syzbot

 sign-in | mailing list | source | docs
🐞 Open [366]
🐞 Fixed [5]
🐞 Invalid [2]
Missing Backports [9]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

INFO: rcu detected stall in sendmsg

Status: upstream: reported on 2025/07/31 17:16
Reported-by: syzbot+e8d3f56cde2a4d5e38ae@syzkaller.appspotmail.com
First crash: 50d, last: 28d
Similar bugs (21)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-6.1 INFO: rcu detected stall in sendmsg (5) 1 syz 4 4d13h 88d 0/3 upstream: reported syz repro on 2025/06/23 07:43
linux-6.1 INFO: rcu detected stall in sendmsg (3) 1 4 353d 420d 0/3 auto-obsoleted due to no activity on 2025/01/09 18:13
upstream INFO: rcu detected stall in sendmsg net 1 1 1445d 1445d 0/29 auto-closed as invalid on 2022/01/03 17:11
linux-6.1 INFO: rcu detected stall in sendmsg (4) 1 2 192d 203d 0/3 auto-obsoleted due to no activity on 2025/06/19 03:57
linux-6.1 INFO: rcu detected stall in sendmsg (2) 1 1 542d 542d 0/3 auto-obsoleted due to no activity on 2024/07/04 03:49
upstream INFO: rcu detected stall in sendmsg (2) batman 1 1 1315d 1315d 0/29 auto-closed as invalid on 2022/05/13 12:25
upstream INFO: rcu detected stall in sendmsg (4) net mm 1 C error 59 3d19h 483d 0/29 upstream: reported C repro on 2024/05/24 06:18
upstream INFO: rcu detected stall in sendmsg (3) net 1 4 592d 676d 0/29 auto-obsoleted due to no activity on 2024/05/05 18:15
linux-5.15 INFO: rcu detected stall in sys_sendmsg origin:upstream 1 C error 15 9d06h 549d 0/3 upstream: reported C repro on 2024/03/19 21:37
linux-6.1 INFO: rcu detected stall in sendmsg 1 1 777d 777d 0/3 auto-obsoleted due to no activity on 2023/11/12 19:28
upstream BUG: soft lockup in sys_sendmsg (2) net 1 syz 16 1d15h 106d 0/29 upstream: reported syz repro on 2025/06/05 02:15
upstream INFO: rcu detected stall in sys_sendmsg (2) cgroups mm 1 5 2116d 2118d 0/29 closed as invalid on 2019/12/04 14:14
upstream INFO: rcu detected stall in sys_sendmsg (3) kernel 1 1 2081d 2081d 0/29 closed as invalid on 2020/01/08 05:33
linux-6.1 INFO: rcu detected stall in sys_sendmsg 1 6 356d 442d 0/3 auto-obsoleted due to no activity on 2025/01/06 11:24
upstream INFO: rcu detected stall in sys_sendmsg net 1 C done 2 2197d 2198d 13/29 fixed on 2019/10/09 10:54
android-6-1 BUG: soft lockup in sys_sendmsg origin:upstream 1 C 3 501d 528d 0/2 upstream: reported C repro on 2024/04/09 06:46
linux-6.1 BUG: soft lockup in sys_sendmsg 1 2 830d 836d 0/3 auto-obsoleted due to no activity on 2023/09/20 17:26
android-5-10 BUG: soft lockup in sys_sendmsg 1 C error 52 5d14h 546d 0/2 upstream: reported C repro on 2024/03/22 10:41
upstream BUG: soft lockup in sys_sendmsg tipc batman 1 C 3 544d 585d 25/29 fixed on 2024/05/22 23:36
android-5-15 BUG: soft lockup in sys_sendmsg origin:upstream 1 C error 13 372d 546d 0/2 upstream: reported C repro on 2024/03/22 10:44
linux-6.1 BUG: soft lockup in sys_sendmsg (2) origin:upstream 1 C done 1 531d 531d 3/3 fixed on 2024/05/15 09:17

Sample crash report:
rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
rcu: 	0-....: (1 GPs behind) idle=f3d4/1/0x4000000000000000 softirq=44397/44398 fqs=2100
rcu: 	         hardirqs   softirqs   csw/system
rcu: 	 number: 11079869          0            0
rcu: 	cputime:     5903      46596            0   ==> 52500(ms)
rcu: 	(detected by 1, t=10505 jiffies, g=57013, q=2218 ncpus=2)
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 11556 Comm: syz.3.2163 Not tainted 6.6.102-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
RIP: 0010:check_preemption_disabled+0x47/0x110 lib/smp_processor_id.c:55
Code: 96 75 65 8b 0d 82 5c 96 75 f7 c1 ff ff ff 7f 74 1f 65 48 8b 0c 25 28 00 00 00 48 3b 4c 24 08 0f 85 c4 00 00 00 48 83 c4 10 5b <41> 5e 41 5f 5d c3 48 c7 04 24 00 00 00 00 9c 8f 04 24 f7 04 24 00
RSP: 0018:ffffc90000007940 EFLAGS: 00000082
RAX: 0000000000000000 RBX: 0000000000000000 RCX: b6834d9bb854e900
RDX: 0000000000010100 RSI: ffffffff8afc66a0 RDI: ffffffff8afc6660
RBP: ffffc90000007a18 R08: ffff8880b8e3d37b R09: 1ffff110171c7a6f
R10: dffffc0000000000 R11: ffffed10171c7a70 R12: 1ffff92000000f2c
R13: 0000000000000000 R14: ffff8880b8e3d370 R15: dffffc0000000000
FS:  00007f80813a26c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000200000034000 CR3: 000000002c076000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
Call Trace:
 <IRQ>
 irq_work_run+0x16c/0x2e0 kernel/irq_work.c:263
 __sysvec_irq_work+0x98/0x380 arch/x86/kernel/irq_work.c:22
 instr_sysvec_irq_work arch/x86/kernel/irq_work.c:17 [inline]
 sysvec_irq_work+0x4e/0xc0 arch/x86/kernel/irq_work.c:17
 asm_sysvec_irq_work+0x1a/0x20 arch/x86/include/asm/idtentry.h:723
RIP: 0010:rcu_read_unlock_special+0x88/0x4c0 kernel/rcu/tree_plugin.h:682
Code: f1 f1 f1 00 f2 f2 f2 4a 89 04 2b 66 42 c7 44 2b 09 f3 f3 42 c6 44 2b 0b f3 65 44 8b 35 39 58 93 7e 41 f7 c6 00 00 f0 00 74 45 <48> c7 44 24 40 0e 36 e0 45 4a c7 04 2b 00 00 00 00 66 42 c7 44 2b
RSP: 0018:ffffc90000007b00 EFLAGS: 00000206
RAX: b6834d9bb854e900 RBX: 1ffff92000000f68 RCX: b6834d9bb854e900
RDX: dffffc0000000000 RSI: ffffffff8aaab9c0 RDI: ffffffff8afc66c0
RBP: ffffc90000007bf0 R08: ffffffff90da3507 R09: 1ffffffff21b46a0
R10: dffffc0000000000 R11: fffffbfff21b46a1 R12: ffffffff8cd35400
R13: dffffc0000000000 R14: 0000000000000246 R15: 0000000000000001
 __rcu_read_unlock+0x7c/0xd0 kernel/rcu/tree_plugin.h:426
 rcu_read_unlock include/linux/rcupdate.h:818 [inline]
 ieee80211_iterate_active_interfaces_atomic+0x15a/0x180 net/mac80211/util.c:804
 mac80211_hwsim_beacon+0xbb/0x1b0 drivers/net/wireless/virtual/mac80211_hwsim.c:2295
 __run_hrtimer kernel/time/hrtimer.c:1755 [inline]
 __hrtimer_run_queues+0x51e/0xc40 kernel/time/hrtimer.c:1819
 hrtimer_run_softirq+0x187/0x2b0 kernel/time/hrtimer.c:1836
 handle_softirqs+0x280/0x820 kernel/softirq.c:578
 __do_softirq kernel/softirq.c:612 [inline]
 invoke_softirq kernel/softirq.c:452 [inline]
 __irq_exit_rcu+0xc7/0x190 kernel/softirq.c:661
 irq_exit_rcu+0x9/0x20 kernel/softirq.c:673
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1088 [inline]
 sysvec_apic_timer_interrupt+0xa4/0xc0 arch/x86/kernel/apic/apic.c:1088
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:687
RIP: 0010:console_flush_all+0x889/0xd00 arch/x86/include/asm/irqflags.h:-1
Code: ed 01 00 00 e8 88 27 1b 00 4d 85 ff 48 8b 5c 24 38 75 07 e8 79 27 1b 00 eb 06 e8 72 27 1b 00 fb 49 bf 00 00 00 00 00 fc ff df <48> 8b 44 24 50 42 0f b6 04 38 84 c0 0f 85 2f 02 00 00 80 3b 01 0f
RSP: 0018:ffffc900193b6da0 EFLAGS: 00000283
RAX: ffffffff816a63ae RBX: ffffc900193b6f3f RCX: 0000000000080000
RDX: ffffc9000d50b000 RSI: 000000000000eec7 RDI: 000000000000eec8
RBP: ffffc900193b6f10 R08: ffffffff90da3507 R09: 1ffffffff21b46a0
R10: dffffc0000000000 R11: fffffbfff21b46a1 R12: ffffffff8d4b5c60
R13: 1ffffffff19792b0 R14: ffffffff8d4b5cb8 R15: dffffc0000000000
 console_unlock+0xae/0x340 kernel/printk/printk.c:3069
 vprintk_emit+0x477/0x600 kernel/printk/printk.c:2341
 _printk+0xd0/0x110 kernel/printk/printk.c:2366
 validate_nla lib/nlattr.c:401 [inline]
 __nla_validate_parse+0x1a27/0x2cd0 lib/nlattr.c:613
 __nla_parse+0x40/0x50 lib/nlattr.c:710
 __nlmsg_parse include/net/netlink.h:745 [inline]
 genl_family_rcv_msg_attrs_parse+0x1c6/0x290 net/netlink/genetlink.c:801
 genl_family_rcv_msg_doit+0xb9/0x2f0 net/netlink/genetlink.c:949
 genl_family_rcv_msg net/netlink/genetlink.c:1051 [inline]
 genl_rcv_msg+0x60b/0x790 net/netlink/genetlink.c:1066
 netlink_rcv_skb+0x216/0x480 net/netlink/af_netlink.c:2555
 genl_rcv+0x28/0x40 net/netlink/genetlink.c:1075
 netlink_unicast_kernel net/netlink/af_netlink.c:1330 [inline]
 netlink_unicast+0x751/0x8d0 net/netlink/af_netlink.c:1356
 netlink_sendmsg+0x8c1/0xbe0 net/netlink/af_netlink.c:1904
 sock_sendmsg_nosec net/socket.c:730 [inline]
 __sock_sendmsg net/socket.c:745 [inline]
 ____sys_sendmsg+0x5bf/0x950 net/socket.c:2595
 ___sys_sendmsg+0x220/0x290 net/socket.c:2649
 __sys_sendmsg net/socket.c:2678 [inline]
 __do_sys_sendmsg net/socket.c:2687 [inline]
 __se_sys_sendmsg+0x1a5/0x270 net/socket.c:2685
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x55/0xb0 arch/x86/entry/common.c:81
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7f808058ebe9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f80813a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 00007f80807b5fa0 RCX: 00007f808058ebe9
RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000005
RBP: 00007f8080611e19 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007f80807b6038 R14: 00007f80807b5fa0 R15: 00007ffc467e1538
 </TASK>
NMI backtrace for cpu 0
CPU: 0 PID: 11556 Comm: syz.3.2163 Not tainted 6.6.102-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
RIP: 0010:asm_sysvec_irq_work+0x0/0x20 arch/x86/include/asm/idtentry.h:723
Code: 06 25 ed ff e9 a1 03 00 00 90 f3 0f 1e fa 0f 01 ca fc 6a ff e8 a1 02 00 00 48 89 c4 48 89 e7 e8 f6 06 ed ff e9 81 03 00 00 90 <f3> 0f 1e fa 0f 01 ca fc 6a ff e8 81 02 00 00 48 89 c4 48 89 e7 e8
RSP: 0018:ffffc90000007ad8 EFLAGS: 00000006
RAX: b6834d9bb854e900 RBX: 1ffff92000000f68 RCX: b6834d9bb854e900
RDX: dffffc0000000000 RSI: ffffffff8aaab9c0 RDI: ffffffff8afc66c0
RBP: ffffc90000007bf0 R08: ffffffff90da3507 R09: 1ffffffff21b46a0
R10: dffffc0000000000 R11: fffffbfff21b46a1 R12: ffffffff8cd35400
R13: dffffc0000000000 R14: 0000000000000246 R15: 0000000000000001
FS:  00007f80813a26c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000200000034000 CR3: 000000002c076000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
Call Trace:
 <IRQ>
RIP: 0010:rcu_read_unlock_special+0x88/0x4c0 kernel/rcu/tree_plugin.h:682
Code: f1 f1 f1 00 f2 f2 f2 4a 89 04 2b 66 42 c7 44 2b 09 f3 f3 42 c6 44 2b 0b f3 65 44 8b 35 39 58 93 7e 41 f7 c6 00 00 f0 00 74 45 <48> c7 44 24 40 0e 36 e0 45 4a c7 04 2b 00 00 00 00 66 42 c7 44 2b
RSP: 0018:ffffc90000007b00 EFLAGS: 00000206
 __rcu_read_unlock+0x7c/0xd0 kernel/rcu/tree_plugin.h:426
 rcu_read_unlock include/linux/rcupdate.h:818 [inline]
 ieee80211_iterate_active_interfaces_atomic+0x15a/0x180 net/mac80211/util.c:804
 mac80211_hwsim_beacon+0xbb/0x1b0 drivers/net/wireless/virtual/mac80211_hwsim.c:2295
 __run_hrtimer kernel/time/hrtimer.c:1755 [inline]
 __hrtimer_run_queues+0x51e/0xc40 kernel/time/hrtimer.c:1819
 hrtimer_run_softirq+0x187/0x2b0 kernel/time/hrtimer.c:1836
 handle_softirqs+0x280/0x820 kernel/softirq.c:578
 __do_softirq kernel/softirq.c:612 [inline]
 invoke_softirq kernel/softirq.c:452 [inline]
 __irq_exit_rcu+0xc7/0x190 kernel/softirq.c:661
 irq_exit_rcu+0x9/0x20 kernel/softirq.c:673
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1088 [inline]
 sysvec_apic_timer_interrupt+0xa4/0xc0 arch/x86/kernel/apic/apic.c:1088
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:687
RIP: 0010:console_flush_all+0x889/0xd00 arch/x86/include/asm/irqflags.h:-1
Code: ed 01 00 00 e8 88 27 1b 00 4d 85 ff 48 8b 5c 24 38 75 07 e8 79 27 1b 00 eb 06 e8 72 27 1b 00 fb 49 bf 00 00 00 00 00 fc ff df <48> 8b 44 24 50 42 0f b6 04 38 84 c0 0f 85 2f 02 00 00 80 3b 01 0f
RSP: 0018:ffffc900193b6da0 EFLAGS: 00000283
RAX: ffffffff816a63ae RBX: ffffc900193b6f3f RCX: 0000000000080000
RDX: ffffc9000d50b000 RSI: 000000000000eec7 RDI: 000000000000eec8
RBP: ffffc900193b6f10 R08: ffffffff90da3507 R09: 1ffffffff21b46a0
R10: dffffc0000000000 R11: fffffbfff21b46a1 R12: ffffffff8d4b5c60
R13: 1ffffffff19792b0 R14: ffffffff8d4b5cb8 R15: dffffc0000000000
 console_unlock+0xae/0x340 kernel/printk/printk.c:3069
 vprintk_emit+0x477/0x600 kernel/printk/printk.c:2341
 _printk+0xd0/0x110 kernel/printk/printk.c:2366
 validate_nla lib/nlattr.c:401 [inline]
 __nla_validate_parse+0x1a27/0x2cd0 lib/nlattr.c:613
 __nla_parse+0x40/0x50 lib/nlattr.c:710
 __nlmsg_parse include/net/netlink.h:745 [inline]
 genl_family_rcv_msg_attrs_parse+0x1c6/0x290 net/netlink/genetlink.c:801
 genl_family_rcv_msg_doit+0xb9/0x2f0 net/netlink/genetlink.c:949
 genl_family_rcv_msg net/netlink/genetlink.c:1051 [inline]
 genl_rcv_msg+0x60b/0x790 net/netlink/genetlink.c:1066
 netlink_rcv_skb+0x216/0x480 net/netlink/af_netlink.c:2555
 genl_rcv+0x28/0x40 net/netlink/genetlink.c:1075
 netlink_unicast_kernel net/netlink/af_netlink.c:1330 [inline]
 netlink_unicast+0x751/0x8d0 net/netlink/af_netlink.c:1356
 netlink_sendmsg+0x8c1/0xbe0 net/netlink/af_netlink.c:1904
 sock_sendmsg_nosec net/socket.c:730 [inline]
 __sock_sendmsg net/socket.c:745 [inline]
 ____sys_sendmsg+0x5bf/0x950 net/socket.c:2595
 ___sys_sendmsg+0x220/0x290 net/socket.c:2649
 __sys_sendmsg net/socket.c:2678 [inline]
 __do_sys_sendmsg net/socket.c:2687 [inline]
 __se_sys_sendmsg+0x1a5/0x270 net/socket.c:2685
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x55/0xb0 arch/x86/entry/common.c:81
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7f808058ebe9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f80813a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 00007f80807b5fa0 RCX: 00007f808058ebe9
RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000005
RBP: 00007f8080611e19 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007f80807b6038 R14: 00007f80807b5fa0 R15: 00007ffc467e1538
 </TASK>
NMI backtrace for cpu 0
CPU: 0 PID: 11556 Comm: syz.3.2163 Not tainted 6.6.102-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
RIP: 0010:lockdep_hardirqs_on_prepare+0xf3/0x760 kernel/locking/lockdep.c:4346
Code: 84 c0 0f 85 0b 05 00 00 83 3d 58 dc 83 15 00 75 6c 48 c7 44 24 40 00 00 00 00 9c 8f 44 24 40 f6 44 24 41 02 0f 85 87 03 00 00 <48> c7 c0 60 a4 ea 96 48 c1 e8 03 0f b6 04 10 84 c0 0f 85 78 05 00
RSP: 0018:ffffc90000007980 EFLAGS: 00000046
RAX: 0000000000000004 RBX: 1ffff92000000f34 RCX: ffffffff96eaa403
RDX: dffffc0000000000 RSI: ffffffff8afc66a0 RDI: ffffffff8afc6660
RBP: ffffc90000007a40 R08: ffffffff8e4a882f R09: 1ffffffff1c95105
R10: dffffc0000000000 R11: fffffbfff1c95106 R12: 0000000000000000
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
FS:  00007f80813a26c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000200000034000 CR3: 000000002c076000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
Call Trace:
 <IRQ>
 trace_hardirqs_on+0x28/0x40 kernel/trace/trace_preemptirq.c:61
 asm_sysvec_irq_work+0x1a/0x20 arch/x86/include/asm/idtentry.h:723
RIP: 0010:rcu_read_unlock_special+0x88/0x4c0 kernel/rcu/tree_plugin.h:682
Code: f1 f1 f1 00 f2 f2 f2 4a 89 04 2b 66 42 c7 44 2b 09 f3 f3 42 c6 44 2b 0b f3 65 44 8b 35 39 58 93 7e 41 f7 c6 00 00 f0 00 74 45 <48> c7 44 24 40 0e 36 e0 45 4a c7 04 2b 00 00 00 00 66 42 c7 44 2b
RSP: 0018:ffffc90000007b00 EFLAGS: 00000206
RAX: b6834d9bb854e900 RBX: 1ffff92000000f68 RCX: b6834d9bb854e900
RDX: dffffc0000000000 RSI: ffffffff8aaab9c0 RDI: ffffffff8afc66c0
RBP: ffffc90000007bf0 R08: ffffffff90da3507 R09: 1ffffffff21b46a0
R10: dffffc0000000000 R11: fffffbfff21b46a1 R12: ffffffff8cd35400
R13: dffffc0000000000 R14: 0000000000000246 R15: 0000000000000001
 __rcu_read_unlock+0x7c/0xd0 kernel/rcu/tree_plugin.h:426
 rcu_read_unlock include/linux/rcupdate.h:818 [inline]
 ieee80211_iterate_active_interfaces_atomic+0x15a/0x180 net/mac80211/util.c:804
 mac80211_hwsim_beacon+0xbb/0x1b0 drivers/net/wireless/virtual/mac80211_hwsim.c:2295
 __run_hrtimer kernel/time/hrtimer.c:1755 [inline]
 __hrtimer_run_queues+0x51e/0xc40 kernel/time/hrtimer.c:1819
 hrtimer_run_softirq+0x187/0x2b0 kernel/time/hrtimer.c:1836
 handle_softirqs+0x280/0x820 kernel/softirq.c:578
 __do_softirq kernel/softirq.c:612 [inline]
 invoke_softirq kernel/softirq.c:452 [inline]
 __irq_exit_rcu+0xc7/0x190 kernel/softirq.c:661
 irq_exit_rcu+0x9/0x20 kernel/softirq.c:673
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1088 [inline]
 sysvec_apic_timer_interrupt+0xa4/0xc0 arch/x86/kernel/apic/apic.c:1088
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:687
RIP: 0010:console_flush_all+0x889/0xd00 arch/x86/include/asm/irqflags.h:-1
Code: ed 01 00 00 e8 88 27 1b 00 4d 85 ff 48 8b 5c 24 38 75 07 e8 79 27 1b 00 eb 06 e8 72 27 1b 00 fb 49 bf 00 00 00 00 00 fc ff df <48> 8b 44 24 50 42 0f b6 04 38 84 c0 0f 85 2f 02 00 00 80 3b 01 0f
RSP: 0018:ffffc900193b6da0 EFLAGS: 00000283
RAX: ffffffff816a63ae RBX: ffffc900193b6f3f RCX: 0000000000080000
RDX: ffffc9000d50b000 RSI: 000000000000eec7 RDI: 000000000000eec8
RBP: ffffc900193b6f10 R08: ffffffff90da3507 R09: 1ffffffff21b46a0
R10: dffffc0000000000 R11: fffffbfff21b46a1 R12: ffffffff8d4b5c60
R13: 1ffffffff19792b0 R14: ffffffff8d4b5cb8 R15: dffffc0000000000
 console_unlock+0xae/0x340 kernel/printk/printk.c:3069
 vprintk_emit+0x477/0x600 kernel/printk/printk.c:2341
 _printk+0xd0/0x110 kernel/printk/printk.c:2366
 validate_nla lib/nlattr.c:401 [inline]
 __nla_validate_parse+0x1a27/0x2cd0 lib/nlattr.c:613
 __nla_parse+0x40/0x50 lib/nlattr.c:710
 __nlmsg_parse include/net/netlink.h:745 [inline]
 genl_family_rcv_msg_attrs_parse+0x1c6/0x290 net/netlink/genetlink.c:801
 genl_family_rcv_msg_doit+0xb9/0x2f0 net/netlink/genetlink.c:949
 genl_family_rcv_msg net/netlink/genetlink.c:1051 [inline]
 genl_rcv_msg+0x60b/0x790 net/netlink/genetlink.c:1066
 netlink_rcv_skb+0x216/0x480 net/netlink/af_netlink.c:2555
 genl_rcv+0x28/0x40 net/netlink/genetlink.c:1075
 netlink_unicast_kernel net/netlink/af_netlink.c:1330 [inline]
 netlink_unicast+0x751/0x8d0 net/netlink/af_netlink.c:1356
 netlink_sendmsg+0x8c1/0xbe0 net/netlink/af_netlink.c:1904
 sock_sendmsg_nosec net/socket.c:730 [inline]
 __sock_sendmsg net/socket.c:745 [inline]
 ____sys_sendmsg+0x5bf/0x950 net/socket.c:2595
 ___sys_sendmsg+0x220/0x290 net/socket.c:2649
 __sys_sendmsg net/socket.c:2678 [inline]
 __do_sys_sendmsg net/socket.c:2687 [inline]
 __se_sys_sendmsg+0x1a5/0x270 net/socket.c:2685
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x55/0xb0 arch/x86/entry/common.c:81
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7f808058ebe9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f80813a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 00007f80807b5fa0 RCX: 00007f808058ebe9
RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000005
RBP: 00007f8080611e19 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007f80807b6038 R14: 00007f80807b5fa0 R15: 00007ffc467e1538
 </TASK>

Crashes (2):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/08/22 19:57 linux-6.6.y bb9c90ab9c5a bf27483f .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-6-kasan-perf INFO: rcu detected stall in sendmsg
2025/07/31 17:15 linux-6.6.y dbcb8d8e4163 0c075d67 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-6-kasan-perf INFO: rcu detected stall in sendmsg
* Struck through repros no longer work on HEAD.