syzbot

 sign-in | mailing list | source | docs
🐞 Open [78]
🐞 Fixed [22]
🐞 Invalid [393]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

BUG: soft lockup in hub_event

Status: auto-obsoleted due to no activity on 2024/02/11 21:05
Reported-by: syzbot+2b88f5276b03c693354b@syzkaller.appspotmail.com
First crash: 764d, last: 764d
Similar bugs (6)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-5-15 BUG: soft lockup in hub_event 1 12 474d 545d 0/2 auto-obsoleted due to no activity on 2024/09/23 11:46
upstream INFO: rcu detected stall in hub_event usb 1 C done 1233 160d 2153d 28/29 fixed on 2025/05/06 15:33
android-6-1 BUG: soft lockup in hub_event 1 1 853d 853d 0/2 auto-obsoleted due to no activity on 2023/09/12 05:32
upstream INFO: rcu detected stall in hub_event (2) usb kernfs 1 C error 41 14d 54d 0/29 upstream: reported C repro on 2025/08/21 02:14
linux-5.15 INFO: rcu detected stall in hub_event 1 2 340d 426d 0/3 auto-obsoleted due to no activity on 2025/02/15 14:48
linux-6.1 INFO: rcu detected stall in hub_event origin:upstream 1 C error 6 146d 793d 0/3 upstream: reported C repro on 2023/08/12 16:34
Last patch testing requests (3)
Created Duration User Patch Repo Result
2024/02/11 20:48 15m retest repro android12-5.4 OK log
2023/12/03 20:36 10m retest repro android12-5.4 error
2023/09/24 20:20 15m retest repro android12-5.4 report log

Sample crash report:
watchdog: BUG: soft lockup - CPU#1 stuck for 123s! [kworker/1:5:1373]
Modules linked in:
CPU: 1 PID: 1373 Comm: kworker/1:5 Not tainted 5.4.249-syzkaller-00007-g50533a8b511b #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
Workqueue: usb_hub_wq hub_event
RIP: 0010:native_restore_fl arch/x86/include/asm/irqflags.h:41 [inline]
RIP: 0010:arch_local_irq_restore arch/x86/include/asm/irqflags.h:84 [inline]
RIP: 0010:kvm_wait+0xfa/0x150 arch/x86/kernel/kvm.c:852
Code: 24 14 75 26 41 f7 c7 00 02 00 00 75 0f 0f 1f 44 00 00 0f 00 2d 17 56 77 03 f4 eb 0e 0f 1f 44 00 00 0f 00 2d 08 56 77 03 fb f4 <4c> 89 7c 24 18 ff 74 24 18 9d 48 c7 44 24 20 0e 36 e0 45 49 c7 04
RSP: 0018:ffff8881db27f4a0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
RAX: 0000000000000003 RBX: 1ffff1103b64fe98 RCX: 0000000086ee5800
RDX: 0000000000000001 RSI: 0000000000000003 RDI: ffffffff86ee5840
RBP: ffff8881db27f550 R08: dffffc0000000000 R09: 0000000000000000
R10: ffffffffffffffff R11: dffffc0000000001 R12: dffffc0000000000
R13: ffffffff86ee5840 R14: ffff8881db27f4e0 R15: 0000000000000246
FS:  0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ffff3cff0f8 CR3: 00000001eb520000 CR4: 00000000003406a0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <IRQ>
 </IRQ>
 pv_wait arch/x86/include/asm/paravirt.h:652 [inline]
 pv_wait_head_or_lock kernel/locking/qspinlock_paravirt.h:470 [inline]
 __pv_queued_spin_lock_slowpath+0x72f/0xc70 kernel/locking/qspinlock.c:507
 pv_queued_spin_lock_slowpath arch/x86/include/asm/paravirt.h:642 [inline]
 queued_spin_lock_slowpath arch/x86/include/asm/qspinlock.h:50 [inline]
 queued_spin_lock include/asm-generic/qspinlock.h:81 [inline]
 do_raw_spin_lock include/linux/spinlock.h:181 [inline]
 __raw_spin_lock include/linux/spinlock_api_smp.h:143 [inline]
 _raw_spin_lock+0x139/0x1b0 kernel/locking/spinlock.c:151
 spin_lock include/linux/spinlock.h:338 [inline]
 kernfs_put+0x2c3/0x4b0 fs/kernfs/dir.c:546
 kernfs_remove_by_name_ns+0x99/0x100 fs/kernfs/dir.c:1521
 kernfs_remove_by_name include/linux/kernfs.h:583 [inline]
 sysfs_unmerge_group+0xcf/0x130 fs/sysfs/group.c:368
 rpm_sysfs_remove drivers/base/power/sysfs.c:730 [inline]
 dpm_sysfs_remove+0x70/0xc0 drivers/base/power/sysfs.c:739
 device_del+0x252/0xfa0 drivers/base/core.c:3062
 device_unregister+0x11/0x30 drivers/base/core.c:3117
 usb_remove_ep_devs+0x4c/0x80 drivers/usb/core/endpoint.c:188
 remove_intf_ep_devs drivers/usb/core/message.c:1125 [inline]
 usb_disable_device+0x307/0x750 drivers/usb/core/message.c:1276
 usb_disconnect+0x32c/0x890 drivers/usb/core/hub.c:2229
 hub_port_connect drivers/usb/core/hub.c:5027 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5303 [inline]
 port_event drivers/usb/core/hub.c:5449 [inline]
 hub_event+0x1c75/0x4d50 drivers/usb/core/hub.c:5531
 process_one_work+0x765/0xd20 kernel/workqueue.c:2287
 worker_thread+0xaef/0x1470 kernel/workqueue.c:2433
 kthread+0x2da/0x360 kernel/kthread.c:288
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:354

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/09/10 19:08 android12-5.4 50533a8b511b 6654cf89 .config console log report syz C [disk image] [vmlinux] [kernel image] ci2-android-5-4-kasan BUG: soft lockup in hub_event
* Struck through repros no longer work on HEAD.