syzbot

 sign-in | mailing list | source | docs
🐞 Open [10] 🐞 Fixed [25] 🐞 Invalid [75] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

kernel panic: rax ADDR

Status: closed as invalid on 2018/07/18 15:25
Reported-by: syzbot+01105180daa154b39435@syzkaller.appspotmail.com
First crash: 2121d, last: 2121d

Sample crash report:
kernel panic at kern/src/rcu.c:325, from core 3:   rax  0x0000000000000001
assertion failed: rpi->gp_acked + 1 == READ_ONCE(rsp->gpnum)  rbx  0x415d415c415b41da
  rcx  0x0000000000000000
  rdx  0xffff800004999b40
Stack Backtrace on Core 3:
  rbp  0xfffffff000094d70
#01 [<0xffffffffc200a3b7>] in backtrace at src/kdebug.c:219
  rsi  0x0000000000000000
#02 [<0xffffffffc2009b7c>] in _panic at src/init.c:266
  rdi  0xffffffffc20acca5
#03 [<0xffffffffc20502f9>] in rcu_report_qs_rpi at src/rcu.c:325
  r8   0x0000000000000000
#04 [<0xffffffffc2050c4c>] in rcu_report_qs at src/rcu.c:340
  r9   0x0000000000000002
#05 [<0xffffffffc2054363>] in __smp_idle at src/smp.c:75
  r10  0x0000000000000078
  r11  0xffffffffc8667f78
  r12  0x0000000000000002
  r13  0xffffffffc20accbd
  r14  0x0000000000000000
  r15  0xffffffffc20acca5
  trap 0x00000008 Double Fault
  gsbs 0xffffffffc8667ec0
  fsbs 0x0000000000000000
  err  0x--------00000000
  rip  0xffffffffc20537ee
ROS(Core 3)>   cs   0x------------0008
  flag 0x0000000000010002
  rsp  0xfffffff000094d40
  ss   0x------------0010
Backtrace of kernel context on Core 2:
#01 [<     [inline]     >] in get_my_pcpu_cache at src/slab.c:127
#01 [<0xffffffffc20537ee>] in kmem_cache_alloc at src/slab.c:560
#02 [<0xffffffffc205a0cc>] in send_kernel_message at src/trap.c:125
#03 [<0xffffffffc200b896>] in kthread_runnable at src/kthread.c:226
#04 [<0xffffffffc200b94a>] in sem_wake_one at src/kthread.c:793
#05 [<0xffffffffc200c8f0>] in __cv_broadcast at src/kthread.c:817
#06 [<0xffffffffc204fe0c>] in rendez_wakeup at src/rendez.c:127
#07 [<0xffffffffc204fe3d>] in rendez_alarm_handler at src/rendez.c:60
#08 [<     [inline]     >] in wake_awaiter at src/alarm.c:142
#08 [<0xffffffffc2000586>] in __trigger_tchain at src/alarm.c:180
#09 [<0xffffffffc2059b75>] in timer_interrupt at src/time.c:50
#10 [<0xffffffffc20a9de2>] in irq_dispatch at arch/x86/trap.c:723
#11 [<0xffffffffc20aa7ca>] in handle_irq at arch/x86/trap.c:757
kernel panic at kern/arch/x86/trap.c:541, from core 2: Double fault!  Check the kernel stack pointer; you likely ran off the end of the stack.
Stack Backtrace on Core 2:
#01 [<0xffffffffc200a3b7>] in backtrace at src/kdebug.c:219
#02 [<0xffffffffc2009b7c>] in _panic at src/init.c:266
#03 [<0xffffffffc20aa253>] in handle_double_fault at arch/x86/trap.c:541

Crashes (4):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2018/07/17 08:34 akaros 93b9607ebeff 570df9b2 .config console log report ci-akaros-main
2018/07/17 07:35 akaros 93b9607ebeff 13761366 .config console log report ci-akaros-main
2018/07/17 03:09 akaros 93b9607ebeff 13761366 .config console log report ci-akaros-main
2018/07/16 23:22 akaros 93b9607ebeff 13761366 .config console log report ci-akaros-main
* Struck through repros no longer work on HEAD.