On Wed, Aug 16, 2023 at 10:09 AM Johannes Berg <johannes@xxxxxxxxxxxxxxxx> wrote: > > Hi, > > Yeah, I know this is old ... still happening though, so I've been > looking at it a bit. > > > The issue was bisected to: > > > > commit 7dfd8ac327301f302b03072066c66eb32578e940 > > Author: Ramon Fontes <ramonreisfontes@xxxxxxxxx> > > Date: Thu Oct 10 18:13:07 2019 +0000 > > > > mac80211_hwsim: add support for OCB > > I'm not sure that make sense, FWIW. There isn't even any OCB? The syz > script just contains a channel switch command. > > > WARNING: CPU: 1 PID: 6900 at net/mac80211/tx.c:4875 __ieee80211_beacon_get+0xb59/0x1aa0 net/mac80211/tx.c:4875 > > I also can't reproduce this though. Did you try to run the kernel attached in the assets? https://github.com/google/syzkaller/blob/master/docs/syzbot_assets.md#run-a-c-reproducer I've just followed the instructions from there and the C repro did crash the kernel in ~20 seconds: [ 56.809692][ C1] ------------[ cut here ]------------ [ 56.810656][ C1] WARNING: CPU: 1 PID: 5358 at net/mac80211/tx.c:5011 __ieee80211_beacon_get+0x1495/0x16e0 The disk image I used: https://storage.googleapis.com/syzbot-assets/c18b40f6d56d/disk-cacc6e22.raw.xz The C repro: https://syzkaller.appspot.com/text?tag=ReproC&x=135c0c63a80000 > > Is there a chance that somehow there's some scheduling problem and > workers aren't being scheduled, and then ieee80211_csa_finalize_work() > doesn't work between the last pre-CSA and first post-CSA beacon? > > I _can_ reproduce this if I just make ieee80211_csa_finalize_work() do > nothing instead of doing what it should, hence the question. > > johannes > > -- > You received this message because you are subscribed to the Google Groups "syzkaller-bugs" group. > To unsubscribe from this group and stop receiving emails from it, send an email to syzkaller-bugs+unsubscribe@xxxxxxxxxxxxxxxx. > To view this discussion on the web visit https://groups.google.com/d/msgid/syzkaller-bugs/4d51d5ec9f1a86b099900934661e1bbdefa269c7.camel%40sipsolutions.net.
