syzbot

 sign-in | mailing list | source | docs
🐞 Open [950] 🐞 Fixed [4020] 🐞 Invalid [8931] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes

INFO: rcu detected stall in rtnl_newlink

Status: upstream: reported C repro on 2020/07/24 05:44
Reported-by: syzbot+d46d08c4209a3a86ccc5@syzkaller.appspotmail.com
First crash: 796d, last: 6d17h

Cause bisection: the issue happens on the oldest tested release (bisect log)
Crash: WARNING in sysfs_warn_dup (log)
Repro: C syz .config
similar bugs (2):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.19 INFO: rcu detected stall in rtnl_newlink C error 5 226d 796d 0/1 upstream: reported C repro on 2020/07/24 01:06
linux-4.14 BUG: soft lockup in rtnl_newlink 1 245d 245d 0/1 auto-closed as invalid on 2022/05/26 06:33

Sample crash report:
rcu: INFO: rcu_preempt self-detected stall on CPU
rcu: 	1-...!: (10491 ticks this GP) idle=edf/1/0x4000000000000000 softirq=5354/5356 fqs=12 
	(t=10502 jiffies g=4489 q=2 ncpus=2)
rcu: rcu_preempt kthread timer wakeup didn't happen for 10478 jiffies! g4489 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
rcu: 	Possible timer handling issue on cpu=0 timer-softirq=2592
rcu: rcu_preempt kthread starved for 10481 jiffies! g4489 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=0
rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
rcu: RCU grace-period kthread stack dump:
task:rcu_preempt     state:I stack:29376 pid:   16 ppid:     2 flags:0x00004000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5146 [inline]
 __schedule+0xa00/0x4b50 kernel/sched/core.c:6458
 schedule+0xd2/0x1f0 kernel/sched/core.c:6530
 schedule_timeout+0x14a/0x2a0 kernel/time/timer.c:1935
 rcu_gp_fqs_loop+0x186/0x810 kernel/rcu/tree.c:1999
 rcu_gp_kthread+0x1de/0x320 kernel/rcu/tree.c:2187
 kthread+0x2e9/0x3a0 kernel/kthread.c:376
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:302
 </TASK>
rcu: Stack dump where RCU GP kthread last ran:
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 11 Comm: kworker/u4:1 Not tainted 5.19.0-rc4-syzkaller-00014-g941e3e791269 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet
RIP: 0010:kvm_wait+0x98/0x100 arch/x86/kernel/kvm.c:1071
Code: fa 83 e2 07 38 d0 7f 04 84 c0 75 63 0f b6 07 40 38 c6 74 35 48 83 c4 10 c3 c3 e8 23 c4 4b 00 66 90 0f 00 2d fa ac 94 08 fb f4 <48> 83 c4 10 c3 89 74 24 0c 48 89 3c 24 e8 f6 c2 4b 00 8b 74 24 0c
RSP: 0018:ffffc900001079f0 EFLAGS: 00000256
RAX: 0000000000064e00 RBX: 0000000000000000 RCX: 1ffffffff20da6be
RDX: 0000000000000000 RSI: 0000000000000201 RDI: 0000000000000000
RBP: ffff888074735328 R08: 0000000000000001 R09: ffffffff9067f9df
R10: 0000000000000001 R11: 1ffffffff1fba2e6 R12: 0000000000000000
R13: ffffed100e8e6a65 R14: 0000000000000001 R15: ffff8880b9a3ad00
FS:  0000000000000000(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000561898e7f088 CR3: 0000000071728000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 pv_wait arch/x86/include/asm/paravirt.h:603 [inline]
 pv_wait_head_or_lock kernel/locking/qspinlock_paravirt.h:470 [inline]
 __pv_queued_spin_lock_slowpath+0x8c7/0xb50 kernel/locking/qspinlock.c:511
 pv_queued_spin_lock_slowpath arch/x86/include/asm/paravirt.h:591 [inline]
 queued_spin_lock_slowpath arch/x86/include/asm/qspinlock.h:51 [inline]
 queued_spin_lock include/asm-generic/qspinlock.h:114 [inline]
 do_raw_spin_lock+0x200/0x2a0 kernel/locking/spinlock_debug.c:115
 spin_lock_bh include/linux/spinlock.h:354 [inline]
 batadv_tt_local_commit_changes+0x1a/0x30 net/batman-adv/translation-table.c:3718
 batadv_iv_ogm_schedule_buff+0x10d8/0x1430 net/batman-adv/bat_iv_ogm.c:812
 batadv_iv_ogm_schedule net/batman-adv/bat_iv_ogm.c:869 [inline]
 batadv_iv_ogm_schedule net/batman-adv/bat_iv_ogm.c:862 [inline]
 batadv_iv_send_outstanding_bat_ogm_packet+0x740/0x910 net/batman-adv/bat_iv_ogm.c:1713
 process_one_work+0x996/0x1610 kernel/workqueue.c:2289
 worker_thread+0x665/0x1080 kernel/workqueue.c:2436
 kthread+0x2e9/0x3a0 kernel/kthread.c:376
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:302
 </TASK>
NMI backtrace for cpu 1
CPU: 1 PID: 3638 Comm: syz-executor235 Not tainted 5.19.0-rc4-syzkaller-00014-g941e3e791269 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106
 nmi_cpu_backtrace.cold+0x47/0x144 lib/nmi_backtrace.c:111
 nmi_trigger_cpumask_backtrace+0x1e6/0x230 lib/nmi_backtrace.c:62
 trigger_single_cpu_backtrace include/linux/nmi.h:164 [inline]
 rcu_dump_cpu_stacks+0x262/0x3f0 kernel/rcu/tree_stall.h:371
 print_cpu_stall kernel/rcu/tree_stall.h:667 [inline]
 check_cpu_stall kernel/rcu/tree_stall.h:751 [inline]
 rcu_pending kernel/rcu/tree.c:3977 [inline]
 rcu_sched_clock_irq.cold+0x144/0x8fc kernel/rcu/tree.c:2675
 update_process_times+0x11a/0x1a0 kernel/time/timer.c:1839
 tick_sched_handle+0x9b/0x180 kernel/time/tick-sched.c:243
 tick_sched_timer+0xee/0x120 kernel/time/tick-sched.c:1480
 __run_hrtimer kernel/time/hrtimer.c:1685 [inline]
 __hrtimer_run_queues+0x1c0/0xe50 kernel/time/hrtimer.c:1749
 hrtimer_interrupt+0x31c/0x790 kernel/time/hrtimer.c:1811
 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1095 [inline]
 __sysvec_apic_timer_interrupt+0x146/0x530 arch/x86/kernel/apic/apic.c:1112
 sysvec_apic_timer_interrupt+0x8e/0xc0 arch/x86/kernel/apic/apic.c:1106
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1b/0x20 arch/x86/include/asm/idtentry.h:649
RIP: 0010:lock_is_held_type+0xff/0x140 kernel/locking/lockdep.c:5713
Code: 00 00 b8 ff ff ff ff 65 0f c1 05 c4 51 8b 76 83 f8 01 75 29 9c 58 f6 c4 02 75 3d 48 f7 04 24 00 02 00 00 74 01 fb 48 83 c4 08 <44> 89 e8 5b 5d 41 5c 41 5d 41 5e 41 5f c3 45 31 ed eb b9 0f 0b 48
RSP: 0018:ffffc900030ef248 EFLAGS: 00000286
RAX: 0000000000000046 RBX: 0000000000000002 RCX: 0000000000000001
RDX: 0000000000000000 RSI: 0000000000000403 RDI: 0000000000000000
RBP: ffffffff8bd865a0 R08: 0000000000000000 R09: ffffffff8dbb8d57
R10: fffffbfff1b771aa R11: 0000000000000000 R12: ffff88801f851d80
R13: 0000000000000000 R14: 00000000ffffffff R15: ffff88801f852808
 lock_is_held include/linux/lockdep.h:279 [inline]
 rcu_read_lock_sched_held+0x3a/0x70 kernel/rcu/update.c:125
 trace_lock_acquire include/trace/events/lock.h:24 [inline]
 lock_acquire+0x480/0x570 kernel/locking/lockdep.c:5636
 __raw_spin_lock_bh include/linux/spinlock_api_smp.h:126 [inline]
 _raw_spin_lock_bh+0x2f/0x40 kernel/locking/spinlock.c:178
 spin_lock_bh include/linux/spinlock.h:354 [inline]
 batadv_tt_local_purge_pending_clients+0x112/0x4d0 net/batman-adv/translation-table.c:3655
 batadv_tt_local_resize_to_mtu+0x96/0x130 net/batman-adv/translation-table.c:3958
 batadv_hardif_activate_interface.part.0.cold+0x14c/0x1ba net/batman-adv/hard-interface.c:664
 batadv_hardif_activate_interface net/batman-adv/hard-interface.c:755 [inline]
 batadv_hardif_enable_interface+0xaba/0xac0 net/batman-adv/hard-interface.c:747
 batadv_softif_slave_add+0x64/0x130 net/batman-adv/soft-interface.c:839
 do_set_master+0x1c8/0x220 net/core/rtnetlink.c:2577
 rtnl_newlink_create net/core/rtnetlink.c:3380 [inline]
 __rtnl_newlink+0x13ac/0x17e0 net/core/rtnetlink.c:3580
 rtnl_newlink+0x64/0xa0 net/core/rtnetlink.c:3593
 rtnetlink_rcv_msg+0x43a/0xc90 net/core/rtnetlink.c:6089
 netlink_rcv_skb+0x153/0x420 net/netlink/af_netlink.c:2501
 netlink_unicast_kernel net/netlink/af_netlink.c:1319 [inline]
 netlink_unicast+0x543/0x7f0 net/netlink/af_netlink.c:1345
 netlink_sendmsg+0x917/0xe10 net/netlink/af_netlink.c:1921
 sock_sendmsg_nosec net/socket.c:714 [inline]
 sock_sendmsg+0xcf/0x120 net/socket.c:734
 ____sys_sendmsg+0x6eb/0x810 net/socket.c:2492
 ___sys_sendmsg+0xf3/0x170 net/socket.c:2546
 __sys_sendmsg net/socket.c:2575 [inline]
 __do_sys_sendmsg net/socket.c:2584 [inline]
 __se_sys_sendmsg net/socket.c:2582 [inline]
 __x64_sys_sendmsg+0x132/0x220 net/socket.c:2582
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x46/0xb0
RIP: 0033:0x7f3e5b3bed39

================================
WARNING: inconsistent lock state
5.19.0-rc4-syzkaller-00014-g941e3e791269 #0 Not tainted
--------------------------------
inconsistent {HARDIRQ-ON-W} -> {IN-HARDIRQ-W} usage.
syz-executor235/3638 [HC1[1]:SC0[4]:HE0:SE0] takes:
ffffffff8beb8358 (vmap_area_lock){?.+.}-{2:2}, at: spin_lock include/linux/spinlock.h:349 [inline]
ffffffff8beb8358 (vmap_area_lock){?.+.}-{2:2}, at: find_vmap_area+0x1c/0x130 mm/vmalloc.c:1805
{HARDIRQ-ON-W} state was registered at:
  lock_acquire kernel/locking/lockdep.c:5665 [inline]
  lock_acquire+0x1ab/0x570 kernel/locking/lockdep.c:5630
  __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline]
  _raw_spin_lock+0x2a/0x40 kernel/locking/spinlock.c:154
  spin_lock include/linux/spinlock.h:349 [inline]
  alloc_vmap_area+0xa49/0x1f00 mm/vmalloc.c:1586
  __get_vm_area_node+0x142/0x3f0 mm/vmalloc.c:2453
  get_vm_area_caller+0x43/0x50 mm/vmalloc.c:2506
  __ioremap_caller.constprop.0+0x292/0x600 arch/x86/mm/ioremap.c:280
  acpi_os_ioremap include/acpi/acpi_io.h:13 [inline]
  acpi_map drivers/acpi/osl.c:296 [inline]
  acpi_os_map_iomem+0x463/0x550 drivers/acpi/osl.c:355
  acpi_tb_acquire_table+0xd8/0x209 drivers/acpi/acpica/tbdata.c:142
  acpi_tb_validate_table drivers/acpi/acpica/tbdata.c:317 [inline]
  acpi_tb_validate_table+0x50/0x8c drivers/acpi/acpica/tbdata.c:308
  acpi_tb_verify_temp_table+0x84/0x674 drivers/acpi/acpica/tbdata.c:504
  acpi_reallocate_root_table+0x374/0x3e0 drivers/acpi/acpica/tbxface.c:180
  acpi_early_init+0x13a/0x438 drivers/acpi/bus.c:1200
  start_kernel+0x3cf/0x48f init/main.c:1098
  secondary_startup_64_no_verify+0xce/0xdb
irq event stamp: 366918881
hardirqs last  enabled at (366918880): [<ffffffff81484e60>] __local_bh_enable_ip+0xa0/0x120 kernel/softirq.c:401
hardirqs last disabled at (366918881): [<ffffffff89771b7b>] sysvec_apic_timer_interrupt+0xb/0xc0 arch/x86/kernel/apic/apic.c:1106
softirqs last  enabled at (3188): [<ffffffff81484aa3>] invoke_softirq kernel/softirq.c:445 [inline]
softirqs last  enabled at (3188): [<ffffffff81484aa3>] __irq_exit_rcu+0x123/0x180 kernel/softirq.c:650
softirqs last disabled at (3194): [<ffffffff8914ce6d>] spin_lock_bh include/linux/spinlock.h:354 [inline]
softirqs last disabled at (3194): [<ffffffff8914ce6d>] batadv_tt_local_resize_to_mtu+0x7d/0x130 net/batman-adv/translation-table.c:3950

other info that might help us debug this:
 Possible unsafe locking scenario:

       CPU0
       ----
  lock(vmap_area_lock);
  <Interrupt>
    lock(vmap_area_lock);

 *** DEADLOCK ***

3 locks held by syz-executor235/3638:
 #0: ffffffff8d58f068 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:74 [inline]
 #0: ffffffff8d58f068 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x3e5/0xc90 net/core/rtnetlink.c:6086
 #1: ffff888074735340 (&bat_priv->tt.commit_lock){+...}-{2:2}, at: spin_lock_bh include/linux/spinlock.h:354 [inline]
 #1: ffff888074735340 (&bat_priv->tt.commit_lock){+...}-{2:2}, at: batadv_tt_local_resize_to_mtu+0x7d/0x130 net/batman-adv/translation-table.c:3950
 #2: ffffffff8bd90298 (rcu_node_0){-.-.}-{2:2}, at: rcu_dump_cpu_stacks+0xd4/0x3f0 kernel/rcu/tree_stall.h:366

stack backtrace:
CPU: 1 PID: 3638 Comm: syz-executor235 Not tainted 5.19.0-rc4-syzkaller-00014-g941e3e791269 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106
 print_usage_bug kernel/locking/lockdep.c:3961 [inline]
 valid_state kernel/locking/lockdep.c:3973 [inline]
 mark_lock_irq kernel/locking/lockdep.c:4176 [inline]
 mark_lock.part.0.cold+0x18/0xd8 kernel/locking/lockdep.c:4632
 mark_lock kernel/locking/lockdep.c:4596 [inline]
 mark_usage kernel/locking/lockdep.c:4524 [inline]
 __lock_acquire+0x14ad/0x5660 kernel/locking/lockdep.c:5007
 lock_acquire kernel/locking/lockdep.c:5665 [inline]
 lock_acquire+0x1ab/0x570 kernel/locking/lockdep.c:5630
 __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline]
 _raw_spin_lock+0x2a/0x40 kernel/locking/spinlock.c:154
 spin_lock include/linux/spinlock.h:349 [inline]
 find_vmap_area+0x1c/0x130 mm/vmalloc.c:1805
 check_heap_object mm/usercopy.c:176 [inline]
 __check_object_size mm/usercopy.c:250 [inline]
 __check_object_size+0x1f8/0x700 mm/usercopy.c:212
 check_object_size include/linux/thread_info.h:199 [inline]
 __copy_from_user_inatomic include/linux/uaccess.h:62 [inline]
 copy_from_user_nmi arch/x86/lib/usercopy.c:47 [inline]
 copy_from_user_nmi+0xcb/0x130 arch/x86/lib/usercopy.c:31
 copy_code arch/x86/kernel/dumpstack.c:91 [inline]
 show_opcodes+0x59/0xb0 arch/x86/kernel/dumpstack.c:121
 show_iret_regs+0xd/0x33 arch/x86/kernel/dumpstack.c:149
 __show_regs+0x1e/0x60 arch/x86/kernel/process_64.c:74
 show_trace_log_lvl+0x25b/0x2ba arch/x86/kernel/dumpstack.c:292
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106
 nmi_cpu_backtrace.cold+0x47/0x144 lib/nmi_backtrace.c:111
 nmi_trigger_cpumask_backtrace+0x1e6/0x230 lib/nmi_backtrace.c:62
 trigger_single_cpu_backtrace include/linux/nmi.h:164 [inline]
 rcu_dump_cpu_stacks+0x262/0x3f0 kernel/rcu/tree_stall.h:371
 print_cpu_stall kernel/rcu/tree_stall.h:667 [inline]
 check_cpu_stall kernel/rcu/tree_stall.h:751 [inline]
 rcu_pending kernel/rcu/tree.c:3977 [inline]
 rcu_sched_clock_irq.cold+0x144/0x8fc kernel/rcu/tree.c:2675
 update_process_times+0x11a/0x1a0 kernel/time/timer.c:1839
 tick_sched_handle+0x9b/0x180 kernel/time/tick-sched.c:243
 tick_sched_timer+0xee/0x120 kernel/time/tick-sched.c:1480
 __run_hrtimer kernel/time/hrtimer.c:1685 [inline]
 __hrtimer_run_queues+0x1c0/0xe50 kernel/time/hrtimer.c:1749
 hrtimer_interrupt+0x31c/0x790 kernel/time/hrtimer.c:1811
 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1095 [inline]
 __sysvec_apic_timer_interrupt+0x146/0x530 arch/x86/kernel/apic/apic.c:1112
 sysvec_apic_timer_interrupt+0x8e/0xc0 arch/x86/kernel/apic/apic.c:1106
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1b/0x20 arch/x86/include/asm/idtentry.h:649
RIP: 0010:lock_is_held_type+0xff/0x140 kernel/locking/lockdep.c:5713
Code: 00 00 b8 ff ff ff ff 65 0f c1 05 c4 51 8b 76 83 f8 01 75 29 9c 58 f6 c4 02 75 3d 48 f7 04 24 00 02 00 00 74 01 fb 48 83 c4 08 <44> 89 e8 5b 5d 41 5c 41 5d 41 5e 41 5f c3 45 31 ed eb b9 0f 0b 48
RSP: 0018:ffffc900030ef248 EFLAGS: 00000286
RAX: 0000000000000046 RBX: 0000000000000002 RCX: 0000000000000001
RDX: 0000000000000000 RSI: 0000000000000403 RDI: 0000000000000000
RBP: ffffffff8bd865a0 R08: 0000000000000000 R09: ffffffff8dbb8d57
R10: fffffbfff1b771aa R11: 0000000000000000 R12: ffff88801f851d80
R13: 0000000000000000 R14: 00000000ffffffff R15: ffff88801f852808
 lock_is_held include/linux/lockdep.h:279 [inline]
 rcu_read_lock_sched_held+0x3a/0x70 kernel/rcu/update.c:125
 trace_lock_acquire include/trace/events/lock.h:24 [inline]
 lock_acquire+0x480/0x570 kernel/locking/lockdep.c:5636
 __raw_spin_lock_bh include/linux/spinlock_api_smp.h:126 [inline]
 _raw_spin_lock_bh+0x2f/0x40 kernel/locking/spinlock.c:178
 spin_lock_bh include/linux/spinlock.h:354 [inline]
 batadv_tt_local_purge_pending_clients+0x112/0x4d0 net/batman-adv/translation-table.c:3655
 batadv_tt_local_resize_to_mtu+0x96/0x130 net/batman-adv/translation-table.c:3958
 batadv_hardif_activate_interface.part.0.cold+0x14c/0x1ba net/batman-adv/hard-interface.c:664
 batadv_hardif_activate_interface net/batman-adv/hard-interface.c:755 [inline]
 batadv_hardif_enable_interface+0xaba/0xac0 net/batman-adv/hard-interface.c:747
 batadv_softif_slave_add+0x64/0x130 net/batman-adv/soft-interface.c:839
 do_set_master+0x1c8/0x220 net/core/rtnetlink.c:2577
 rtnl_newlink_create net/core/rtnetlink.c:3380 [inline]
 __rtnl_newlink+0x13ac/0x17e0 net/core/rtnetlink.c:3580
 rtnl_newlink+0x64/0xa0 net/core/rtnetlink.c:3593
 rtnetlink_rcv_msg+0x43a/0xc90 net/core/rtnetlink.c:6089
 netlink_rcv_skb+0x153/0x420 net/netlink/af_netlink.c:2501
 netlink_unicast_kernel net/netlink/af_netlink.c:1319 [inline]
 netlink_unicast+0x543/0x7f0 net/netlink/af_netlink.c:1345
 netlink_sendmsg+0x917/0xe10 net/netlink/af_netlink.c:1921
 sock_sendmsg_nosec net/socket.c:714 [inline]
 sock_sendmsg+0xcf/0x120 net/socket.c:734
 ____sys_sendmsg+0x6eb/0x810 net/socket.c:2492
 ___sys_sendmsg+0xf3/0x170 net/socket.c:2546
 __sys_sendmsg net/socket.c:2575 [inline]
 __do_sys_sendmsg net/socket.c:2584 [inline]
 __se_sys_sendmsg net/socket.c:2582 [inline]
 __x64_sys_sendmsg+0x132/0x220 net/socket.c:2582
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x46/0xb0
RIP: 0033:0x7f3e5b3bed39
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffc544c24c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f3e5b3bed39
RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000005
RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d
R10: 000000000000000d R11: 0000000000000246 R12: 00007ffc544c24e0
R13: 00000000000f4240 R14: 0000000000000000 R15: 0000000000000000
 </TASK>
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffc544c24c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f3e5b3bed39
RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000005
RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d
R10: 000000000000000d R11: 0000000000000246 R12: 00007ffc544c24e0
R13: 00000000000f4240 R14: 0000000000000000 R15: 0000000000000000
 </TASK>
----------------
Code disassembly (best guess):
   0:	fa                   	cli
   1:	83 e2 07             	and    $0x7,%edx
   4:	38 d0                	cmp    %dl,%al
   6:	7f 04                	jg     0xc
   8:	84 c0                	test   %al,%al
   a:	75 63                	jne    0x6f
   c:	0f b6 07             	movzbl (%rdi),%eax
   f:	40 38 c6             	cmp    %al,%sil
  12:	74 35                	je     0x49
  14:	48 83 c4 10          	add    $0x10,%rsp
  18:	c3                   	retq
  19:	c3                   	retq
  1a:	e8 23 c4 4b 00       	callq  0x4bc442
  1f:	66 90                	xchg   %ax,%ax
  21:	0f 00 2d fa ac 94 08 	verw   0x894acfa(%rip)        # 0x894ad22
  28:	fb                   	sti
  29:	f4                   	hlt
* 2a:	48 83 c4 10          	add    $0x10,%rsp <-- trapping instruction
  2e:	c3                   	retq
  2f:	89 74 24 0c          	mov    %esi,0xc(%rsp)
  33:	48 89 3c 24          	mov    %rdi,(%rsp)
  37:	e8 f6 c2 4b 00       	callq  0x4bc332
  3c:	8b 74 24 0c          	mov    0xc(%rsp),%esi

Fix bisection attempts:
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kasan-gce 2022/08/28 14:07 upstream 10d4879f9ef0 496a8536 .config log report syz C
ci-upstream-kasan-gce 2022/07/29 11:45 upstream 6e2c0490769e 496a8536 .config log report syz C
ci-upstream-kasan-gce-root 2021/10/06 14:24 upstream 60a9483534ed cb93dc6a .config log report syz C
ci-upstream-kasan-gce-root 2021/05/17 21:57 upstream d07f6ca923ea cb93dc6a .config log report syz C
ci-upstream-kasan-gce-root 2021/03/12 02:13 upstream f78d76e72a46 cb93dc6a .config log report syz C
ci-upstream-kasan-gce-root 2021/01/27 10:14 upstream 2ab38c17aac1 cb93dc6a .config log report syz C
ci-upstream-kasan-gce-root 2020/11/15 16:40 upstream e28c0d7c92c8 cb93dc6a .config log report syz C
ci-upstream-kasan-gce-root 2020/09/20 05:19 upstream 325d0eab4f31 cb93dc6a .config log report syz C
* Struck through repros no longer work on HEAD.
Crashes (200):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kasan-gce 2022/06/29 06:57 upstream 941e3e791269 496a8536 .config log report syz C INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-this-kasan-gce 2022/06/29 10:42 net ab84db251c04 496a8536 .config log report syz C INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-root 2020/07/28 03:41 upstream 92ed30191993 cb93dc6a .config log report syz C
ci-upstream-kasan-gce-smack-root 2020/07/25 13:47 upstream 68845a55c31b 1f7cc1ca .config log report syz C
ci-upstream-kasan-gce-386 2020/07/25 13:00 upstream 68845a55c31b 1f7cc1ca .config log report syz C
ci-upstream-net-this-kasan-gce 2020/07/24 01:03 net e6827d1abdc9 70c104a1 .config log report syz C
ci-upstream-net-kasan-gce 2020/07/23 23:18 net-next 7fc3b978a897 70c104a1 .config log report syz C
ci-upstream-kasan-gce-root 2022/09/22 01:47 upstream 06f7db949993 60af5050 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-root 2022/05/23 09:56 upstream 4b0986a3613c 4c7657cb .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-root 2022/05/21 15:26 upstream 3b5e1590a267 7268fa62 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-smack-root 2022/05/19 12:54 upstream f993aed406ea 50c53f39 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-smack-root 2022/05/15 09:59 upstream 2fe1020d73ca 744a39e2 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-root 2022/04/16 22:46 upstream 90ea17a9e27b 8bcc32a6 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce 2022/04/14 12:45 upstream a19944809fe9 b17b2923 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-root 2022/03/30 05:30 upstream 1930a6e739c4 6bdac766 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce 2022/03/20 11:10 upstream 14702b3b2438 e2d91b1d .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-root 2022/03/19 00:32 upstream 34e047aa16c0 e2d91b1d .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce 2022/03/15 05:03 upstream 09688c0166e7 9e8eaa75 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce 2022/03/14 20:38 upstream 09688c0166e7 9e8eaa75 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce 2022/03/14 08:08 upstream f0e18b03fcaf 9e8eaa75 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce 2022/03/10 10:58 upstream e7e19defa575 9e8eaa75 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-smack-root 2022/03/08 14:35 upstream ea4424be1688 7bdd8b2c .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-root 2022/02/28 15:25 upstream 7e57714cd0ad 45a13a73 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-root 2022/02/28 07:49 upstream 52a025546731 45a13a73 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce 2022/02/27 19:36 upstream 2293be58d6a1 45a13a73 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce 2022/02/26 19:36 upstream 9137eda53752 45a13a73 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-root 2022/02/26 09:23 upstream 9137eda53752 45a13a73 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce 2022/02/25 10:55 upstream 73878e5eb1bd 7c337266 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-root 2022/02/23 21:50 upstream 23d04328444a 6e821dbf .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce 2022/02/23 03:36 upstream 917bbdb107f8 6e821dbf .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce 2022/02/22 21:34 upstream 917bbdb107f8 6e821dbf .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce 2022/02/18 07:56 upstream 9195e5e0adbb 3cd800e4 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce 2022/02/17 06:08 upstream 359303076163 2bea8a27 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce 2022/02/17 01:01 upstream 359303076163 2bea8a27 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce 2022/02/13 17:16 upstream b81b1829e7e3 8b9ca619 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-selinux-root 2021/12/28 18:06 upstream a8ad9a2434dc 76c8cf06 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-386 2022/03/12 10:30 upstream 68453767131a 9e8eaa75 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-kasan-gce-386 2022/03/09 10:47 upstream 330f4c53d3c2 9e8eaa75 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-this-kasan-gce 2022/05/20 16:52 net 9b80ccda233f bd37ad7e .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-this-kasan-gce 2022/05/17 18:51 net edf410cb74dc 744a39e2 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-this-kasan-gce 2022/04/25 18:33 net c4c89a6ad8e1 c889aef9 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-this-kasan-gce 2022/04/16 21:20 net d08ed852560e 8bcc32a6 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-this-kasan-gce 2022/04/16 19:45 net d08ed852560e 8bcc32a6 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-this-kasan-gce 2022/04/15 11:31 net 29e8e659f984 8bcc32a6 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-this-kasan-gce 2022/04/11 01:37 net 8d3a6c37d50d e22c3da3 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-this-kasan-gce 2022/03/30 20:35 net 77c9387c0c5b 42718dd6 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-this-kasan-gce 2022/03/26 23:28 net 2eca426d37e7 89bc8608 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-this-kasan-gce 2022/03/22 15:46 net 6a7d8cff4a33 d88ef0c5 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-this-kasan-gce 2022/03/20 19:21 net 0caf6d992219 e2d91b1d .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-this-kasan-gce 2022/03/13 18:21 net 8e6ed963763f 9e8eaa75 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-this-kasan-gce 2022/02/15 06:20 net 6605cc67ca18 8b9ca619 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-this-kasan-gce 2022/02/14 02:15 net 143de8d97d79 8b9ca619 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-bpf-kasan-gce 2021/06/22 04:40 bpf 781dd0431eb5 aba2b2fb .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-kasan-gce 2022/06/23 04:59 net-next 6dd4142fb5a9 912f5df7 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-kasan-gce 2022/04/01 06:32 net-next 2975dbdc3989 68fc921a .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-kasan-gce 2022/04/01 02:51 net-next 2975dbdc3989 68fc921a .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-kasan-gce 2022/03/27 02:25 net-next 169e77764adc 89bc8608 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-kasan-gce 2022/03/24 10:56 net-next 89695196f0ba 89bc8608 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-kasan-gce 2022/03/05 22:36 net-next d59e3cbaef70 7bdd8b2c .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-kasan-gce 2022/02/20 17:57 net-next 48c77bdf729a 3cd800e4 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-kasan-gce 2022/02/16 19:50 net-next 5a8fb33e5305 8b9ca619 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-bpf-next-kasan-gce 2021/11/25 22:14 bpf-next fa721d4f0b91 63eeac02 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-linux-next-kasan-gce-root 2022/09/04 12:15 linux-next e47eb90a0a9a 28811d0a .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-linux-next-kasan-gce-root 2022/06/11 12:26 linux-next 6d0c80680317 0d5abf15 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-linux-next-kasan-gce-root 2022/02/14 22:52 linux-next ef6b35306dd8 8b9ca619 .config log report info INFO: rcu detected stall in rtnl_newlink
ci-upstream-net-kasan-gce 2020/12/28 09:52 net-next 3db1a3fa9880 2242f77f .config log report info
ci-upstream-net-kasan-gce 2020/07/23 21:36 net-next 7fc3b978a897 70c104a1 .config log report
* Struck through repros no longer work on HEAD.