syzbot

 sign-in | mailing list | source | docs
🐞 Open [1032] Subsystems 🐞 Fixed [5263] 🐞 Invalid [12583] Missing Backports [85] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

INFO: rcu detected stall in wg_packet_handshake_send_worker (4)

Status: auto-obsoleted due to no activity on 2023/10/15 22:40
Subsystems: wireguard
[Documentation on labels]
First crash: 294d, last: 294d
Similar bugs (7)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream INFO: rcu detected stall in wg_packet_handshake_send_worker net 1 1468d 1468d 0/26 auto-closed as invalid on 2020/07/28 10:33
linux-5.15 INFO: rcu detected stall in wg_packet_handshake_send_worker 1 29d 29d 0/3 upstream: reported on 2024/04/07 21:11
upstream INFO: rcu detected stall in wg_packet_handshake_send_worker (5) wireguard 1 157d 157d 0/26 auto-obsoleted due to no activity on 2024/02/29 10:43
upstream INFO: rcu detected stall in wg_packet_handshake_send_worker (3) kernel 1 503d 503d 0/26 auto-obsoleted due to no activity on 2023/04/12 00:54
upstream INFO: rcu detected stall in wg_packet_handshake_send_worker (2) net 1 1375d 1375d 0/26 auto-closed as invalid on 2020/10/29 22:12
android-5-15 BUG: soft lockup in wg_packet_handshake_send_worker 2 291d 298d 0/2 auto-obsoleted due to no activity on 2023/10/18 09:06
android-5-10 BUG: soft lockup in wg_packet_handshake_send_worker 6 264d 304d 0/2 auto-obsoleted due to no activity on 2023/11/15 02:30

Sample crash report:
rcu: INFO: rcu_preempt detected expedited stalls on CPUs/tasks: { 0-.... } 2651 jiffies s: 305489 root: 0x1/.
rcu: blocking rcu_node structures (internal RCU debug):
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 24123 Comm: kworker/u4:14 Not tainted 6.5.0-rc1-syzkaller-00319-g89e970ea7fba #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023
Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker
RIP: 0010:write_comp_data+0x7/0x90 kernel/kcov.c:230
Code: 81 e2 00 01 ff 00 75 10 65 48 8b 04 25 80 b9 03 00 48 8b 80 f8 15 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 65 8b 05 41 43 7d 7e <49> 89 f1 89 c6 49 89 d2 81 e6 00 01 00 00 49 89 f8 65 48 8b 14 25
RSP: 0018:ffffc90000006738 EFLAGS: 00000246
RAX: 0000000000000301 RBX: 19a1adc92f291580 RCX: ffffffff8859d37e
RDX: 19a1adc8af291540 RSI: 19a1adc92f291580 RDI: 0000000000000006
RBP: ffff8880763d4800 R08: 0000000000000006 R09: 19a1adc92f291580
R10: 19a1adc92f291541 R11: 000000000000004e R12: 19a1adc8af291540
R13: 0000000000000000 R14: dffffc0000000000 R15: 19a1adc92f291541
FS:  0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f7aa1cc56be CR3: 000000000c776000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <NMI>
 </NMI>
 <IRQ>
 ktime_compare include/linux/ktime.h:99 [inline]
 ktime_after include/linux/ktime.h:113 [inline]
 find_entry_to_transmit+0x41e/0x9f0 net/sched/sch_taprio.c:353
 get_packet_txtime net/sched/sch_taprio.c:508 [inline]
 taprio_enqueue_one+0x881/0x1640 net/sched/sch_taprio.c:577
 taprio_enqueue+0x239/0x7e0 net/sched/sch_taprio.c:658
 dev_qdisc_enqueue+0x3f/0x230 net/core/dev.c:3732
 __dev_xmit_skb net/core/dev.c:3821 [inline]
 __dev_queue_xmit+0x2202/0x3f20 net/core/dev.c:4169
 dev_queue_xmit include/linux/netdevice.h:3088 [inline]
 br_dev_queue_push_xmit+0x26e/0x7b0 net/bridge/br_forward.c:53
 br_nf_dev_queue_xmit+0x5c9/0x1d80 net/bridge/br_netfilter_hooks.c:810
 NF_HOOK include/linux/netfilter.h:303 [inline]
 NF_HOOK include/linux/netfilter.h:297 [inline]
 br_nf_post_routing+0xb60/0x15c0 net/bridge/br_netfilter_hooks.c:856
 nf_hook_entry_hookfn include/linux/netfilter.h:143 [inline]
 nf_hook_slow+0xbf/0x1e0 net/netfilter/core.c:626
 nf_hook include/linux/netfilter.h:258 [inline]
 NF_HOOK include/linux/netfilter.h:301 [inline]
 br_forward_finish+0x266/0x480 net/bridge/br_forward.c:66
 br_nf_hook_thresh+0x2ff/0x410 net/bridge/br_netfilter_hooks.c:1048
 br_nf_forward_finish+0x431/0xa70 net/bridge/br_netfilter_hooks.c:567
 NF_HOOK include/linux/netfilter.h:303 [inline]
 NF_HOOK include/linux/netfilter.h:297 [inline]
 br_nf_forward_ip+0xf6c/0x1760 net/bridge/br_netfilter_hooks.c:637
 nf_hook_entry_hookfn include/linux/netfilter.h:143 [inline]
 nf_hook_slow+0xbf/0x1e0 net/netfilter/core.c:626
 nf_hook include/linux/netfilter.h:258 [inline]
 NF_HOOK include/linux/netfilter.h:301 [inline]
 __br_forward+0x2d9/0x900 net/bridge/br_forward.c:115
 deliver_clone net/bridge/br_forward.c:131 [inline]
 maybe_deliver+0x354/0x450 net/bridge/br_forward.c:189
 br_flood+0x17e/0x640 net/bridge/br_forward.c:235
 br_handle_frame_finish+0xfcb/0x1dd0 net/bridge/br_input.c:210
 br_nf_hook_thresh+0x2ff/0x410 net/bridge/br_netfilter_hooks.c:1048
 br_nf_pre_routing_finish_ipv6+0x683/0xf20 net/bridge/br_netfilter_ipv6.c:148
 NF_HOOK include/linux/netfilter.h:303 [inline]
 br_nf_pre_routing_ipv6+0x41b/0x850 net/bridge/br_netfilter_ipv6.c:178
 br_nf_pre_routing+0x8d8/0x1950 net/bridge/br_netfilter_hooks.c:508
 nf_hook_entry_hookfn include/linux/netfilter.h:143 [inline]
 nf_hook_bridge_pre net/bridge/br_input.c:272 [inline]
 br_handle_frame+0x9da/0x16d0 net/bridge/br_input.c:417
 __netif_receive_skb_core.constprop.0+0xa78/0x3df0 net/core/dev.c:5346
 __netif_receive_skb_one_core+0xaf/0x180 net/core/dev.c:5450
 __netif_receive_skb+0x1f/0x1b0 net/core/dev.c:5566
 process_backlog+0x101/0x6c0 net/core/dev.c:5894
 __napi_poll.constprop.0+0xb4/0x530 net/core/dev.c:6456
 napi_poll net/core/dev.c:6523 [inline]
 net_rx_action+0x956/0xe90 net/core/dev.c:6656
 __do_softirq+0x218/0x965 kernel/softirq.c:553
 invoke_softirq kernel/softirq.c:427 [inline]
 __irq_exit_rcu kernel/softirq.c:632 [inline]
 irq_exit_rcu+0xb7/0x120 kernel/softirq.c:644
 sysvec_apic_timer_interrupt+0x93/0xc0 arch/x86/kernel/apic/apic.c:1109
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:645
RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70 kernel/kcov.c:200
Code: d6 14 99 02 66 0f 1f 44 00 00 f3 0f 1e fa 48 8b be b0 01 00 00 e8 b0 ff ff ff 31 c0 c3 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <f3> 0f 1e fa 65 8b 05 5d 3d 7d 7e 89 c1 48 8b 34 24 81 e1 00 01 00
RSP: 0018:ffffc90003fd7690 EFLAGS: 00000283
RAX: 0000000000000000 RBX: ffffc90003fd77e3 RCX: ffffffff8593fb27
RDX: ffff888082ac1dc0 RSI: 0000000000000000 RDI: 0000000000000005
RBP: 0000000000000023 R08: 0000000000000005 R09: 0000000000000040
R10: 0000000000000023 R11: c79befff080fa08c R12: dffffc0000000000
R13: ffffc90003fd76e0 R14: ffffc90003fd77c0 R15: ffffc90003fd7780
 hmac.constprop.0+0x251/0x410 drivers/net/wireguard/noise.c:328
 kdf.constprop.0+0x14c/0x280 drivers/net/wireguard/noise.c:367
 mix_dh+0xe9/0x150 drivers/net/wireguard/noise.c:413
 wg_noise_handshake_create_initiation+0x2e2/0x650 drivers/net/wireguard/noise.c:550
 wg_packet_send_handshake_initiation+0x198/0x350 drivers/net/wireguard/send.c:34
 wg_packet_handshake_send_worker+0x1c/0x30 drivers/net/wireguard/send.c:51
 process_one_work+0xaa2/0x16f0 kernel/workqueue.c:2597
 worker_thread+0x687/0x1110 kernel/workqueue.c:2748
 kthread+0x33a/0x430 kernel/kthread.c:389
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308
 </TASK>

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/07/17 22:38 net-next 89e970ea7fba e5f10889 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce INFO: rcu detected stall in wg_packet_handshake_send_worker
* Struck through repros no longer work on HEAD.