syzbot

 sign-in | mailing list | source | docs | 🏰
🐞 Open [1325]
Subsystems
🐞 Fixed [7177]
🐞 Invalid [18965]
Missing Backports [221]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
✨ AI
💬 Send us feedback

INFO: rcu detected stall in smp_call_function_single

Status: closed as invalid on 2018/07/20 09:38
Subsystems: kernel
[Documentation on labels]
First crash: 2959d, last: 2921d
Similar bugs (6)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream BUG: soft lockup in smp_call_function kernel prio:low 1 C done 1884 2h18m 2169d 0/29 upstream: reported C repro on 2020/07/12 23:02
linux-6.1 BUG: soft lockup in smp_call_function origin:upstream 1 C error 222 18h59m 1191d 0/3 upstream: reported C repro on 2023/03/18 00:36
linux-6.6 INFO: rcu detected stall in smp_call_function origin:lts-only 1 C error 726 3h56m 315d 0/2 upstream: reported C repro on 2025/08/10 04:01
linux-5.15 BUG: soft lockup in smp_call_function missing-backport origin:lts-only 1 C error 315 15h47m 1190d 0/3 upstream: reported C repro on 2023/03/19 12:10
android-49 INFO: rcu detected stall in smp_call_function_single 1 1 2870d 2870d 0/3 auto-closed as invalid on 2019/02/22 15:22
upstream INFO: rcu detected stall in smp_call_function_single (2) kernel 1 3 2846d 2871d 0/29 closed as invalid on 2018/09/05 12:51

Sample crash report:
INFO: rcu_sched detected stalls on CPUs/tasks:
	(detected by 1, t=120002 jiffies, g=13013, c=13012, q=70)
All QSes seen, last rcu_sched kthread activity 120002 (4294868961-4294748959), jiffies_till_next_fqs=3, root ->qsmask 0x0
syz-executor4   R  running task    56952  6574   4504 0x8000000a
Call Trace:
 <IRQ>
 sched_show_task+0x610/0x740 kernel/sched/core.c:5346
 print_other_cpu_stall kernel/rcu/tree.c:1481 [inline]
 check_cpu_stall kernel/rcu/tree.c:1599 [inline]
 __rcu_pending kernel/rcu/tree.c:3356 [inline]
 rcu_pending kernel/rcu/tree.c:3401 [inline]
 rcu_check_callbacks+0x277a/0x2ae0 kernel/rcu/tree.c:2763
 update_process_times+0x132/0x1a0 kernel/time/timer.c:1636
 tick_sched_handle kernel/time/tick-sched.c:164 [inline]
 tick_sched_timer+0x3ba/0x520 kernel/time/tick-sched.c:1274
 __run_hrtimer kernel/time/hrtimer.c:1398 [inline]
 __hrtimer_run_queues+0xc54/0x1630 kernel/time/hrtimer.c:1460
 hrtimer_interrupt+0x451/0x13c0 kernel/time/hrtimer.c:1518
 local_apic_timer_interrupt+0x6b/0x250 arch/x86/kernel/apic/apic.c:1025
 smp_apic_timer_interrupt+0x5a/0x90 arch/x86/kernel/apic/apic.c:1053
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:866
 </IRQ>
RIP: 0010:msan_get_shadow_origin_ptr+0x1/0x230 mm/kmsan/kmsan_instr.c:229
RSP: 0018:ffff880111e6f280 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
RAX: ffffffff81539215 RBX: 0000000000000003 RCX: ffff8801107e1d40
RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff880111e6f318
RBP: ffff880111e6f290 R08: 0000000000000000 R09: 0000000000000002
R10: 0000000000000000 R11: ffffffff81174e40 R12: ffff880111e6f318
R13: 0000000000000000 R14: 0000000000000000 R15: ffffffff8b58d000
 csd_lock_wait kernel/smp.c:108 [inline]
 smp_call_function_single+0x363/0x4e0 kernel/smp.c:302
 smp_call_function_many+0x662/0xdf0 kernel/smp.c:434
 on_each_cpu_mask kernel/smp.c:632 [inline]
 on_each_cpu_cond+0x325/0x3f0 kernel/smp.c:684
 invalidate_bh_lrus+0x54/0x60 fs/buffer.c:1392
 kill_bdev fs/block_dev.c:85 [inline]
 __blkdev_put+0x43a/0xc90 fs/block_dev.c:1784
 blkdev_put+0x435/0x570 fs/block_dev.c:1852
 blkdev_close+0xa6/0xf0 fs/block_dev.c:1859
 __fput+0x458/0xa30 fs/file_table.c:209
 ____fput+0x37/0x40 fs/file_table.c:243
 task_work_run+0x22e/0x2b0 kernel/task_work.c:113
 exit_task_work include/linux/task_work.h:22 [inline]
 do_exit+0x110e/0x3930 kernel/exit.c:867
 do_group_exit+0x1a0/0x360 kernel/exit.c:970
 get_signal+0x1405/0x1ec0 kernel/signal.c:2482
 do_signal+0xb8/0x1d20 arch/x86/kernel/signal.c:810
 exit_to_usermode_loop arch/x86/entry/common.c:162 [inline]
 prepare_exit_to_usermode+0x271/0x3a0 arch/x86/entry/common.c:196
 syscall_return_slowpath+0xe9/0x710 arch/x86/entry/common.c:265
 do_syscall_64+0x1ad/0x230 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x455b29
RSP: 002b:00007f5fed2d8ce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
RAX: fffffffffffffe00 RBX: 000000000072bf78 RCX: 0000000000455b29
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000072bf78
RBP: 000000000072bf78 R08: 0000000000000000 R09: 000000000072bf50
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000a3e81f R14: 00007f5fed2d99c0 R15: 0000000000000001
rcu_sched kthread starved for 120002 jiffies! g13013 c13012 f0x2 RCU_GP_WAIT_FQS(3) ->state=0x0 ->cpu=0
RCU grace-period kthread stack dump:
rcu_sched       R  running task    61144     9      2 0x80000000
Call Trace:
 context_switch kernel/sched/core.c:2880 [inline]
 __schedule+0x651/0x770 kernel/sched/core.c:3524
 schedule+0x1cc/0x2f0 kernel/sched/core.c:3568
 schedule_timeout+0x3ef/0x580 kernel/time/timer.c:1801
 rcu_gp_kthread+0x21e1/0x38d0 kernel/rcu/tree.c:2231
 kthread+0x4db/0x6c0 kernel/kthread.c:241
 ret_from_fork+0x35/0x40 arch/x86/entry/entry_64.S:413

Crashes (4):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2018/06/22 13:40 https://github.com/google/kmsan.git master 123906095e30 095ef806 .config console log report ci-upstream-kmsan-gce
2018/06/17 00:37 https://github.com/google/kmsan.git master 88e0e95b30f1 27c5f59f .config console log report ci-upstream-kmsan-gce
2018/06/11 02:56 https://github.com/google/kmsan.git master d6c351f832e3 866118af .config console log report ci-upstream-kmsan-gce
2018/05/15 01:34 https://github.com/google/kmsan.git master 450487484278 d2284dda .config console log report ci-upstream-kmsan-gce
* Struck through repros no longer work on HEAD.