From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mail-il1-f208.google.com (mail-il1-f208.google.com [209.85.166.208]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 0F0493176E4 for ; Wed, 26 Nov 2025 11:51:26 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=209.85.166.208 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1764157888; cv=none; b=hK8KOGCetI8Z4AGWGs9ZVCJgStW01aBfN6SMrlXtL6/kXmdbLatBmlBMwOA94blxGWk3MShiPbCmAkDb5Mv2iKsN6bvV1/8Ex5DbUJ+l9xP1OPfd7070lVFYiyfZx+NkrZaLGrLT0TxCVt2CQEHcDzs3gav4NMaxXXi8IeUr7CQ= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1764157888; c=relaxed/simple; bh=Qfd1cFE7u38NuYbx0Ra4HvwiyIxvDQD0RwLsU8sWP/Q=; h=MIME-Version:Date:In-Reply-To:Message-ID:Subject:From:To:Cc: Content-Type; b=dk6nRPXItyblz/Cto3Eq6o75xKFNiQ8i5Tys9pafgJw9kR3T7j3ODjDsmhWm3u9uymVEqh2uEfmV91Om7WVrV5TaOZiCNTVtkv+6BaRcY6d6jdspp3DpspPhm8hR6di4v5ry+cx9vEM2YqlMZH+/7aDSEN/jVi8XS09ZvLOrySY= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=fail (p=none dis=none) header.from=syzkaller.appspotmail.com; spf=pass smtp.mailfrom=M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com; arc=none smtp.client-ip=209.85.166.208 Authentication-Results: smtp.subspace.kernel.org; dmarc=fail (p=none dis=none) header.from=syzkaller.appspotmail.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com Received: by mail-il1-f208.google.com with SMTP id e9e14a558f8ab-43373024b5eso57039855ab.1 for ; Wed, 26 Nov 2025 03:51:26 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1764157886; x=1764762686; h=cc:to:from:subject:message-id:in-reply-to:date:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=eiDKo9IqjyazGzxtn3vvO62k8CuTHfyX3EZsMtP7WWo=; b=VOD2LDlOKG/Z8OfxZe7btKnHR9ZGkRBxYFJo4T2bJVX4N7nX7g0iWEuiMwI+b10IBo 6fOsFVF2XusrDIV2YxzhezpWQ8JIq9DI5/CeU0qFLmMMpcSLFi85XZ5RyXlqg+owJQhk xXMhBtDp9xMW05knMGCOI/oKKQtsfjEU7aqQi//l3Ndk+Q/S4yocD6k0lw4QUIwfzrQ1 nOoKrDcJsP0LkcNwWQiKVPElNCyTrQl3MtNw7nhOs9+n++Td9BywFidIo8Tn8P8p1pEE OJMNfHz9ea+6Lt1G6mWws0631XHFA50a+UzKM4hKWdaGl+c9c4n6BuSEhzynLfrns60m pNQg== X-Forwarded-Encrypted: i=1; AJvYcCXaE14mOv1TIevrE+eKJ21+94ByCtNi46oWttBW7+t4IBnz8cJAZRg9SiXJI8Xisoxmj/CpLI0flwAy4j0=@vger.kernel.org X-Gm-Message-State: AOJu0Yy6DvY8GJrpf1IH+cBMJM30YG9o4UEH1nwgVapvbVd8Xfj3gAtN W3KvwTct2fpc5DWfwG0ly1SzZmHMrdfZ6BzHTifmb2IyyFlZW5YGDarcihLw21YMd4bC+ZwTvc/ DLwsJQfkB/nAU9dX97guAPJ+MMoBOFcWzW5qVGW7LcPTxA26X0KRBEuATP9U= X-Google-Smtp-Source: AGHT+IEpQDmG1eQE+IuVDEBeF6su5UGtRxW7WNXzSLQ1rVfGNi2rFwrMMRcucWXgVyXEI6J/aIiQzy/sHcH2ERuOHuhpLCfyVE59 Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 X-Received: by 2002:a92:cda3:0:b0:435:a3af:e282 with SMTP id e9e14a558f8ab-435dd039e93mr58132355ab.1.1764157886251; Wed, 26 Nov 2025 03:51:26 -0800 (PST) Date: Wed, 26 Nov 2025 03:51:26 -0800 In-Reply-To: <5a35524e-68b4-4c6e-a0eb-cc7ca21b2d3a@kernel.org> X-Google-Appengine-App-Id: s~syzkaller X-Google-Appengine-App-Id-Alias: syzkaller Message-ID: <6926e9be.a70a0220.d98e3.00d2.GAE@google.com> Subject: Re: [syzbot] [net?] divide error in __tcp_select_window (4) From: syzbot To: matttbe@kernel.org Cc: matttbe@kernel.org, pabeni@redhat.com, syzkaller-bugs@googlegroups.com, linux-kernel@vger.kernel.org Content-Type: text/plain; charset="UTF-8" > Hello, > > (+cc Paolo) > > On 26/11/2025 12:28, Matthieu Baerts wrote: >> Hello, >> >> (Without other ML's to test a different fix) >> >> On 25/11/2025 20:50, syzbot wrote: >>> Hello, >>> >>> syzbot found the following issue on: >>> >>> HEAD commit: e2c20036a887 Merge branch 'devlink-net-mlx5-implement-swp_.. >>> git tree: net-next >>> console output: https://syzkaller.appspot.com/x/log.txt?x=1164c484580000 >>> kernel config: https://syzkaller.appspot.com/x/.config?x=a881ccda32df4e75 >>> dashboard link: https://syzkaller.appspot.com/bug?extid=3a92d359bc2ec6255a33 >>> compiler: Debian clang version 20.1.8 (++20250708063551+0c9f909b7976-1~exp1~20250708183702.136), Debian LLD 20.1.8 >>> syz repro: https://syzkaller.appspot.com/x/repro.syz?x=13f8fa12580000 >>> C reproducer: https://syzkaller.appspot.com/x/repro.c?x=113a5a12580000 >>> >>> Downloadable assets: >>> disk image: https://storage.googleapis.com/syzbot-assets/07279e689a07/disk-e2c20036.raw.xz >>> vmlinux: https://storage.googleapis.com/syzbot-assets/b13e2e59c1ed/vmlinux-e2c20036.xz >>> kernel image: https://storage.googleapis.com/syzbot-assets/f6f519394597/bzImage-e2c20036.xz >>> >>> The issue was bisected to: >>> >>> commit ae155060247be8dcae3802a95bd1bdf93ab3215d >>> Author: Paolo Abeni >>> Date: Tue Nov 18 07:20:24 2025 +0000 >>> >>> mptcp: fix duplicate reset on fastclose >>> >>> bisection log: https://syzkaller.appspot.com/x/bisect.txt?x=11f698b4580000 >>> final oops: https://syzkaller.appspot.com/x/report.txt?x=13f698b4580000 >>> console output: https://syzkaller.appspot.com/x/log.txt?x=15f698b4580000 >>> >>> IMPORTANT: if you fix the issue, please add the following tag to the commit: >>> Reported-by: syzbot+3a92d359bc2ec6255a33@syzkaller.appspotmail.com >>> Fixes: ae155060247b ("mptcp: fix duplicate reset on fastclose") >> >> I *think* this issue might have been fixed by another patch that has >> been sent recently, see "mptcp: clear scheduled subflows on retransmit": >> >> >> #syz test: git://git.kernel.org/pub/scm/linux/kernel/git/matttbe/net-next.git b4/net-mptcp-clear-sched-rtx > > > Mmh, sorry for the noise, I just noticed the reproducers were apparently > only working on top of net-next, and my branch was on top of 'net'. > Sending the patch with net-next as base then. > > #syz test: git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-next.git "Cheers," does not look like a valid git branch or commit. > > Cheers, > Matt > -- > Sponsored by the NGI0 Core fund.