syzbot

 sign-in | mailing list | source | docs
🐞 Open [196] 🐞 Fixed [42] 🐞 Invalid [470] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

INFO: task hung in addrconf_verify_work

Status: auto-closed as invalid on 2020/01/31 12:44
Reported-by: syzbot+ea3f52dab52206dc815a@syzkaller.appspotmail.com
First crash: 2211d, last: 1665d
Similar bugs (20)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-6.1 INFO: task hung in addrconf_verify_work (2) 3 40d 85d 0/3 upstream: reported on 2024/01/29 22:05
linux-4.19 INFO: task hung in addrconf_verify_work (5) 3 651d 690d 0/1 auto-obsoleted due to no activity on 2022/11/10 09:18
linux-4.19 INFO: task hung in addrconf_verify_work (6) C error 4 432d 492d 0/1 upstream: reported C repro on 2022/12/19 15:22
linux-4.19 INFO: task hung in addrconf_verify_work (3) 1 1138d 1138d 0/1 auto-closed as invalid on 2021/07/11 07:19
linux-4.19 INFO: task hung in addrconf_verify_work (4) 6 832d 919d 0/1 auto-closed as invalid on 2022/05/13 00:19
linux-4.14 INFO: task hung in addrconf_verify_work (2) C error 7 430d 1274d 0/1 upstream: reported C repro on 2020/10/28 05:47
upstream INFO: task hung in addrconf_verify_work (2) net C 22 1654d 1654d 13/26 fixed on 2019/11/04 14:50
linux-4.19 INFO: task hung in addrconf_verify_work (2) 2 1278d 1367d 0/1 auto-closed as invalid on 2021/02/21 08:05
android-414 INFO: task hung in addrconf_verify_work C 6 1654d 1839d 0/1 public: reported C repro on 2019/04/12 00:01
upstream INFO: task hung in addrconf_verify_work (8) net C error 64 17d 128d 0/26 upstream: reported C repro on 2023/12/18 14:44
android-44 INFO: task hung in addrconf_verify_work 3 2171d 2200d 0/2 auto-closed as invalid on 2019/02/22 14:29
linux-4.19 INFO: task hung in addrconf_verify_work 1 1497d 1497d 0/1 auto-closed as invalid on 2020/07/16 23:17
upstream INFO: task hung in addrconf_verify_work (3) C done 75 1268d 1302d 15/26 fixed on 2020/11/16 12:12
upstream INFO: task hung in addrconf_verify_work (5) net C done done 68 846d 938d 0/26 closed as invalid on 2022/02/01 17:39
upstream INFO: task hung in addrconf_verify_work (7) netfilter C error 64 146d 293d 0/26 closed as invalid on 2023/12/01 14:19
linux-6.1 INFO: task hung in addrconf_verify_work 2 355d 406d 0/3 auto-obsoleted due to no activity on 2023/08/23 09:09
linux-4.14 INFO: task hung in addrconf_verify_work 4 1423d 1495d 0/1 auto-closed as invalid on 2020/09/29 04:19
upstream INFO: task hung in addrconf_verify_work net C 2 2220d 2220d 0/26 closed as invalid on 2018/03/27 11:14
upstream INFO: task hung in addrconf_verify_work (4) C done 132 1159d 1246d 20/26 fixed on 2021/04/09 19:46
upstream INFO: task hung in addrconf_verify_work (6) C done 86 428d 666d 22/26 fixed on 2023/02/24 13:51

Sample crash report:
   Free memory is -12012kB above reserved
lowmemorykiller: Killing 'syz-executor.1' (6784) (tgid 6784), adj 1000,
   to free 34964kB on behalf of 'udevd' (15682) because
   cache 180kB is below limit 6144kB for oom_score_adj 0
   Free memory is -12012kB above reserved
INFO: task kworker/1:0:24241 blocked for more than 140 seconds.
      Not tainted 4.9.194+ #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
kworker/1:0     D27384 24241      2 0x80000000
Workqueue: ipv6_addrconf addrconf_verify_work
 0000000000000083 ffff8801c53ac740 ffff8801d3b44d00 ffff8801db721000
 ffff8801a568c740 ffff8801db721018 ffff8801a1fe7a88 ffffffff8281af8e
 ffff8801a6b247c0 ffff8801a6b247d0 00ff8801db7210a0 ffff8801db7218f0
Call Trace:
 [<00000000d1236a7b>] schedule+0x92/0x1c0 kernel/sched/core.c:3546
 [<00000000b66882bc>] schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3579
 [<000000006360c4d7>] __mutex_lock_common kernel/locking/mutex.c:582 [inline]
 [<000000006360c4d7>] mutex_lock_nested+0x38d/0x920 kernel/locking/mutex.c:621
 [<00000000f70d1d0a>] rtnl_lock+0x17/0x20 net/core/rtnetlink.c:70
 [<0000000061f81d17>] addrconf_verify_work+0xe/0x20 net/ipv6/addrconf.c:4367
 [<00000000888bda27>] process_one_work+0x88b/0x1600 kernel/workqueue.c:2114
 [<00000000888f41b8>] worker_thread+0x5df/0x11d0 kernel/workqueue.c:2251
 [<000000008970da4c>] kthread+0x278/0x310 kernel/kthread.c:211
 [<00000000df4f8674>] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:375
INFO: lockdep is turned off.
NMI backtrace for cpu 1
CPU: 1 PID: 24 Comm: khungtaskd Not tainted 4.9.194+ #0
 ffff8801d98d7cc8 ffffffff81b67001 0000000000000001 0000000000000000
 0000000000000001 ffffffff81099d01 dffffc0000000000 ffff8801d98d7d00
 ffffffff81b7229c 0000000000000001 0000000000000000 0000000000000001
Call Trace:
 [<000000009c492a51>] __dump_stack lib/dump_stack.c:15 [inline]
 [<000000009c492a51>] dump_stack+0xc1/0x120 lib/dump_stack.c:51
 [<000000004d94a85e>] nmi_cpu_backtrace.cold+0x47/0x87 lib/nmi_backtrace.c:99
 [<000000000ac8e381>] nmi_trigger_cpumask_backtrace+0x124/0x155 lib/nmi_backtrace.c:60
 [<0000000059a385d5>] arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:37
 [<00000000b72212e8>] trigger_all_cpu_backtrace include/linux/nmi.h:58 [inline]
 [<00000000b72212e8>] check_hung_task kernel/hung_task.c:126 [inline]
 [<00000000b72212e8>] check_hung_uninterruptible_tasks kernel/hung_task.c:183 [inline]
 [<00000000b72212e8>] watchdog+0x670/0xaf0 kernel/hung_task.c:263
 [<000000008970da4c>] kthread+0x278/0x310 kernel/kthread.c:211
 [<00000000df4f8674>] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:375
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 17040 Comm: blkid Not tainted 4.9.194+ #0
task: 00000000b165297c task.stack: 000000003b832e30
RIP: 0010:[<ffffffff8221411c>] c [<000000000856b584>] __read_once_size include/linux/compiler.h:264 [inline]
RIP: 0010:[<ffffffff8221411c>] c [<000000000856b584>] lowmem_scan+0x42c/0xb70 drivers/staging/android/lowmemorykiller.c:284
RSP: 0018:ffff8801a42076f0  EFLAGS: 00000246
RAX: 1ffff1003a7b2c63 RBX: ffff8801d3d95f00 RCX: 0000000000000000
RDX: 0000000000000000 RSI: ffffffff82214103 RDI: ffff8801d3d96318
RBP: ffff8801a4207790 R08: ffff8801d3d966c0 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: ffff8801d3d95f00 R14: 00000000000000c6 R15: 0000000000000000
FS:  00007fd7965f5740(0000) GS:ffff8801db600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f35a251f000 CR3: 00000001c47f7000 CR4: 00000000001606b0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Stack:
 ffffffff82213f2fc ffffffff8220802fc ffff880100000001c 0000000000000000c
 ffff8801d2092f80c ffff8801d67bf458c ffff8801d67bf4b0c ffff8801a4207860c
 fffffbfff0601200c 0000023d00000600c ffff8801d3d966c0c ffff8801d64e17c0c
Call Trace:
 [<00000000774d7a36>] do_shrink_slab mm/vmscan.c:399 [inline]
 [<00000000774d7a36>] shrink_slab.part.0+0x3cf/0xa20 mm/vmscan.c:502
 [<00000000e6ef8023>] shrink_slab mm/vmscan.c:466 [inline]
 [<00000000e6ef8023>] shrink_node+0x1ed/0x750 mm/vmscan.c:2604
 [<0000000006c4a47c>] shrink_zones mm/vmscan.c:2751 [inline]
 [<0000000006c4a47c>] do_try_to_free_pages mm/vmscan.c:2793 [inline]
 [<0000000006c4a47c>] try_to_free_pages+0x397/0xbd0 mm/vmscan.c:3004
 [<000000006c0f503d>] __perform_reclaim mm/page_alloc.c:3332 [inline]
 [<000000006c0f503d>] __alloc_pages_direct_reclaim mm/page_alloc.c:3354 [inline]
 [<000000006c0f503d>] __alloc_pages_slowpath mm/page_alloc.c:3704 [inline]
 [<000000006c0f503d>] __alloc_pages_nodemask+0x930/0x1a80 mm/page_alloc.c:3861
 [<000000006f4266fa>] __alloc_pages include/linux/gfp.h:433 [inline]
 [<000000006f4266fa>] __alloc_pages_node include/linux/gfp.h:446 [inline]
 [<000000006f4266fa>] alloc_pages_node include/linux/gfp.h:460 [inline]
 [<000000006f4266fa>] alloc_zeroed_user_highpage_movable include/linux/highmem.h:183 [inline]
 [<000000006f4266fa>] do_anonymous_page mm/memory.c:2761 [inline]
 [<000000006f4266fa>] handle_pte_fault mm/memory.c:3545 [inline]
 [<000000006f4266fa>] __handle_mm_fault mm/memory.c:3634 [inline]
 [<000000006f4266fa>] handle_mm_fault+0x12e1/0x2420 mm/memory.c:3671
 [<00000000fe958255>] __do_page_fault+0x3f0/0xa60 arch/x86/mm/fault.c:1401
 [<00000000659b128f>] do_page_fault+0x28/0x30 arch/x86/mm/fault.c:1464
 [<00000000ec681b3a>] page_fault+0x25/0x30 arch/x86/entry/entry_64.S:956
Code: c66 c44 c89 c7d cc0 c44 c89 c75 cac c48 c89 c5d cb8 ce8 cfd ce5 c10 cff c49 c8d cbd c18 c04 c00 c00 c48 c89 cf8 c48 cc1 ce8 c03 c42 c80 c3c c20 c00 c0f c85 c86 c05 c00 c00 c<49> c8b c9d c18 c04 c00 c00 c4c c8d cab ce8 cfb cff cff c48 c81 cfb c98 c15 c03 c83 c

Crashes (18):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2019/10/03 12:43 https://android.googlesource.com/kernel/common android-4.9 7fe05eede1c8 fc17ba49 .config console log report ci-android-49-kasan-gce-root
2019/04/15 10:40 https://android.googlesource.com/kernel/common android-4.9 fc67a895f0a5 505ab413 .config console log report ci-android-49-kasan-gce-root
2019/03/14 11:02 https://android.googlesource.com/kernel/common android-4.9 8fe428403e30 d09a902e .config console log report ci-android-49-kasan-gce
2019/03/07 03:33 https://android.googlesource.com/kernel/common android-4.9 8fe428403e30 18215b8d .config console log report ci-android-49-kasan-gce
2018/10/16 19:22 https://android.googlesource.com/kernel/common android-4.9 a144472d407b 1ba7fd7e .config console log report ci-android-49-kasan-gce-root
2018/09/09 20:52 https://android.googlesource.com/kernel/common android-4.9 dcae9fa1319b 6b5120a4 .config console log report ci-android-49-kasan-gce-root
2018/09/06 10:31 https://android.googlesource.com/kernel/common android-4.9 dcae9fa1319b 0bb7a7eb .config console log report ci-android-49-kasan-gce-root
2018/08/09 10:14 https://android.googlesource.com/kernel/common android-4.9 856452b4f22e 2eeda842 .config console log report ci-android-49-kasan-gce-root
2018/05/16 00:16 https://android.googlesource.com/kernel/common android-4.9 74fa0af47306 68ce85f1 .config console log report ci-android-49-kasan-gce-root
2018/04/18 17:50 https://android.googlesource.com/kernel/common android-4.9 8683408f8e81 52643b44 .config console log report ci-android-49-kasan-gce
2018/04/16 14:25 https://android.googlesource.com/kernel/common android-4.9 8683408f8e81 802ac912 .config console log report ci-android-49-kasan-gce
2018/04/13 09:28 https://android.googlesource.com/kernel/common android-4.9 cb023581bd03 0a0c5db6 .config console log report ci-android-49-kasan-gce
2018/04/11 03:48 https://android.googlesource.com/kernel/common android-4.9 f6bec4e8c771 8b8de427 .config console log report ci-android-49-kasan-gce
2019/09/27 01:15 https://android.googlesource.com/kernel/common android-4.9 8fe428403e30 2f1548bc .config console log report ci-android-49-kasan-gce-386
2019/02/27 21:45 https://android.googlesource.com/kernel/common android-4.9 8fe428403e30 083cfd0e .config console log report ci-android-49-kasan-gce-386
2018/05/02 16:07 https://android.googlesource.com/kernel/common android-4.9 1321d4226176 d5b114b4 .config console log report ci-android-49-kasan-gce-386
2018/04/13 09:28 https://android.googlesource.com/kernel/common android-4.9 cb023581bd03 0a0c5db6 .config console log report ci-android-49-kasan-gce-386
2018/04/05 17:16 https://android.googlesource.com/kernel/common android-4.9 7cd956196346 5e1ccffc .config console log report ci-android-49-kasan-gce-386
* Struck through repros no longer work on HEAD.