x34/0x70
> [ 1069.085913] mptcp_nl_cmd_del_addr+0x3eb/0x440
> [ 1069.090361] genl_family_rcv_msg_doit.isra.16+0x117/0x150
> [ 1069.095767] ? genl_family_rcv_msg_doit.isra.16+0x117/0x150
> [ 1069.101341] genl_rcv_msg+0xe8/0x1e0
> [ 1069.104926] ? remove_anno_list_by_saddr+0x50/0x50
> [ 1069.109722] ? genl_family_rcv_msg_doit.isra.16+0x150/0x150
> [ 1069.115301] netlink_rcv_skb+0x56/0x100
> [ 1069.119141] genl_rcv+0x28/0x40
> [ 1069.122285] netlink_unicast+0x1b8/0x270
> [ 1069.126213] netlink_sendmsg+0x339/0x460
> [ 1069.130148] sock_sendmsg+0x63/0x70
> [ 1069.133649] __sys_sendto+0x142/0x180
> [ 1069.137323] ? __audit_syscall_entry+0xdd/0x130
> [ 1069.141855] ? syscall_trace_enter.isra.16+0x179/0x230
> [ 1069.147000] __x64_sys_sendto+0x28/0x30
> [ 1069.150852] do_syscall_64+0x37/0x50
> [ 1069.154438] entry_SYSCALL_64_after_hwframe+0x44/0xa9
> [ 1069.159490] RIP: 0033:0x7f018d72f577
> [ 1069.163070] Code: 64 89 02 48 c7 c0 ff ff ff ff eb b6 0f 1f 80 00
> 00 00 00 48 8d 05 91 f3 2b 00 41 89 ca 8b 00 85 c0 75 10 b8 2c 00 00
> 00 0f 05 <48> 3d 00 f0 ff ff 77 71 c3 41 57 4d 89 c7 41 56 41 89 ce 41
> 55 49
> [ 1069.181815] RSP: 002b:00007ffd65cf3ae8 EFLAGS: 00000246 ORIG_RAX:
> 000000000000002c
> [ 1069.189382] RAX: ffffffffffffffda RBX: 00007ffd65cf3b30 RCX: 00007f018d72f577
> [ 1069.196512] RDX: 0000000000000020 RSI: 00007ffd65cf3b30 RDI: 0000000000000005
> [ 1069.203647] RBP: 0000000000000020 R08: 00007ffd65cf3af4 R09: 000000000000000c
> [ 1069.210777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
> [ 1069.217910] R13: 0000000000000005 R14: 0000000000000000 R15: 0000000000000000
> [ 1069.225047] irq event stamp: 0
> [ 1069.228112] hardirqs last enabled at (0): [<0000000000000000>] 0x0
> [ 1069.234378] hardirqs last disabled at (0): [<ffffffff997bbde3>]
> copy_process+0x753/0x1d40
> [ 1069.242548] softirqs last enabled at (0): [<ffffffff997bbde3>]
> copy_process+0x753/0x1d40
> [ 1069.250722] softirqs last disabled at (0): [<0000000000000000>] 0x0
> [ 1069.256987] ---[ end trace 8a7765e77d8e79e8 ]---
> [ 1069.261660] ------------[ cut here ]------------
> [ 1069.266292] refcount_t: saturated; leaking memory.
> [ 1069.271104] WARNING: CPU: 1 PID: 17 at
> /usr/src/kernel/lib/refcount.c:19 refcount_warn_saturate+0xb3/0x100
> [ 1069.280759] Modules linked in: act_mirred cls_u32 sch_netem sch_etf
> ip6table_nat xt_nat iptable_nat nf_nat ip6table_filter xt_conntrack
> nf_conntrack nf_defrag_ipv4 libcrc32c ip6_tables nf_defrag_ipv6 sch_fq
> iptable_filter xt_mark ip_tables cls_bpf sch_ingress algif_hash
> x86_pkg_temp_thermal fuse [last unloaded: test_blackhole_dev]
> [ 1069.310010] CPU: 1 PID: 17 Comm: ksoftirqd/1 Tainted: G W
> K 5.10.26-rc2 #1
> [ 1069.318007] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
> 2.2 05/23/2018
> [ 1069.325401] RIP: 0010:refcount_warn_saturate+0xb3/0x100
> [ 1069.330627] Code: ad b1 a2 01 01 e8 0d 53 ad ff 0f 0b 5d c3 80 3d
> a0 b1 a2 01 00 75 8b 48 c7 c7 68 b0 0a 9b c6 05 90 b1 a2 01 01 e8 ed
> 52 ad ff <0f> 0b 5d c3 80 3d 7e b1 a2 01 00 0f 85 67 ff ff ff 48 c7 c7
> b0 b0
> [ 1069.349374] RSP: 0018:ffffa57ec00e7bd8 EFLAGS: 00010282
> [ 1069.354599] RAX: 0000000000000000 RBX: ffff90d007a043e8 RCX: 0000000000000000
> [ 1069.361731] RDX: 0000000000000001 RSI: ffff90d12fa97f30 RDI: ffff90d12fa97f30
> [ 1069.368862] RBP: ffffa57ec00e7bd8 R08: 0000000000000000 R09: 0000000000000000
> [ 1069.375997] R10: 0000000000000000 R11: ffffa57ec00e7990 R12: 0000000096271b27
> [ 1069.383128] R13: 0203000a0101000a R14: ffff90cfffa66500 R15: 00000000bbb40c37
> [ 1069.390260] FS: 0000000000000000(0000) GS:ffff90d12fa80000(0000)
> knlGS:0000000000000000
> [ 1069.398346] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
> [ 1069.404092] CR2: 00007f018d79c285 CR3: 00000001ed026002 CR4: 00000000003706e0
> [ 1069.411223] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
> [ 1069.418357] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
> [ 1069.425488] Call Trace:
> [ 1069.427943] __inet_lookup_established+0x141/0x170
> [ 1069.432735] tcp_v4_early_demux+0xab/0x180
> [ 1069.436836] ? rcu_read_lock_held+0x25/0x60
> [ 1069.441022] ip_rcv_finish_core.isra.23+0x483/0x570
> [ 1069.445900] ip_rcv_finish+0x6d/0xc0
> [ 1069.449478] ip_rcv+0x142/0x200
> [ 1069.452625] ? lock_acquire+0x1d4/0x3a0
> [ 1069.456466] ? kfree+0x3e4/0x720
> [ 1069.459697] ? process_backlog+0x73/0x250
> [ 1069.463709] __netif_receive_skb_one_core+0x86/0xa0
> [ 1069.468591] __netif_receive_skb+0x18/0x60
> [ 1069.472697] process_backlog+0xe2/0x250
> [ 1069.476537] net_rx_action+0x144/0x460
> [ 1069.480288] __do_softirq+0xc3/0x42a
> [ 1069.483869] ? smpboot_thread_fn+0x2b/0x1f0
> [ 1069.488053] ? smpboot_thread_fn+0x70/0x1f0
> [ 1069.492242] run_ksoftirqd+0x2b/0x60
> [ 1069.495818] smpboot_thread_fn+0x149/0x1f0
> [ 1069.499920] ? sort_range+0x30/0x30
> [ 1069.503411] kthread+0x142/0x160
> [ 1069.506642] ? kthread_insert_work_sanity_check+0x60/0x60
> [ 1069.512045] ret_from_fork+0x22/0x30
> [ 1069.515632] irq event stamp: 195412
> [ 1069.519131] hardirqs last enabled at (195411):
> [<ffffffff997c6db0>] run_ksoftirqd+0x30/0x60
> [ 1069.527564] hardirqs last disabled at (195412):
> [<ffffffff9a739c94>] __schedule+0x624/0x950
> [ 1069.535910] softirqs last enabled at (195410):
> [<ffffffff9aa00308>] __do_softirq+0x308/0x42a
> [ 1069.544428] softirqs last disabled at (195383):
> [<ffffffff997c6dab>] run_ksoftirqd+0x2b/0x60
> [ 1069.552860] ---[ end trace 8a7765e77d8e79e9 ]---
> [ 1069.557485] BUG: kernel NULL pointer dereference, address: 0000000000000010
> [ 1069.564446] #PF: supervisor read access in kernel mode
> [ 1069.569583] #PF: error_code(0x0000) - not-present page
> [ 1069.574714] PGD 0 P4D 0
> [ 1069.577246] Oops: 0000 [#1] SMP PTI
> [ 1069.580730] CPU: 1 PID: 17 Comm: ksoftirqd/1 Tainted: G W
> K 5.10.26-rc2 #1
> [ 1069.588719] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS
> 2.2 05/23/2018
> [ 1069.596106] RIP: 0010:selinux_socket_sock_rcv_skb+0x3f/0x290
> [ 1069.601762] Code: 54 4c 8d 75 98 53 49 89 fd 48 83 ec 78 0f b7 5f
> 10 65 48 8b 04 25 28 00 00 00 48 89 45 d0 31 c0 48 8b 87 48 04 00 00
> 4c 89 f7 <44> 8b 78 10 31 c0 f3 48 ab 89 d8 83 e0 f7 66 83 f8 02 0f 85
> 4a 01
> [ 1069.620498] RSP: 0018:ffffa57ec00e7a20 EFLAGS: 00010246
> [ 1069.625715] RAX: 0000000000000000 RBX: 0000000000000002 RCX: 0000000000000007
> [ 1069.632841] RDX: ffffffff9995c813 RSI: ffff90cffe966b00 RDI: ffffa57ec00e7a58
> [ 1069.639965] RBP: ffffa57ec00e7ac0 R08: 0000000000000000 R09: 0000000000000000
> [ 1069.647090] R10: 0000000000000000 R11: ffff90cfffa66500 R12: ffff90cffe966b00
> [ 1069.654221] R13: ffff90d007a04380 R14: ffffa57ec00e7a58 R15: ffff90d007a04380
> [ 1069.661344] FS: 0000000000000000(0000) GS:ffff90d12fa80000(0000)
> knlGS:0000000000000000
> [ 1069.669421] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
> [ 1069.675159] CR2: 0000000000000010 CR3: 00000001ed026002 CR4: 00000000003706e0
> [ 1069.682284] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
> [ 1069.689407] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
> [ 1069.696530] Call Trace:
> [ 1069.698976] ? __cgroup_bpf_run_filter_skb+0x20c/0x670
> [ 1069.704115] ? lock_release+0xcf/0x270
> [ 1069.707868] ? rcu_read_lock_held_common+0x12/0x50
> [ 1069.712659] ? rcu_read_lock_held+0x25/0x60
> [ 1069.716837] security_sock_rcv_skb+0x2f/0x50
> [ 1069.721112] sk_filter_trim_cap+0x48/0x350
> [ 1069.725208] ? tcp_v4_inbound_md5_hash+0x60/0x1e0
> [ 1069.729906] tcp_v4_rcv+0xb59/0xd70
> [ 1069.733390] ? lock_acquire+0x1d4/0x3a0
> [ 1069.737229] ip_protocol_deliver_rcu+0x3c/0x270
> [ 1069.741754] ip_local_deliver_finish+0x92/0x130
> [ 1069.746286] ip_local_deliver+0x1a1/0x200
> [ 1069.750289] ? rcu_read_lock_held+0x25/0x60
> [ 1069.754468] ip_rcv_finish+0x8a/0xc0
> [ 1069.758046] ip_rcv+0x142/0x200
> [ 1069.761183] ? lock_acquire+0x1d4/0x3a0
> [ 1069.765014] ? kfree+0x3e4/0x720
> [ 1069.768248] ? process_backlog+0x73/0x250
> [ 1069.772261] __netif_receive_skb_one_core+0x86/0xa0
> [ 1069.777138] __netif_receive_skb+0x18/0x60
> [ 1069.781228] process_backlog+0xe2/0x250
> [ 1069.785061] net_rx_action+0x144/0x460
> [ 1069.788812] __do_softirq+0xc3/0x42a
> [ 1069.792382] ? smpboot_thread_fn+0x2b/0x1f0
> [ 1069.796561] ? smpboot_thread_fn+0x70/0x1f0
> [ 1069.800746] run_ksoftirqd+0x2b/0x60
> [ 1069.804326] smpboot_thread_fn+0x149/0x1f0
> [ 1069.808423] ? sort_range+0x30/0x30
> [ 1069.811908] kthread+0x142/0x160
> [ 1069.815132] ? kthread_insert_work_sanity_check+0x60/0x60
> [ 1069.820524] ret_from_fork+0x22/0x30
> [ 1069.824104] Modules linked in: act_mirred cls_u32 sch_netem sch_etf
> ip6table_nat xt_nat iptable_nat nf_nat ip6table_filter xt_conntrack
> nf_conntrack nf_defrag_ipv4 libcrc32c ip6_tables nf_defrag_ipv6 sch_fq
> iptable_filter xt_mark ip_tables cls_bpf sch_ingress algif_hash
> x86_pkg_temp_thermal fuse [last unloaded: test_blackhole_dev]
> [ 1069.853359] CR2: 0000000000000010
> [ 1069.856671] ---[ end trace 8a7765e77d8e79ea ]---
> [ 1069.861290] RIP: 0010:selinux_socket_sock_rcv_skb+0x3f/0x290
> [ 1069.866940] Code: 54 4c 8d 75 98 53 49 89 fd 48 83 ec 78 0f b7 5f
> 10 65 48 8b 04 25 28 00 00 00 48 89 45 d0 31 c0 48 8b 87 48 04 00 00
> 4c 89 f7 <44> 8b 78 10 31 c0 f3 48 ab 89 d8 83 e0 f7 66 83 f8 02 0f 85
> 4a 01
> [ 1069.885676] RSP: 0018:ffffa57ec00e7a20 EFLAGS: 00010246
> [ 1069.890893] RAX: 0000000000000000 RBX: 0000000000000002 RCX: 0000000000000007
> [ 1069.898018] RDX: ffffffff9995c813 RSI: ffff90cffe966b00 RDI: ffffa57ec00e7a58
> [ 1069.905141] RBP: ffffa57ec00e7ac0 R08: 0000000000000000 R09: 0000000000000000
> [ 1069.912264] R10: 0000000000000000 R11: ffff90cfffa66500 R12: ffff90cffe966b00
> [ 1069.919389] R13: ffff90d007a04380 R14: ffffa57ec00e7a58 R15: ffff90d007a04380
> [ 1069.926514] FS: 0000000000000000(0000) GS:ffff90d12fa80000(0000)
> knlGS:0000000000000000
> [ 1069.934589] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
> [ 1069.940328] CR2: 0000000000000010 CR3: 00000001ed026002 CR4: 00000000003706e0
> [ 1069.947449] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
> [ 1069.954575] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
> [ 1069.961697] Kernel panic - not syncing: Fatal exception in interrupt
> [ 1069.968083] Kernel Offset: 0x18600000 from 0xffffffff81000000
> (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
> [ 1069.978859] ---[ end Kernel panic - not syncing: Fatal exception in
> interrupt ]---
>
>
> https://qa-reports.linaro.org/lkft/linux-stable-rc-linux-5.10.y/build/v5.10.25-157-gdeabac90f919/testrun/4220685/suite/linux-log-parser/test/check-kernel-bug-2434782/log
> https://qa-reports.linaro.org/lkft/linux-stable-rc-linux-5.10.y/build/v5.10.25-157-gdeabac90f919/testrun/4221759/suite/linux-log-parser/test/check-kernel-warning-2434838/log
> https://qa-reports.linaro.org/lkft/linux-stable-rc-linux-5.10.y/build/v5.10.25-157-gdeabac90f919/testrun/4221747/suite/linux-log-parser/test/check-kernel-bug-2434809/log
>
> LAVA jobs link,
> https://lkft.validation.linaro.org/scheduler/job/2436164
> Reported-by: Naresh Kamboju <[email protected]>
>
> --
> Linaro LKFT
> https://lkft.linaro.org