syzbot

 sign-in | mailing list | source | docs
🐞 Open [712] 🐞 Fixed [297] 🐞 Invalid [838] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

INFO: rcu detected stall in rtnl_newlink

Status: upstream: reported C repro on 2020/07/24 01:06
Reported-by: syzbot+91af13ca9545b3f197ed@syzkaller.appspotmail.com
First crash: 1365d, last: 492d
Fix bisection: failed (error log, bisect log)
  
Similar bugs (8)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-6.1 INFO: rcu detected stall in rtnl_newlink (2) 2 12d 36d 0/3 upstream: reported on 2024/03/13 06:43
upstream INFO: rcu detected stall in rtnl_newlink batman C done inconclusive 201 562d 1364d 0/26 auto-obsoleted due to no activity on 2023/02/01 16:38
upstream INFO: rcu detected stall in rtnl_newlink (3) batman C error done 3 237d 287d 0/26 auto-obsoleted due to no activity on 2023/12/03 18:15
linux-6.1 INFO: rcu detected stall in rtnl_newlink 1 192d 192d 0/3 auto-obsoleted due to no activity on 2024/01/17 21:04
linux-5.15 BUG: soft lockup in rtnl_newlink origin:lts-only C inconclusive 61 5d00h 406d 0/3 upstream: reported C repro on 2023/03/09 19:16
upstream INFO: rcu detected stall in rtnl_newlink (2) net 1 431d 431d 0/26 auto-obsoleted due to no activity on 2023/05/13 18:46
android-5-15 BUG: soft lockup in rtnl_newlink 2 8h11m 14h24m 0/2 premoderation: reported on 2024/04/18 11:40
linux-4.14 BUG: soft lockup in rtnl_newlink 1 813d 813d 0/1 auto-closed as invalid on 2022/05/26 06:33
Fix bisection attempts (16)
Created Duration User Patch Repo Result
2021/10/29 10:56 13m bisect fix linux-4.19.y error job log (0)
2021/09/26 11:24 32m bisect fix linux-4.19.y job log (0) log
2021/08/27 10:52 31m bisect fix linux-4.19.y job log (0) log
2021/07/28 10:24 28m bisect fix linux-4.19.y job log (0) log
2021/06/28 09:50 33m bisect fix linux-4.19.y job log (0) log
2021/05/25 01:17 31m bisect fix linux-4.19.y job log (0) log
2021/04/25 00:20 31m bisect fix linux-4.19.y job log (0) log
2021/03/25 16:20 26m bisect fix linux-4.19.y job log (0) log
2021/02/23 14:08 27m bisect fix linux-4.19.y job log (0) log
2021/02/19 09:40 19m bisect fix linux-4.19.y error job log (0)
2021/01/20 06:22 26m bisect fix linux-4.19.y job log (0) log
2020/12/21 05:43 28m bisect fix linux-4.19.y job log (0) log
2020/11/21 05:16 27m bisect fix linux-4.19.y job log (0) log
2020/10/22 04:30 26m bisect fix linux-4.19.y job log (0) log
2020/09/22 02:08 28m bisect fix linux-4.19.y job log (0) log
2020/08/23 01:37 31m bisect fix linux-4.19.y job log (0) log

Sample crash report:
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
rcu: INFO: rcu_preempt self-detected stall on CPU
rcu: 	1-....: (1 GPs behind) idle=5e2/1/0x4000000000000002 softirq=9305/9306 fqs=5234 
rcu: 	 (t=10500 jiffies g=4565 q=507)
NMI backtrace for cpu 1
CPU: 1 PID: 8371 Comm: syz-executor385 Not tainted 4.19.211-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1fc/0x2ef lib/dump_stack.c:118
 nmi_cpu_backtrace.cold+0x63/0xa2 lib/nmi_backtrace.c:101
 nmi_trigger_cpumask_backtrace+0x1a6/0x1f0 lib/nmi_backtrace.c:62
 trigger_single_cpu_backtrace include/linux/nmi.h:164 [inline]
 rcu_dump_cpu_stacks+0x15f/0x19c kernel/rcu/tree.c:1340
 print_cpu_stall kernel/rcu/tree.c:1478 [inline]
 check_cpu_stall kernel/rcu/tree.c:1550 [inline]
 __rcu_pending kernel/rcu/tree.c:3293 [inline]
 rcu_pending kernel/rcu/tree.c:3336 [inline]
 rcu_check_callbacks.cold+0x62d/0xe19 kernel/rcu/tree.c:2682
 update_process_times+0x2a/0x70 kernel/time/timer.c:1650
 tick_sched_handle+0x9b/0x180 kernel/time/tick-sched.c:168
 tick_sched_timer+0xfc/0x290 kernel/time/tick-sched.c:1278
 __run_hrtimer kernel/time/hrtimer.c:1465 [inline]
 __hrtimer_run_queues+0x3f6/0xe60 kernel/time/hrtimer.c:1527
 hrtimer_interrupt+0x326/0x9e0 kernel/time/hrtimer.c:1585
 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1071 [inline]
 smp_apic_timer_interrupt+0x10c/0x550 arch/x86/kernel/apic/apic.c:1096
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:894
 </IRQ>
RIP: 0010:should_resched arch/x86/include/asm/preempt.h:99 [inline]
RIP: 0010:__local_bh_enable_ip+0x18d/0x270 kernel/softirq.c:196
Code: 00 00 00 00 fc ff df 48 c1 e8 03 80 3c 10 00 0f 85 dd 00 00 00 48 83 3d c8 5f b8 08 00 0f 84 8d 00 00 00 fb 66 0f 1f 44 00 00 <65> 8b 05 6c bc c8 7e 85 c0 74 7d 5b 5d 41 5c c3 80 3d f3 87 d5 09
RSP: 0018:ffff888094296e98 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
RAX: 1ffffffff13e3053 RBX: 0000000000000201 RCX: 1ffff11015dcc14a
RDX: dffffc0000000000 RSI: ffff8880aee60a30 RDI: ffff8880aee60a04
RBP: ffffffff87dbea0a R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880aee60180
R13: 0000000000000001 R14: ffff888096ed10c0 R15: 0000000000000019
 spin_unlock_bh include/linux/spinlock.h:374 [inline]
 batadv_tt_local_purge_pending_clients+0x2aa/0x3a0 net/batman-adv/translation-table.c:3924
 batadv_tt_local_resize_to_mtu+0x96/0x130 net/batman-adv/translation-table.c:4208
 batadv_hardif_activate_interface.part.0.cold+0x88/0x226 net/batman-adv/hard-interface.c:664
 batadv_hardif_activate_interface net/batman-adv/hard-interface.c:825 [inline]
 batadv_hardif_enable_interface+0xadf/0xba0 net/batman-adv/hard-interface.c:817
 batadv_softif_slave_add+0x8a/0x100 net/batman-adv/soft-interface.c:898
 do_set_master+0x1c8/0x220 net/core/rtnetlink.c:2321
 rtnl_newlink+0x1279/0x15c0 net/core/rtnetlink.c:3170
 rtnetlink_rcv_msg+0x453/0xb80 net/core/rtnetlink.c:4782
 netlink_rcv_skb+0x160/0x440 net/netlink/af_netlink.c:2463
 netlink_unicast_kernel net/netlink/af_netlink.c:1325 [inline]
 netlink_unicast+0x4d5/0x690 net/netlink/af_netlink.c:1351
 netlink_sendmsg+0x6c3/0xc50 net/netlink/af_netlink.c:1917
 sock_sendmsg_nosec net/socket.c:651 [inline]
 sock_sendmsg+0xc3/0x120 net/socket.c:661
 ___sys_sendmsg+0x7bb/0x8e0 net/socket.c:2227
 __sys_sendmsg net/socket.c:2265 [inline]
 __do_sys_sendmsg net/socket.c:2274 [inline]
 __se_sys_sendmsg net/socket.c:2272 [inline]
 __x64_sys_sendmsg+0x132/0x220 net/socket.c:2272
 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7f6039cc3ea9
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f6039c71308 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 00007f6039d4c4c8 RCX: 00007f6039cc3ea9
RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000004
RBP: 00007f6039d4c4c0 R08: 0000000000000001 R09: 0000000000000000
R10: 000000000000000c R11: 0000000000000246 R12: 00007f6039d4c4cc
R13: 00007f6039d19610 R14: 006e616c7663616d R15: 0000000000022000
net_ratelimit: 6426 callbacks suppressed
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
net_ratelimit: 6710 callbacks suppressed
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)

Crashes (7):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/12/13 14:56 linux-4.19.y 3f8a27f9e27b 67be1ae7 .config console log report syz C [disk image] [vmlinux] ci2-linux-4-19 INFO: rcu detected stall in rtnl_newlink
2020/07/24 01:06 linux-4.19.y 20b3a3dfdf6c 70c104a1 .config console log report syz C ci2-linux-4-19
2022/12/13 11:10 linux-4.19.y 3f8a27f9e27b 67be1ae7 .config console log report info [disk image] [vmlinux] ci2-linux-4-19 INFO: rcu detected stall in rtnl_newlink
2022/02/13 21:25 linux-4.19.y 3f8a27f9e27b 8b9ca619 .config console log report info ci2-linux-4-19 INFO: rcu detected stall in rtnl_newlink
2022/02/08 17:27 linux-4.19.y 3f8a27f9e27b 0b33604d .config console log report info ci2-linux-4-19 INFO: rcu detected stall in rtnl_newlink
2022/01/01 22:23 linux-4.19.y 3f8a27f9e27b e1768e9c .config console log report info ci2-linux-4-19 INFO: rcu detected stall in rtnl_newlink
2021/05/29 09:50 linux-4.19.y 6b7b0056defc 858ea628 .config console log report info ci2-linux-4-19 INFO: rcu detected stall in rtnl_newlink
* Struck through repros no longer work on HEAD.