syzbot

 sign-in | mailing list | source | docs
🐞 Open [10]
🐞 Fixed [25]
🐞 Invalid [75]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

assertion failed: rpi->gp_acked + 1 == READ_ONCE(rsp->gpnum)HW TRAP frame at ADDR on core 3

Status: closed as dup on 2018/07/18 09:27
Reported-by: syzbot+2cb0ab7756e1aaf9db41@syzkaller.appspotmail.com
First crash: 2321d, last: 2321d
Duplicate of
Title Repro Cause bisect Fix bisect Count Last Reported
assertion failed: rpi->gp_acked + 1 == READ_ONCE(rsp->gpnum) 1353 2314d 2321d

Sample crash report:
kernel panic at kern/src/rcu.c:325, from core 2: assertion failed: rpi->gp_acked + 1 == READ_ONCE(rsp->gpnum)HW TRAP frame at 0xfffffff00001af40 on core 3
  rax  0xffffffffc8667b08
Stack Backtrace on Core 2:
  rbx  0xffffffffc8667b08
#01 [<0xffffffffc200a3b7>] in backtrace at src/kdebug.c:219
  rcx  0x0000000000000000
#02 [<0xffffffffc2009b7c>] in _panic at src/init.c:266
  rdx  0x0000000000000046
#03 [<0xffffffffc20502f9>] in rcu_report_qs_rpi at src/rcu.c:325
  rbp  0xfffffff0000a0cae
#04 [<0xffffffffc2050c4c>] in rcu_report_qs at src/rcu.c:340
  rsi  0xffff800015b04a48
#05 [<0xffffffffc204d12b>] in proc_restartcore at src/process.c:807
  rdi  0xffffffffc8667b08
#06 [<0xffffffffc20aaf20>] in sysenter_callwrapper at arch/x86/trap.c:861
  r8   0x0000001189aad1ed
  r9   0x0000001189aad1ed
  r10  0x0000000000000000
  r11  0x0000000000000000
  r12  0xffff800015b04a48
  r13  0x0000000000000246
  r14  0xffff800015b04a48
  r15  0xffff800015b04a20
  trap 0x00000008 Double Fault
  gsbs 0xffffffffc8668140
  fsbs 0x0000000000000000
ROS(Core 2)>   err  0x--------00000000
  rip  0xffffffffc8667b5a
  cs   0x------------0008
  flag 0x0000000000010006
  rsp  0xfffffff000090c69
  ss   0x------------0010
HW TRAP frame at 0xfffffff00001af40 on core 3
  rax  0x0000000000000002
  rbx  0x0000000000000003
  rcx  0x0000000000000014
  rdx  0xfffffff00001ae40
  rbp  0xfffffff00001aef0
  rsi  0xffffc20001150cb8
  rdi  0xfff0000a0cc8ffff
  r8   0xffffc20001150cb8
  r9   0xffffffffc20ac1ce
  r10  0xffff7fffffffffff
  r11  0xffff8000000b8ec0
  r12  0xffff800015b04a48
  r13  0x0000000000000246
  r14  0xffff800015b04a48
  r15  0xffff800015b04a20
  trap 0x00000008 Double Fault
  gsbs 0xffffffffc8668140
  fsbs 0x0000000000000000
  err  0x--------00000000
  rip  0xffffffffc20a0ed0
  cs   0x------------0008
  flag 0x0000000000010012
  rsp  0xfffffff00001ae38
  ss   0x------------0010
Backtrace of kernel context on Core 3:
#01 [<0xffffffffc20a0ed0>] in backtrace_list at arch/x86/kdebug.c:364
#02 [<0xffffffffc200a535>] in backtrace_hwtf at src/kdebug.c:254
#03 [<0xffffffffc20aa239>] in handle_double_fault at arch/x86/trap.c:540
kernel panic at kern/arch/x86/trap.c:541, from core 3: Double fault!  Check the kernel stack pointer; you likely ran off the end of the stack.
Stack Backtrace on Core 3:
#01 [<0xffffffffc200a3b7>] in backtrace at src/kdebug.c:219
#02 [<0xffffffffc2009b7c>] in _panic at src/init.c:266
#03 [<0xffffffffc20aa253>] in handle_double_fault at arch/x86/trap.c:541

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2018/07/16 20:27 akaros 93b9607ebeff 13761366 .config console log report ci-akaros-main
* Struck through repros no longer work on HEAD.