Received: by 2002:a6b:500f:0:0:0:0:0 with SMTP id e15csp5388540iob; Mon, 9 May 2022 15:30:10 -0700 (PDT) X-Google-Smtp-Source: ABdhPJy9o8mai4rZwVCT3HVBHotefnM0zr19Ljc9NOEGFFu67s39jxY+SWF9IzNok0p+MSzGhGzG X-Received: by 2002:a05:6870:430a:b0:e2:776b:bf05 with SMTP id w10-20020a056870430a00b000e2776bbf05mr8427159oah.269.1652135409653; Mon, 09 May 2022 15:30:09 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1652135409; cv=none; d=google.com; s=arc-20160816; b=KWaFnusVOjst9V8IC3+1wPHyNhHTaWeO4+QyPW8TYZi3EPe9OUh6eb0Arv+Yo1DmiL I6LFtWpSHQUUr23IRU15FVVDykE5RYWnCVrKoVVQUJ7mcX5xwuSX24UPSCb0//Cnqnok apa7usVzh+N3hMXKaCb92taVY7CsckWzrhmkH2bIEJbUtUdYxScTtUfNLT0zqv7aOXYY 5LyihMplBGmb2EFTb7icVx8XyU9Cezstj+nQR2JJO6KVa1ASi+Hc6pg4Beb2iuty56vx nfLTLilgJRkobSu1rOk6WtdDxKbn1C7m4ovNL3iH3UWkA5lCI4hFLUSQ37Z3jQKuE6Wy 6a4g== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:to:from:subject:message-id:in-reply-to:date :mime-version; bh=s2rmpyNyFEujAf+EJYBoIEjX5MtLaffn8+X0o9N5fgE=; b=Nc2++9YhoT6g9mKMFREOQi0ylzJ0+qNJWOea3ft6CzZcS3EitWuEpdpoBGmyo+rsdN 6CPD807wNqeiu9VTLpuu7zRnu52TJYGZjgk9fRyxUm73iH4SN1JB4MTHv+XHbAjTYbGE jZw2FiMcEqKXvJ05r8LNdVX+pxF/qGQOvBuOKb0too8MBfInWbFf9uOHBD4J5TsWtppB vzlXyMo4BsPQK097zUcJX0J1Br94V0Kq4/RQoIltF/HZIrS85cZkMI6ghtALvBtWuv+D 1nBikHMkjnZIx99IiKTgIZqL68SBJU6XXM2vKKqOmu96Mesb9AYkuuyzWxWtaYTrJAyf dlSg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=appspotmail.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id i125-20020acab883000000b002fa6a1c758esi10473001oif.270.2022.05.09.15.29.55; Mon, 09 May 2022 15:30:09 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=appspotmail.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231313AbiEIV6r (ORCPT + 99 others); Mon, 9 May 2022 17:58:47 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:59182 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S231985AbiEIV43 (ORCPT ); Mon, 9 May 2022 17:56:29 -0400 Received: from mail-il1-f200.google.com (mail-il1-f200.google.com [209.85.166.200]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id EE1E62C8194 for ; Mon, 9 May 2022 14:50:10 -0700 (PDT) Received: by mail-il1-f200.google.com with SMTP id n8-20020a056e021ba800b002cf15f38e17so8357190ili.7 for ; Mon, 09 May 2022 14:50:10 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:date:in-reply-to:message-id:subject :from:to; bh=s2rmpyNyFEujAf+EJYBoIEjX5MtLaffn8+X0o9N5fgE=; b=ABsG+W09Tqm2UIrN7X/IShObZRCf3p3Owbb6+bgYeUluusQPVoewOLiDNlRl54NAFY E/umYhZ6q3XpAXS195qHG+TR/Yu6wq04a86jwLrqQfFQcbPFT8Sf2wuSjDg0W5io0ewq AEwinTs5Tre1opIKRYDqeWEoFH8ATfKwPAd62gmsmlqIAOZOdlwtshDexC0QRq5tRLjt UiUeDIUpaOEaQ9HrSXzle+VAWOLxMx76/zUGujqLYt0hb++VXe+gd8+bpfGPngXf4LUM YiJ5TuzbUJ2PlV1+xO/00ThDCvIR3OdtZARg8F7KohsxSzNRqnd1O4zZNCA/HK7Mru/2 q2Dg== X-Gm-Message-State: AOAM533YXY/q5mffxYT/at4YqRlA/dFgkOMc9rCYVM5qXDqzdbncRN7B DXOJqapBHw8l0CVZ+YwnOEYAq5ynaGLHqzztWAf07A5lgsfZ MIME-Version: 1.0 X-Received: by 2002:a05:6e02:214b:b0:2cf:21fa:cce6 with SMTP id d11-20020a056e02214b00b002cf21facce6mr7280704ilv.160.1652133010262; Mon, 09 May 2022 14:50:10 -0700 (PDT) Date: Mon, 09 May 2022 14:50:10 -0700 In-Reply-To: <00000000000029572505de968021@google.com> X-Google-Appengine-App-Id: s~syzkaller X-Google-Appengine-App-Id-Alias: syzkaller Message-ID: <00000000000032d06e05de9b3136@google.com> Subject: Re: [syzbot] KASAN: use-after-free Read in bio_poll From: syzbot To: andrii@kernel.org, ast@kernel.org, axboe@kernel.dk, bpf@vger.kernel.org, daniel@iogearbox.net, hch@lst.de, john.fastabend@gmail.com, kafai@fb.com, kpsingh@kernel.org, linux-block@vger.kernel.org, linux-kernel@vger.kernel.org, ming.lei@redhat.com, netdev@vger.kernel.org, songliubraving@fb.com, syzkaller-bugs@googlegroups.com, yhs@fb.com Content-Type: text/plain; charset="UTF-8" X-Spam-Status: No, score=0.8 required=5.0 tests=BAYES_00,FROM_LOCAL_HEX, HEADER_FROM_DIFFERENT_DOMAINS,RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H2, SORTED_RECIPS,SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=no autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org syzbot has bisected this issue to: commit 0f38d76646157357fcfa02f50575ea044830c494 Author: Christoph Hellwig Date: Tue Oct 12 10:40:45 2021 +0000 blk-mq: cleanup blk_mq_submit_bio bisection log: https://syzkaller.appspot.com/x/bisect.txt?x=12506f7ef00000 start commit: c5eb0a61238d Linux 5.18-rc6 git tree: upstream final oops: https://syzkaller.appspot.com/x/report.txt?x=11506f7ef00000 console output: https://syzkaller.appspot.com/x/log.txt?x=16506f7ef00000 kernel config: https://syzkaller.appspot.com/x/.config?x=78013caa620443d6 dashboard link: https://syzkaller.appspot.com/bug?extid=99938118dfd9e1b0741a syz repro: https://syzkaller.appspot.com/x/repro.syz?x=1484cbc1f00000 C reproducer: https://syzkaller.appspot.com/x/repro.c?x=10c7026cf00000 Reported-by: syzbot+99938118dfd9e1b0741a@syzkaller.appspotmail.com Fixes: 0f38d7664615 ("blk-mq: cleanup blk_mq_submit_bio") For information about bisection process see: https://goo.gl/tpsmEJ#bisection