syzbot

 sign-in | mailing list | source | docs
🐞 Open [570] 🐞 Fixed [66] 🐞 Invalid [207] Missing Backports [41] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

BUG: soft lockup in sys_sendmsg

Status: auto-obsoleted due to no activity on 2023/09/20 17:26
Reported-by: syzbot+c583096331732fe3a7fb@syzkaller.appspotmail.com
First crash: 333d, last: 327d
Similar bugs (6)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-6-1 BUG: soft lockup in sys_sendmsg origin:upstream C 1 25d 25d 0/2 upstream: reported C repro on 2024/04/09 06:46
android-5-10 BUG: soft lockup in sys_sendmsg C 17 1d04h 43d 0/2 upstream: reported C repro on 2024/03/22 10:41
upstream BUG: soft lockup in sys_sendmsg tipc batman C 3 41d 82d 25/26 upstream: reported C repro on 2024/02/12 10:26
android-5-15 BUG: soft lockup in sys_sendmsg origin:upstream C 9 15d 43d 0/2 upstream: reported C repro on 2024/03/22 10:44
linux-6.1 BUG: soft lockup in sys_sendmsg (2) origin:upstream C 1 27d 27d 0/3 upstream: reported C repro on 2024/04/06 21:29
linux-5.15 INFO: rcu detected stall in sys_sendmsg origin:upstream C 3 17d 45d 0/3 upstream: reported C repro on 2024/03/19 21:37

Sample crash report:
watchdog: BUG: soft lockup - CPU#0 stuck for 22s! [syz-executor.2:9256]
Modules linked in:
irq event stamp: 4663
hardirqs last  enabled at (4662): [<ffff800012100cc0>] __exit_to_kernel_mode arch/arm64/kernel/entry-common.c:84 [inline]
hardirqs last  enabled at (4662): [<ffff800012100cc0>] exit_to_kernel_mode+0xe8/0x118 arch/arm64/kernel/entry-common.c:94
hardirqs last disabled at (4663): [<ffff8000120fe99c>] __el1_irq arch/arm64/kernel/entry-common.c:468 [inline]
hardirqs last disabled at (4663): [<ffff8000120fe99c>] el1_interrupt+0x24/0x68 arch/arm64/kernel/entry-common.c:486
softirqs last  enabled at (276): [<ffff80001080cd34>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:32
softirqs last disabled at (278): [<ffff800010f15e3c>] local_bh_disable+0x10/0x34 include/linux/bottom_half.h:19
CPU: 0 PID: 9256 Comm: syz-executor.2 Not tainted 6.1.33-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : fq_pie_qdisc_dequeue+0x268/0x8ac
lr : fq_pie_qdisc_dequeue+0x120/0x8ac net/sched/sch_fq_pie.c:246
sp : ffff8000219e6d40
x29: ffff8000219e6db0 x28: ffff00012d227360 x27: ffff0000ddb50ae8
x26: ffff0000ddb50af0 x25: dfff800000000000 x24: ffff0000ddb50ae0
x23: ffff00012d227350 x22: 0000000000000040 x21: 1fffe00025a44e6a
x20: ffff0000ddb50ae0 x19: 0000000000000000 x18: ffff8000219e6a00
x17: ffff800010fae6cc x16: ffff8000084fa7f4 x15: 0000000000000000
x14: 0000000000000002 x13: 0000000000000001 x12: 0000000000040000
x11: ff80800010714078 x10: 0000000000000002 x9 : ffff0000d956b780
x8 : 0000000000000000 x7 : ffff80000840686c x6 : 0000000000000000
x5 : 0000000000000080 x4 : 0000000000000001 x3 : 0000000000000000
x2 : ffff0000ddb50ae0 x1 : 0000000000000000 x0 : 0000000000000001
Call trace:
 fq_pie_qdisc_dequeue+0x268/0x8ac net/sched/sch_fq_pie.c:247
 dequeue_skb net/sched/sch_generic.c:292 [inline]
 qdisc_restart net/sched/sch_generic.c:397 [inline]
 __qdisc_run+0x204/0x239c net/sched/sch_generic.c:415
 __dev_xmit_skb net/core/dev.c:3885 [inline]
 __dev_queue_xmit+0xe14/0x38d8 net/core/dev.c:4227
 dev_queue_xmit include/linux/netdevice.h:3018 [inline]
 neigh_connected_output+0x2f8/0x38c net/core/neighbour.c:1612
 neigh_output include/net/neighbour.h:546 [inline]
 ip6_finish_output2+0xdb4/0x1a98 net/ipv6/ip6_output.c:134
 __ip6_finish_output net/ipv6/ip6_output.c:195 [inline]
 ip6_finish_output+0x538/0x8c8 net/ipv6/ip6_output.c:206
 NF_HOOK_COND include/linux/netfilter.h:291 [inline]
 ip6_output+0x270/0x594 net/ipv6/ip6_output.c:227
 dst_output include/net/dst.h:444 [inline]
 ip6_local_out+0x120/0x160 net/ipv6/output_core.c:161
 ip6_send_skb+0x118/0x428 net/ipv6/ip6_output.c:1989
 udp_v6_send_skb+0x9fc/0x1780 net/ipv6/udp.c:1292
 udpv6_sendmsg+0x19c4/0x28a4 net/ipv6/udp.c:1586
 inet6_sendmsg+0xb4/0xd8 net/ipv6/af_inet6.c:667
 sock_sendmsg_nosec net/socket.c:716 [inline]
 sock_sendmsg net/socket.c:736 [inline]
 ____sys_sendmsg+0x558/0x844 net/socket.c:2482
 ___sys_sendmsg net/socket.c:2536 [inline]
 __sys_sendmsg+0x26c/0x33c net/socket.c:2565
 __do_sys_sendmsg net/socket.c:2574 [inline]
 __se_sys_sendmsg net/socket.c:2572 [inline]
 __arm64_sys_sendmsg+0x80/0x94 net/socket.c:2572
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x98/0x2c0 arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
 do_el0_svc+0x64/0x218 arch/arm64/kernel/syscall.c:206
 el0_svc+0x58/0x168 arch/arm64/kernel/entry-common.c:637
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:581

Crashes (2):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/06/12 17:25 linux-6.1.y 2f3918bc53fb aaed0183 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: soft lockup in sys_sendmsg
2023/06/06 10:39 linux-6.1.y 76ba310227d2 a4ae4f42 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 BUG: soft lockup in sys_sendmsg
* Struck through repros no longer work on HEAD.