syzbot

 sign-in | mailing list | source | docs
🐞 Open [712] 🐞 Fixed [297] 🐞 Invalid [838] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

INFO: rcu detected stall in corrupted

Status: upstream: reported C repro on 2020/02/13 05:06
Reported-by: syzbot+4bea9151b23acf20355a@syzkaller.appspotmail.com
First crash: 1531d, last: 824d
Fix bisection: failed (error log, bisect log)
  
Similar bugs (14)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-6.1 INFO: rcu detected stall in corrupted origin:upstream C 144 17h38m 407d 0/3 upstream: reported C repro on 2023/03/13 04:03
android-414 INFO: rcu detected stall in corrupted C 3 1767d 1840d 0/1 public: reported C repro on 2019/04/10 16:04
android-49 INFO: rcu detected stall in corrupted C 27 1652d 1837d 0/3 public: reported C repro on 2019/04/14 00:00
upstream INFO: rcu detected stall in corrupted (3) kernel C done 1 1856d 1852d 0/26 closed as invalid on 2019/03/30 00:13
linux-4.14 INFO: rcu detected stall in corrupted (2) C error 4 1410d 1571d 0/1 upstream: reported C repro on 2020/01/04 08:54
upstream INFO: rcu detected stall in corrupted (4) bpf C done inconclusive 417 2d13h 1327d 0/26 upstream: reported C repro on 2020/09/04 18:49
upstream INFO: rcu detected stall in corrupted net syz 1 2164d 2164d 8/26 fixed on 2018/07/09 18:05
linux-4.14 INFO: rcu detected stall in corrupted C done 3 1684d 1706d 1/1 fixed on 2019/12/05 23:59
upstream INFO: rcu detected stall in corrupted (2) kernel syz 1 2096d 2096d 0/26 closed as invalid on 2018/07/29 11:55
linux-5.15 INFO: rcu detected stall in corrupted origin:lts-only C error 4 39d 183d 0/3 upstream: reported C repro on 2023/10/23 02:41
android-5-15 BUG: soft lockup in corrupted origin:lts C 7 1h23m 12d 0/2 upstream: reported C repro on 2024/04/11 09:01
upstream BUG: workqueue lockup (5) kernel C done 3960 8h27m 1561d 0/26 upstream: reported C repro on 2020/01/14 22:04
linux-4.14 BUG: soft lockup in corrupted C error 12 632d 1115d 0/1 upstream: reported C repro on 2021/04/04 06:30
linux-4.19 BUG: soft lockup in corrupted C error 3 661d 849d 0/1 upstream: reported C repro on 2021/12/26 20:46

Sample crash report:
[   8125]     0  8125     4423      527    49152        0          1000 syz-executor046
[   8126]     0  8126     4423      527    49152        0          1000 syz-executor046
[   8127]     0  8127     4423      527    49152        0          1000 syz-executor046
rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P9524
rcu: 	(detected by 0, t=10503 jiffies, g=5025, q=2)
syz-executor046 R  running task    26800  9524   8347 0x80000000
Call Trace:
 context_switch kernel/sched/core.c:2828 [inline]
 __schedule+0x887/0x2040 kernel/sched/core.c:3517
 preempt_schedule_common+0x45/0xc0 kernel/sched/core.c:3641
 ___preempt_schedule+0x16/0x18
 __raw_spin_unlock include/linux/spinlock_api_smp.h:152 [inline]
 _raw_spin_unlock+0x3b/0x40 kernel/locking/spinlock.c:176
 spin_unlock include/linux/spinlock.h:369 [inline]
 task_unlock include/linux/sched/task.h:152 [inline]
 dump_tasks mm/oom_kill.c:428 [inline]
 dump_header+0xb92/0xc3f mm/oom_kill.c:452
 oom_kill_process.cold+0x10/0x692 mm/oom_kill.c:956
 out_of_memory mm/oom_kill.c:1132 [inline]
 out_of_memory+0x34d/0x1390 mm/oom_kill.c:1064
 __alloc_pages_may_oom mm/page_alloc.c:3553 [inline]
 __alloc_pages_slowpath mm/page_alloc.c:4255 [inline]
 __alloc_pages_nodemask+0x23a2/0x2890 mm/page_alloc.c:4419
 __alloc_pages include/linux/gfp.h:496 [inline]
 __alloc_pages_node include/linux/gfp.h:509 [inline]
 kmem_getpages mm/slab.c:1412 [inline]
 cache_grow_begin+0xa4/0x8a0 mm/slab.c:2682
 fallback_alloc+0x213/0x2e0 mm/slab.c:3224
 __do_cache_alloc mm/slab.c:3361 [inline]
 slab_alloc mm/slab.c:3389 [inline]
 kmem_cache_alloc+0x1e4/0x370 mm/slab.c:3557
 anon_vma_chain_alloc mm/rmap.c:129 [inline]
 anon_vma_clone+0x32d/0x5e0 mm/rmap.c:273
 anon_vma_fork+0x82/0x630 mm/rmap.c:332
 dup_mmap kernel/fork.c:504 [inline]
 dup_mm kernel/fork.c:1285 [inline]
 copy_mm kernel/fork.c:1341 [inline]
 copy_process.part.0+0x360f/0x8260 kernel/fork.c:1913
 copy_process kernel/fork.c:1710 [inline]
 _do_fork+0x22f/0xf30 kernel/fork.c:2219
 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7f13005389b9
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f13004ea1f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
RAX: ffffffffffffffda RBX: 00007f13005c03e8 RCX: 00007f13005389b9
RDX: 0000000000000000 RSI: 00000000200012c0 RDI: 0000000000020400
RBP: 00007f13005c03e0 R08: 0000000000000000 R09: 0000000e00000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f13005c03ec
R13: 00007ffcc678538f R14: 00007f13004ea300 R15: 0000000000022000
syz-executor046 R  running task    26800  9524   8347 0x80000000
Call Trace:
 context_switch kernel/sched/core.c:2828 [inline]
 __schedule+0x887/0x2040 kernel/sched/core.c:3517
 preempt_schedule_common+0x45/0xc0 kernel/sched/core.c:3641
 ___preempt_schedule+0x16/0x18
 __raw_spin_unlock include/linux/spinlock_api_smp.h:152 [inline]
 _raw_spin_unlock+0x3b/0x40 kernel/locking/spinlock.c:176
 spin_unlock include/linux/spinlock.h:369 [inline]
 task_unlock include/linux/sched/task.h:152 [inline]
 dump_tasks mm/oom_kill.c:428 [inline]
 dump_header+0xb92/0xc3f mm/oom_kill.c:452
 oom_kill_process.cold+0x10/0x692 mm/oom_kill.c:956
 out_of_memory mm/oom_kill.c:1132 [inline]
 out_of_memory+0x34d/0x1390 mm/oom_kill.c:1064
 __alloc_pages_may_oom mm/page_alloc.c:3553 [inline]
 __alloc_pages_slowpath mm/page_alloc.c:4255 [inline]
 __alloc_pages_nodemask+0x23a2/0x2890 mm/page_alloc.c:4419
 __alloc_pages include/linux/gfp.h:496 [inline]
 __alloc_pages_node include/linux/gfp.h:509 [inline]
 kmem_getpages mm/slab.c:1412 [inline]
 cache_grow_begin+0xa4/0x8a0 mm/slab.c:2682
 fallback_alloc+0x213/0x2e0 mm/slab.c:3224
 __do_cache_alloc mm/slab.c:3361 [inline]
 slab_alloc mm/slab.c:3389 [inline]
 kmem_cache_alloc+0x1e4/0x370 mm/slab.c:3557
 anon_vma_chain_alloc mm/rmap.c:129 [inline]
 anon_vma_clone+0x32d/0x5e0 mm/rmap.c:273
 anon_vma_fork+0x82/0x630 mm/rmap.c:332
 dup_mmap kernel/fork.c:504 [inline]
 dup_mm kernel/fork.c:1285 [inline]
 copy_mm kernel/fork.c:1341 [inline]
 copy_process.part.0+0x360f/0x8260 kernel/fork.c:1913
 copy_process kernel/fork.c:1710 [inline]
 _do_fork+0x22f/0xf30 kernel/fork.c:2219
 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7f13005389b9
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f13004ea1f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
RAX: ffffffffffffffda RBX: 00007f13005c03e8 RCX: 00007f13005389b9
RDX: 0000000000000000 RSI: 00000000200012c0 RDI: 0000000000020400
RBP: 00007f13005c03e0 R08: 0000000000000000 R09: 0000000e00000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f13005c03ec
R13: 00007ffcc678538f R14: 00007f13004ea300 R15: 0000000000022000
[   8128]     0  8128     4423      527    49152        0          1000 syz-executor046

Crashes (2):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/01/20 13:46 linux-4.19.y 3f8a27f9e27b 5da9499f .config console log report syz C ci2-linux-4-19 INFO: rcu detected stall in corrupted
2020/02/13 05:05 linux-4.19.y 357668399cf7 84f4fc8a .config console log report syz ci2-linux-4-19
* Struck through repros no longer work on HEAD.