Received: by 2002:a05:6a10:22f:0:0:0:0 with SMTP id 15csp3382306pxk; Mon, 5 Oct 2020 08:19:45 -0700 (PDT) X-Google-Smtp-Source: ABdhPJxc+s9H7u8poyANZo92IrtuS9bRwhRwhCWMeW8LjQM6gvpMBUEiXVquXRoOUgCdNNL94TNt X-Received: by 2002:adf:9e41:: with SMTP id v1mr19888838wre.60.1601911185628; Mon, 05 Oct 2020 08:19:45 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1601911185; cv=none; d=google.com; s=arc-20160816; b=YpmbyocYI64nak8jIANV7BukPcrjXddhVfUV/BhGlrnPCwx61dzc2WbYAo7BUIwzVJ gzc8N1rcHw8u34LjKuyKI43qI1p9Oxv+mqrZRr9sR9nVoBMH9W5EWPJNjADleueuLUQu 3eAkO/x9jGYSsX9vWhyVKZzO/XlJ0ZrKhoDbSum0fxcoiklrTmbAqD8KhJqV8JuHt3A/ Q2cOpMCjQ9jctiXnz9Rw6FWTnBet8GV0k5CJBTy+Oz6rjDqKXXNye5uH5u9sIC4nuaaU 78Kk1Jyj3zIHvitZyVDjmzd/x1jc5E6FiFQpe5D42KC2n7uEqRoQGr8NELtfXlVRqYeb 4Fgg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:content-disposition:mime-version :references:message-id:subject:cc:to:from:date:dkim-signature; bh=Av5RyD+Xj5a49OOqGzxp4HJW4EJcGtsnXXUK9ynU/go=; b=PXsG0Hh0czpGWQuwgBk89rzG5VmbI9dkfM67vjYDsroK4Xp37FqniAE+rCfg01OBgK 8EzymL0vR4LbuxlcSIy/ibZqGCq3iJRgEZTjXV0+td2nuSqysyXu6946vJPOU2pWMHwi yd51iH2gwV67ih1bKlwL0+WisiCEJTF9rtvdSKtsWQg0M0DyQSjcHjusXF6I5icA1vMY yHuRs+eHYBvXnmoL6qHPtfzjuC3AmDcf5cEI3WSWFG7M3B5taB2x9Jmggl/mD+Txi1DY qxEcXvU6wLd7pwHKBctdVUFtttgxKnaWvUDrpPUNL7LO1QPs15mHpQp/s10V45htMZfr 4Scw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=H4n4Myg6; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id a12si7479583ejs.60.2020.10.05.08.19.21; Mon, 05 Oct 2020 08:19:45 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=H4n4Myg6; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726657AbgJEPSR (ORCPT + 99 others); Mon, 5 Oct 2020 11:18:17 -0400 Received: from mail.kernel.org ([198.145.29.99]:46070 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726429AbgJEPSR (ORCPT ); Mon, 5 Oct 2020 11:18:17 -0400 Received: from localhost (83-86-74-64.cable.dynamic.v4.ziggo.nl [83.86.74.64]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPSA id 47FB920774; Mon, 5 Oct 2020 15:18:15 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=default; t=1601911095; bh=QANsWJBcybVZjCKHtkB8uPRvP8CkCvd8RdqxgHOFkw0=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=H4n4Myg6MYeEk+ful+9jc7e5PUpuHFg1RrmEpFyyaDQqPxKkh2EFR/A9CUweeMed9 fm3K7+Owe8eic0CP72kObf9bG+1wPwT7oeeLej3/lrbYwfNn6rsLnnrFbqtBqtEdi7 vvqiERDzH2tKLFBCF8vfDO4ZjFXoOyC8iaKMaduc= Date: Mon, 5 Oct 2020 17:18:57 +0200 From: Greg Kroah-Hartman To: Andrey Konovalov Cc: Valentina Manea , Shuah Khan , Alan Stern , USB list , LKML , Dmitry Vyukov , Nazime Hande Harputluoglu , syzkaller Subject: Re: Is usb_hcd_giveback_urb() allowed in task context? Message-ID: <20201005151857.GA2309511@kroah.com> References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, Oct 05, 2020 at 05:08:11PM +0200, Andrey Konovalov wrote: > Dear USB and USB/IP maintainers, > > While fuzzing the USB/IP stack with syzkaller we've stumbled upon an issue. > > Currently kcov (the subsystem that is used for coverage collection) > USB-related callbacks assume that usb_hcd_giveback_urb() can only be > called from interrupt context, as indicated by the comment before the > function definition. In the USB/IP code, however, it's called from the > task context (see the stack trace below). > > Is this something that is allowed and we need to fix kcov? Or is this > a bug in USB/IP? It's a bug in kcov, and is not true as you have found out :) thanks, greg k-h