syzbot

 sign-in | mailing list | source | docs
🐞 Open [687]
🐞 Fixed [98]
🐞 Invalid [578]
Missing Backports [42]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

BUG: soft lockup in sock_setsockopt

Status: upstream: reported C repro on 2024/12/25 11:22
Reported-by: syzbot+85ef51f4fe187af99a06@syzkaller.appspotmail.com
First crash: 1d14h, last: 1d08h
Similar bugs (6)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream BUG: soft lockup in sock_setsockopt (2) bpf 1 1638d 1634d 0/28 auto-closed as invalid on 2020/09/30 02:55
upstream BUG: soft lockup in sock_setsockopt bpf 1 1835d 1835d 0/28 auto-closed as invalid on 2020/04/16 03:54
android-5-15 BUG: soft lockup in sock_setsockopt origin:upstream C 23 24d 282d 0/2 upstream: reported C repro on 2024/03/19 21:44
android-6-1 BUG: soft lockup in sock_setsockopt origin:upstream C 7 9d13h 282d 0/2 upstream: reported C repro on 2024/03/19 21:39
android-5-10 BUG: soft lockup in sock_setsockopt C error 42 9d18h 282d 0/2 upstream: reported C repro on 2024/03/19 19:29
linux-5.15 INFO: rcu detected stall in sock_setsockopt origin:upstream C 4 21h59m 277d 0/3 upstream: reported C repro on 2024/03/24 19:22

Sample crash report:
watchdog: BUG: soft lockup - CPU#0 stuck for 22s! [syz-executor393:7116]
Modules linked in:
irq event stamp: 20850037
hardirqs last  enabled at (20850036): [<ffff8000081c24a8>] __local_bh_enable_ip+0x230/0x470 kernel/softirq.c:401
hardirqs last disabled at (20850037): [<ffff8000123280c4>] __el1_irq arch/arm64/kernel/entry-common.c:468 [inline]
hardirqs last disabled at (20850037): [<ffff8000123280c4>] el1_interrupt+0x24/0x68 arch/arm64/kernel/entry-common.c:486
softirqs last  enabled at (410): [<ffff800011e0e798>] spin_unlock_bh include/linux/spinlock.h:396 [inline]
softirqs last  enabled at (410): [<ffff800011e0e798>] tipc_skb_peek_port net/tipc/msg.h:1235 [inline]
softirqs last  enabled at (410): [<ffff800011e0e798>] tipc_sk_rcv+0x35c/0x1940 net/tipc/socket.c:2491
softirqs last disabled at (412): [<ffff800011e0e7b8>] spin_trylock_bh include/linux/spinlock.h:411 [inline]
softirqs last disabled at (412): [<ffff800011e0e7b8>] tipc_sk_rcv+0x37c/0x1940 net/tipc/socket.c:2496
CPU: 0 PID: 7116 Comm: syz-executor393 Tainted: G        W          6.1.121-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : should_resched arch/arm64/include/asm/preempt.h:79 [inline]
pc : __local_bh_enable_ip+0x238/0x470 kernel/softirq.c:403
lr : __local_bh_enable_ip+0x230/0x470 kernel/softirq.c:401
sp : ffff800025bb62f0
x29: ffff800025bb6300 x28: dfff800000000000 x27: ffff800025bb6660
x26: ffff80001d0979c0 x25: 00000000af79a92a x24: 0000000000000001
x23: 1fffe0001892ea69 x22: dfff800000000000 x21: ffff800011e0e7b8
x20: 0000000000000202 x19: ffff0000c4975348 x18: ffff800025bb63a0
x17: ffff800018b7b000 x16: ffff80000830158c x15: ffff8000105773d4
x14: 1ffff00002b520b2 x13: dfff800000000000 x12: 0000000000000003
x11: 0000000000ff0100 x10: 0000000000000003 x9 : 0000000000000000
x8 : 00000000000000e0 x7 : ffff800011e1b66c x6 : 0000000000000000
x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000000
x2 : 0000000000000002 x1 : ffff80001248c5c0 x0 : ffff80019e2fc000
Call trace:
 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline]
 __local_bh_enable_ip+0x238/0x470 kernel/softirq.c:401
 __raw_spin_trylock_bh include/linux/spinlock_api_smp.h:177 [inline]
 _raw_spin_trylock_bh+0x74/0x8c kernel/locking/spinlock.c:146
 spin_trylock_bh include/linux/spinlock.h:411 [inline]
 tipc_sk_rcv+0x37c/0x1940 net/tipc/socket.c:2496
 tipc_node_xmit+0x1b0/0xdac net/tipc/node.c:1703
 tipc_node_xmit_skb net/tipc/node.c:1768 [inline]
 tipc_node_distr_xmit+0x28c/0x3a4 net/tipc/node.c:1783
 tipc_sk_rcv+0x1338/0x1940 net/tipc/socket.c:2501
 tipc_node_xmit+0x1b0/0xdac net/tipc/node.c:1703
 tipc_sk_push_backlog net/tipc/socket.c:1316 [inline]
 tipc_sk_filter_connect net/tipc/socket.c:2255 [inline]
 tipc_sk_filter_rcv+0x1714/0x2d34 net/tipc/socket.c:2364
 tipc_sk_enqueue net/tipc/socket.c:2445 [inline]
 tipc_sk_rcv+0x6e0/0x1940 net/tipc/socket.c:2497
 tipc_node_xmit+0x1b0/0xdac net/tipc/node.c:1703
 tipc_node_xmit_skb net/tipc/node.c:1768 [inline]
 tipc_node_distr_xmit+0x28c/0x3a4 net/tipc/node.c:1783
 tipc_sk_backlog_rcv+0x160/0x210 net/tipc/socket.c:2412
 sk_backlog_rcv include/net/sock.h:1119 [inline]
 __release_sock+0x1a8/0x408 net/core/sock.c:2936
 release_sock+0x68/0x1cc net/core/sock.c:3500
 sk_setsockopt+0x25c4/0x3240
 sock_setsockopt+0x68/0x80 net/core/sock.c:1547
 __sys_setsockopt+0x3f8/0x70c net/socket.c:2284
 __do_sys_setsockopt net/socket.c:2299 [inline]
 __se_sys_setsockopt net/socket.c:2296 [inline]
 __arm64_sys_setsockopt+0xb8/0xd4 net/socket.c:2296
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x98/0x2bc arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:140
 do_el0_svc+0x58/0x13c arch/arm64/kernel/syscall.c:204
 el0_svc+0x58/0x168 arch/arm64/kernel/entry-common.c:637
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:585

Crashes (3):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/12/25 16:42 linux-6.1.y 29f02ec58a94 444551c4 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: soft lockup in sock_setsockopt
2024/12/25 14:48 linux-6.1.y 29f02ec58a94 444551c4 .config console log report syz / log [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: soft lockup in sock_setsockopt
2024/12/25 11:22 linux-6.1.y 29f02ec58a94 444551c4 .config console log report syz / log [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: soft lockup in sock_setsockopt
* Struck through repros no longer work on HEAD.