syzbot

 sign-in | mailing list | source | docs
🐞 Open [196]
🐞 Fixed [42]
🐞 Invalid [470]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

INFO: rcu detected stall in smp_call_function_single

Status: auto-closed as invalid on 2019/02/22 15:22
First crash: 2593d, last: 2593d
Similar bugs (4)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-6.6 INFO: rcu detected stall in smp_call_function origin:lts-only 1 C 12 6d15h 38d 0/2 upstream: reported C repro on 2025/08/10 04:01
linux-5.15 BUG: soft lockup in smp_call_function missing-backport origin:lts-only 1 C error 265 15h59m 913d 0/3 upstream: reported C repro on 2023/03/19 12:10
upstream INFO: rcu detected stall in smp_call_function_single kernel 1 4 2644d 2682d 0/29 closed as invalid on 2018/07/20 09:38
upstream INFO: rcu detected stall in smp_call_function_single (2) kernel 1 3 2569d 2594d 0/29 closed as invalid on 2018/09/05 12:51

Sample crash report:
Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
INFO: rcu_preempt detected stalls on CPUs/tasks:
	(detected by 1, t=10502 jiffies, g=9244, c=9243, q=178)
All QSes seen, last rcu_preempt kthread activity 10502 (4294979208-4294968706), jiffies_till_next_fqs=1, root ->qsmask 0x0
kworker/u4:2    R  running task    25560    32      2 0x00000008
Workqueue: writeback wb_workfn (flush-8:0)
 ffff8801db307ca0 ffffffff814249f9 0000000100000582 0000000100002e88
 dffffc0000000000 ffff8801db322880 ffffffff846e0300 ffff8801db307d70
 ffffffff8143035a 0000000000000000 ffffffff846def20 ffffffff846e0a18
Call Trace:
 <IRQ> [  420.408595]  [<ffffffff814249f9>] sched_show_task.cold.127+0x1c9/0x279 kernel/sched/core.c:5317
 [<ffffffff8143035a>] print_other_cpu_stall kernel/rcu/tree.c:1403 [inline]
 [<ffffffff8143035a>] check_cpu_stall kernel/rcu/tree.c:1520 [inline]
 [<ffffffff8143035a>] __rcu_pending kernel/rcu/tree.c:3487 [inline]
 [<ffffffff8143035a>] rcu_pending kernel/rcu/tree.c:3551 [inline]
 [<ffffffff8143035a>] rcu_check_callbacks.cold.79+0xc70/0xd27 kernel/rcu/tree.c:2880
 [<ffffffff812a0ac0>] update_process_times+0x30/0x70 kernel/time/timer.c:1629
 [<ffffffff812cc695>] tick_sched_handle.isra.14+0x55/0xf0 kernel/time/tick-sched.c:151
 [<ffffffff812cceb2>] tick_sched_timer+0x72/0x120 kernel/time/tick-sched.c:1190
 [<ffffffff812a4775>] __run_hrtimer kernel/time/hrtimer.c:1255 [inline]
 [<ffffffff812a4775>] __hrtimer_run_queues+0x375/0xe50 kernel/time/hrtimer.c:1319
 [<ffffffff812a5cb1>] hrtimer_interrupt+0x1b1/0x430 kernel/time/hrtimer.c:1353
 [<ffffffff810b2384>] local_apic_timer_interrupt+0x74/0xa0 arch/x86/kernel/apic/apic.c:935
 [<ffffffff83a0249c>] smp_apic_timer_interrupt+0x7c/0xa0 arch/x86/kernel/apic/apic.c:959
 [<ffffffff839fe630>] apic_timer_interrupt+0xa0/0xb0 arch/x86/entry/entry_64.S:648
 <EOI> [  420.505397]  [<ffffffff812da9eb>] ? rep_nop arch/x86/include/asm/processor.h:582 [inline]
 <EOI> [  420.505397]  [<ffffffff812da9eb>] ? cpu_relax arch/x86/include/asm/processor.h:587 [inline]
 <EOI> [  420.505397]  [<ffffffff812da9eb>] ? csd_lock_wait kernel/smp.c:96 [inline]
 <EOI> [  420.505397]  [<ffffffff812da9eb>] ? smp_call_function_single+0x11b/0x360 kernel/smp.c:288
 [<ffffffff812da9eb>] rep_nop arch/x86/include/asm/processor.h:582 [inline]
 [<ffffffff812da9eb>] cpu_relax arch/x86/include/asm/processor.h:587 [inline]
 [<ffffffff812da9eb>] csd_lock_wait kernel/smp.c:96 [inline]
 [<ffffffff812da9eb>] smp_call_function_single+0x11b/0x360 kernel/smp.c:288
 [<ffffffff812db9ba>] smp_call_function_many+0x57a/0x6a0 kernel/smp.c:420
 [<ffffffff810ed4a4>] native_flush_tlb_others+0xd4/0x510 arch/x86/mm/tlb.c:340
 [<ffffffff810ed9ec>] flush_tlb_others arch/x86/include/asm/paravirt.h:325 [inline]
 [<ffffffff810ed9ec>] flush_tlb_mm_range+0x10c/0x440 arch/x86/mm/tlb.c:406
 [<ffffffff81500cdc>] flush_tlb_page arch/x86/include/asm/tlbflush.h:300 [inline]
 [<ffffffff81500cdc>] ptep_clear_flush+0xec/0x110 mm/pgtable-generic.c:80
 [<ffffffff814f05d0>] page_mkclean_one+0x100/0x220 mm/rmap.c:1069
 [<ffffffff814ee6f2>] rmap_walk_file+0x2c2/0x780 mm/rmap.c:1874
 [<ffffffff814f614d>] rmap_walk+0xed/0x180 mm/rmap.c:1894
 [<ffffffff814f6876>] page_mkclean+0x196/0x1d0 mm/rmap.c:1113
 [<ffffffff814586e0>] clear_page_dirty_for_io+0x200/0x4e0 mm/page-writeback.c:2672
 [<ffffffff8173c337>] mpage_submit_page+0x77/0x240 fs/ext4/inode.c:2126
 [<ffffffff8173c8b2>] mpage_process_page_bufs+0x3b2/0x490 fs/ext4/inode.c:2250
 [<ffffffff8173ff6f>] mpage_prepare_extent_to_map+0x52f/0x9a0 fs/ext4/inode.c:2619
 [<ffffffff8174f609>] ext4_writepages+0xdb9/0x2e50 fs/ext4/inode.c:2780
 [<ffffffff8145ef2f>] do_writepages+0xef/0x1d0 mm/page-writeback.c:2331
 [<ffffffff81601fa9>] __writeback_single_inode+0xd9/0x1020 fs/fs-writeback.c:1320
 [<ffffffff81603a3c>] writeback_sb_inodes+0x4ac/0xe70 fs/fs-writeback.c:1584
 [<ffffffff816044fb>] __writeback_inodes_wb+0xfb/0x1e0 fs/fs-writeback.c:1653
 [<ffffffff81604c82>] wb_writeback+0x512/0xbd0 fs/fs-writeback.c:1762
 [<ffffffff8160df6e>] wb_do_writeback fs/fs-writeback.c:1894 [inline]
 [<ffffffff8160df6e>] wb_workfn+0x20e/0xdb0 fs/fs-writeback.c:1930
 [<ffffffff8118d181>] process_one_work+0x7e1/0x1500 kernel/workqueue.c:2092
 [<ffffffff8118df76>] worker_thread+0xd6/0x10a0 kernel/workqueue.c:2226
 [<ffffffff8119d0ed>] kthread+0x26d/0x300 kernel/kthread.c:211
 [<ffffffff839fce9c>] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373
rcu_preempt kthread starved for 10502 jiffies! g9244 c9243 f0x2 RCU_GP_WAIT_FQS(3) ->state=0x0
rcu_preempt     R  running task    28984     7      2 0x00000000
 ffff8801d9a39800 ffff8801b6520000 ffff8801b6520000 ffff8801d7bee000
 ffff8801db221c18 ffff8801d9a4fa90 ffffffff839ebdcd ffffffff846def20
 ffff8801d9a3a0c0 ffff8801d9a3a0c0 00ff8801d9a39800 ffff8801db2224e8
Call Trace:
 [<ffffffff839ed3cf>] schedule+0x7f/0x1b0 kernel/sched/core.c:3553
 [<ffffffff839f940b>] schedule_timeout+0x48b/0xf70 kernel/time/timer.c:1791
 [<ffffffff812893cd>] rcu_gp_kthread+0xb9d/0x2110 kernel/rcu/tree.c:2227
 [<ffffffff8119d0ed>] kthread+0x26d/0x300 kernel/kthread.c:211
 [<ffffffff839fce9c>] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2018/08/12 09:26 https://android.googlesource.com/kernel/common android-4.9 9dc978d43ec7 7a88b141 .config console log report ci-android-49-kasan-gce
* Struck through repros no longer work on HEAD.