syzbot

 sign-in | mailing list | source | docs
🐞 Open [1010] Subsystems 🐞 Fixed [5248] 🐞 Invalid [12545] Missing Backports [83] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

INFO: rcu detected stall in sys_bpf (8)

Status: auto-obsoleted due to no activity on 2024/02/17 03:10
Subsystems: bpf
[Documentation on labels]
First crash: 164d, last: 164d
Similar bugs (11)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream INFO: rcu detected stall in sys_bpf (5) bpf C unreliable 56 829d 922d 0/26 closed as invalid on 2022/02/08 10:34
linux-5.15 INFO: rcu detected stall in sys_bpf (2) 1 21d 21d 0/3 upstream: reported on 2024/04/09 19:57
upstream INFO: rcu detected stall in sys_bpf (3) bpf 4 1575d 1574d 0/26 closed as invalid on 2020/01/09 08:13
linux-5.15 INFO: rcu detected stall in sys_bpf 2 145d 188d 0/3 auto-obsoleted due to no activity on 2024/03/16 17:33
upstream INFO: rcu detected stall in sys_bpf bpf net 3 1741d 1861d 0/26 auto-closed as invalid on 2019/11/23 00:18
upstream INFO: rcu detected stall in sys_bpf (2) bpf 12 1610d 1611d 0/26 closed as invalid on 2019/12/04 14:14
linux-6.1 INFO: rcu detected stall in sys_bpf 1 11d 11d 0/3 upstream: reported on 2024/04/20 10:27
linux-4.19 INFO: rcu detected stall in sys_bpf 3 1558d 1688d 0/1 auto-closed as invalid on 2020/05/23 14:47
upstream INFO: rcu detected stall in sys_bpf (6) net 7 641d 791d 0/26 auto-obsoleted due to no activity on 2022/10/28 06:32
upstream INFO: rcu detected stall in sys_bpf (4) bpf net 3 1527d 1567d 0/26 auto-closed as invalid on 2020/05/24 13:03
android-5-15 BUG: soft lockup in sys_bpf origin:lts C 41 1d07h 32d 0/2 upstream: reported C repro on 2024/03/29 12:25

Sample crash report:
rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P30039/2:b..l P30045/1:b..l
rcu: 	(detected by 1, t=10503 jiffies, g=111705, q=631016 ncpus=2)
task:syz-executor.4  state:R  running task     stack:26848 pid:30045 tgid:30043 ppid:5116   flags:0x00000002
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5376 [inline]
 __schedule+0xedb/0x5af0 kernel/sched/core.c:6688
 preempt_schedule_irq+0x52/0x90 kernel/sched/core.c:7008
 irqentry_exit+0x36/0x80 kernel/entry/common.c:432
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:645
RIP: 0010:lock_acquire+0x1ef/0x520 kernel/locking/lockdep.c:5721
Code: c1 05 bd 68 9a 7e 83 f8 01 0f 85 b4 02 00 00 9c 58 f6 c4 02 0f 85 9f 02 00 00 48 85 ed 74 01 fb 48 b8 00 00 00 00 00 fc ff df <48> 01 c3 48 c7 03 00 00 00 00 48 c7 43 08 00 00 00 00 48 8b 84 24
RSP: 0018:ffffc9000364f248 EFLAGS: 00000206
RAX: dffffc0000000000 RBX: 1ffff920006c9e4b RCX: 000000000df146a0
RDX: 0000000000000001 RSI: ffffffff8accbc20 RDI: ffffffff8b2f0e40
RBP: 0000000000000200 R08: 0000000000000000 R09: fffffbfff23e33d0
R10: ffffffff91f19e87 R11: 0000000000000000 R12: 0000000000000000
R13: 0000000000000000 R14: ffffffff8cfabce0 R15: 0000000000000000
 rcu_lock_acquire include/linux/rcupdate.h:301 [inline]
 rcu_read_lock include/linux/rcupdate.h:747 [inline]
 is_bpf_text_address+0x36/0x1a0 kernel/bpf/core.c:733
 kernel_text_address kernel/extable.c:125 [inline]
 kernel_text_address+0x85/0xf0 kernel/extable.c:94
 __kernel_text_address+0xd/0x30 kernel/extable.c:79
 unwind_get_return_address+0x78/0xe0 arch/x86/kernel/unwind_orc.c:369
 arch_stack_walk+0xbe/0x170 arch/x86/kernel/stacktrace.c:26
 stack_trace_save+0x96/0xd0 kernel/stacktrace.c:122
 kasan_save_stack+0x33/0x50 mm/kasan/common.c:45
 kasan_set_track+0x25/0x30 mm/kasan/common.c:52
 kasan_save_free_info+0x2b/0x40 mm/kasan/generic.c:522
 ____kasan_slab_free mm/kasan/common.c:236 [inline]
 ____kasan_slab_free+0x15b/0x1b0 mm/kasan/common.c:200
 kasan_slab_free include/linux/kasan.h:164 [inline]
 slab_free_hook mm/slub.c:1800 [inline]
 slab_free_freelist_hook+0x114/0x1e0 mm/slub.c:1826
 slab_free mm/slub.c:3809 [inline]
 __kmem_cache_free+0xc0/0x180 mm/slub.c:3822
 kvfree+0x47/0x50 mm/util.c:653
 vfree+0x252/0x7a0 mm/vmalloc.c:2846
 bpf_check+0x1938/0xa5e0 kernel/bpf/verifier.c:20869
 bpf_prog_load+0x1531/0x2200 kernel/bpf/syscall.c:2716
 __sys_bpf+0xbf7/0x4920 kernel/bpf/syscall.c:5383
 __do_sys_bpf kernel/bpf/syscall.c:5487 [inline]
 __se_sys_bpf kernel/bpf/syscall.c:5485 [inline]
 __x64_sys_bpf+0x78/0xc0 kernel/bpf/syscall.c:5485
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x40/0x110 arch/x86/entry/common.c:82
 entry_SYSCALL_64_after_hwframe+0x63/0x6b
RIP: 0033:0x7f803547cae9
RSP: 002b:00007f803628f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
RAX: ffffffffffffffda RBX: 00007f803559bf80 RCX: 00007f803547cae9
RDX: 0000000000000080 RSI: 0000000020000200 RDI: 0000000000000005
RBP: 00007f80354c847a R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 000000000000000b R14: 00007f803559bf80 R15: 00007ffe39c44788
 </TASK>
task:syz-executor.2  state:R  running task     stack:27008 pid:30039 tgid:30037 ppid:5115   flags:0x00004002
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5376 [inline]
 __schedule+0xedb/0x5af0 kernel/sched/core.c:6688
 preempt_schedule_common+0x45/0xc0 kernel/sched/core.c:6865
 preempt_schedule_thunk+0x1a/0x30 arch/x86/entry/thunk_64.S:45
 __local_bh_enable_ip+0x103/0x120 kernel/softirq.c:388
 local_bh_enable include/linux/bottom_half.h:33 [inline]
 rcu_read_unlock_bh include/linux/rcupdate.h:817 [inline]
 __dev_queue_xmit+0x87c/0x3d60 net/core/dev.c:4373
 dev_queue_xmit include/linux/netdevice.h:3112 [inline]
 neigh_hh_output include/net/neighbour.h:526 [inline]
 neigh_output include/net/neighbour.h:540 [inline]
 ip_finish_output2+0x16a4/0x2550 net/ipv4/ip_output.c:235
 __ip_finish_output net/ipv4/ip_output.c:313 [inline]
 __ip_finish_output+0x38b/0x650 net/ipv4/ip_output.c:295
 ip_finish_output+0x31/0x310 net/ipv4/ip_output.c:323
 NF_HOOK_COND include/linux/netfilter.h:303 [inline]
 ip_output+0x13b/0x2a0 net/ipv4/ip_output.c:433
 dst_output include/net/dst.h:451 [inline]
 ip_local_out net/ipv4/ip_output.c:129 [inline]
 __ip_queue_xmit+0x7cb/0x1a50 net/ipv4/ip_output.c:535
 __tcp_transmit_skb+0x1aa5/0x3d10 net/ipv4/tcp_output.c:1462
 tcp_transmit_skb net/ipv4/tcp_output.c:1480 [inline]
 tcp_send_synack+0x226/0x1480 net/ipv4/tcp_output.c:3645
 tcp_rcv_synsent_state_process net/ipv4/tcp_input.c:6529 [inline]
 tcp_rcv_state_process+0x30ad/0x4e20 net/ipv4/tcp_input.c:6652
 tcp_v4_do_rcv+0x369/0xa10 net/ipv4/tcp_ipv4.c:1929
 sk_backlog_rcv include/net/sock.h:1121 [inline]
 __release_sock+0x132/0x3b0 net/core/sock.c:2968
 release_sock+0x5a/0x1f0 net/core/sock.c:3534
 inet_wait_for_connect net/ipv4/af_inet.c:607 [inline]
 __inet_stream_connect+0x778/0x1020 net/ipv4/af_inet.c:701
 inet_stream_connect+0x57/0xa0 net/ipv4/af_inet.c:746
 kernel_connect+0x103/0x170 net/socket.c:3625
 smc_connect+0x4b0/0x750 net/smc/af_smc.c:1687
 __sys_connect_file+0x15b/0x1a0 net/socket.c:2046
 __sys_connect+0x145/0x170 net/socket.c:2063
 __do_sys_connect net/socket.c:2073 [inline]
 __se_sys_connect net/socket.c:2070 [inline]
 __x64_sys_connect+0x72/0xb0 net/socket.c:2070
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x40/0x110 arch/x86/entry/common.c:82
 entry_SYSCALL_64_after_hwframe+0x63/0x6b
RIP: 0033:0x7f4e2147cae9
RSP: 002b:00007f4e220f90c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
RAX: ffffffffffffffda RBX: 00007f4e2159bf80 RCX: 00007f4e2147cae9
RDX: 0000000000000010 RSI: 0000000020000000 RDI: 0000000000000003
RBP: 00007f4e214c847a R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 000000000000000b R14: 00007f4e2159bf80 R15: 00007ffd51d753e8
 </TASK>

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/11/19 03:08 net 76df934c6d5f cb976f63 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce INFO: rcu detected stall in sys_bpf
* Struck through repros no longer work on HEAD.