INFO: rcu detected stall in addrconf_rs_timer
14 views
Skip to first unread message
syzbot
Sep 6, 2019, 10:33:07 AM9/6/19
to syzkaller...@googlegroups.com
Hello,
syzbot found the following crash on:
HEAD commit: 414510bc Linux 4.14.142
git tree: linux-4.14.y
console output: https://syzkaller.appspot.com/x/log.txt?x=125e55c6600000
kernel config: https://syzkaller.appspot.com/x/.config?x=9aa0b2ccd827f416
dashboard link: https://syzkaller.appspot.com/bug?extid=e154076b1d1d78492322
compiler: gcc (GCC) 9.0.0 20181231 (experimental)
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+e15407...@syzkaller.appspotmail.com
INFO: rcu_preempt self-detected stall on CPU
0-...: (1 GPs behind) idle=d12/140000000000002/0 softirq=145580/145585
fqs=4913
(t=10500 jiffies g=44999 c=44998 q=12336)
NMI backtrace for cpu 0
CPU: 0 PID: 7173 Comm: udevd Not tainted 4.14.142 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS
Google 01/01/2011
Call Trace:
<IRQ>
__dump_stack lib/dump_stack.c:17 [inline]
dump_stack+0x138/0x197 lib/dump_stack.c:53
nmi_cpu_backtrace.cold+0x57/0x94 lib/nmi_backtrace.c:101
nmi_trigger_cpumask_backtrace+0x141/0x189 lib/nmi_backtrace.c:62
arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:38
trigger_single_cpu_backtrace include/linux/nmi.h:158 [inline]
rcu_dump_cpu_stacks+0x186/0x1d2 kernel/rcu/tree.c:1396
print_cpu_stall kernel/rcu/tree.c:1542 [inline]
check_cpu_stall kernel/rcu/tree.c:1610 [inline]
__rcu_pending kernel/rcu/tree.c:3390 [inline]
rcu_pending kernel/rcu/tree.c:3452 [inline]
rcu_check_callbacks.cold+0x43d/0xd0a kernel/rcu/tree.c:2792
update_process_times+0x31/0x70 kernel/time/timer.c:1588
tick_sched_handle+0x85/0x160 kernel/time/tick-sched.c:161
tick_sched_timer+0x43/0x130 kernel/time/tick-sched.c:1219
__run_hrtimer kernel/time/hrtimer.c:1220 [inline]
__hrtimer_run_queues+0x270/0xbc0 kernel/time/hrtimer.c:1284
hrtimer_interrupt+0x1d8/0x5d0 kernel/time/hrtimer.c:1318
local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1075 [inline]
smp_apic_timer_interrupt+0x11c/0x5e0 arch/x86/kernel/apic/apic.c:1100
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
RIP: 0010:__list_del_entry_valid+0xb3/0xf5 lib/list_debug.c:54
RSP: 0018:ffff8880aee075c8 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff10
RAX: dffffc0000000000 RBX: ffff888056c0fcf8 RCX: 0000000000000000
RDX: 1ffff1100ad81fb3 RSI: ffff888056c0fd90 RDI: ffff888056c0fd98
RBP: ffff8880aee075e0 R08: 0000000000000000 R09: ffff888069081020
R10: ffff888069081000 R11: ffff888069080640 R12: ffff888056c0fd90
R13: ffff888056c0fd90 R14: ffff888056c0fcf8 R15: ffff888056c0fd80
__list_del_entry include/linux/list.h:117 [inline]
list_move_tail include/linux/list.h:182 [inline]
hhf_dequeue+0x57f/0xa60 net/sched/sch_hhf.c:438
dequeue_skb net/sched/sch_generic.c:148 [inline]
qdisc_restart net/sched/sch_generic.c:241 [inline]
__qdisc_run+0x2b8/0xe00 net/sched/sch_generic.c:257
__dev_xmit_skb net/core/dev.c:3235 [inline]
__dev_queue_xmit+0x1571/0x25e0 net/core/dev.c:3493
dev_queue_xmit+0x18/0x20 net/core/dev.c:3558
neigh_resolve_output net/core/neighbour.c:1364 [inline]
neigh_resolve_output+0x4d8/0x870 net/core/neighbour.c:1344
neigh_output include/net/neighbour.h:500 [inline]
ip6_finish_output2+0x9ab/0x21b0 net/ipv6/ip6_output.c:120
ip6_finish_output+0x4f4/0xb50 net/ipv6/ip6_output.c:154
NF_HOOK_COND include/linux/netfilter.h:239 [inline]
ip6_output+0x20f/0x6d0 net/ipv6/ip6_output.c:171
dst_output include/net/dst.h:462 [inline]
NF_HOOK include/linux/netfilter.h:250 [inline]
ndisc_send_skb+0xb56/0x11e0 net/ipv6/ndisc.c:483
ndisc_send_rs+0x129/0x680 net/ipv6/ndisc.c:677
addrconf_rs_timer+0x289/0x5a0 net/ipv6/addrconf.c:3757
call_timer_fn+0x161/0x670 kernel/time/timer.c:1279
expire_timers kernel/time/timer.c:1318 [inline]
__run_timers kernel/time/timer.c:1634 [inline]
__run_timers kernel/time/timer.c:1602 [inline]
run_timer_softirq+0x5b4/0x1570 kernel/time/timer.c:1647
__do_softirq+0x244/0x9a0 kernel/softirq.c:288
invoke_softirq kernel/softirq.c:368 [inline]
irq_exit+0x160/0x1b0 kernel/softirq.c:409
exiting_irq arch/x86/include/asm/apic.h:648 [inline]
smp_apic_timer_interrupt+0x146/0x5e0 arch/x86/kernel/apic/apic.c:1102
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
</IRQ>
RIP: 0010:memcmp+0x39/0xc0 lib/string.c:861
RSP: 0018:ffff88806908f860 EFLAGS: 00000212 ORIG_RAX: ffffffffffffff10
RAX: ffff88806908f90e RBX: ffff88806908f90e RCX: 0000000000000005
RDX: 00000000000000ff RSI: ffff88809a5f2b6e RDI: ffff88806908f908
RBP: ffff88806908f888 R08: 00000000d1e53faf R09: 0000000000000003
R10: 0000000000000000 R11: ffff888069080640 R12: dffffc0000000000
R13: ffff88806908f958 R14: 000000000000000a R15: ffff88809a5f2b50
find_stack lib/stackdepot.c:176 [inline]
depot_save_stack+0x11c/0x410 lib/stackdepot.c:225
save_stack+0xa9/0xd0 mm/kasan/kasan.c:453
set_track mm/kasan/kasan.c:459 [inline]
kasan_kmalloc mm/kasan/kasan.c:551 [inline]
kasan_kmalloc+0xce/0xf0 mm/kasan/kasan.c:529
kasan_slab_alloc+0xf/0x20 mm/kasan/kasan.c:489
kmem_cache_alloc+0x12e/0x780 mm/slab.c:3552
dup_mmap kernel/fork.c:652 [inline]
dup_mm kernel/fork.c:1208 [inline]
copy_mm kernel/fork.c:1263 [inline]
copy_process.part.0+0x444f/0x6a00 kernel/fork.c:1780
copy_process kernel/fork.c:1595 [inline]
_do_fork+0x19e/0xce0 kernel/fork.c:2085
SYSC_clone kernel/fork.c:2195 [inline]
SyS_clone+0x37/0x50 kernel/fork.c:2189
do_syscall_64+0x1e8/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x7f16c5f9ff46
RSP: 002b:00007ffc004a37c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
RAX: ffffffffffffffda RBX: 00007ffc004a37c0 RCX: 00007f16c5f9ff46
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
RBP: 00007ffc004a3820 R08: 0000000000001c05 R09: 0000000000001c05
R10: 00007f16c68bca70 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffc004a37e0 R14: 0000000000000005 R15: 0000000000000005
INFO: rcu_sched detected stalls on CPUs/tasks:
0-...: (10502 ticks this GP) idle=d12/140000000000001/0
softirq=145585/145585 fqs=0
(detected by 1, t=10563 jiffies, g=35896, c=35895, q=706)
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 7173 Comm: udevd Not tainted 4.14.142 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS
Google 01/01/2011
task: ffff888069080640 task.stack: ffff888069088000
RIP: 0010:__write_once_size include/linux/compiler.h:210 [inline]
RIP: 0010:__list_add include/linux/list.h:66 [inline]
RIP: 0010:list_add_tail include/linux/list.h:93 [inline]
RIP: 0010:list_move_tail include/linux/list.h:183 [inline]
RIP: 0010:hhf_dequeue+0x4a6/0xa60 net/sched/sch_hhf.c:451
RSP: 0018:ffff8880aee075f0 EFLAGS: 00000246
RAX: 1ffff1100ad81fb2 RBX: ffff888056c0fcf8 RCX: 0000000000000000
RDX: 0000000000000100 RSI: ffff888056c0fd90 RDI: ffff888056c0fd00
RBP: ffff8880aee07640 R08: 0000000000000000 R09: ffff888069081020
R10: ffff888069081000 R11: ffff888069080640 R12: dffffc0000000000
R13: ffff888056c0fb00 R14: ffff888056c0fd90 R15: ffff888056c0fd80
FS: 00007f16c68bc7a0(0000) GS:ffff8880aee00000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f16c68c2000 CR3: 0000000093cab000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
<IRQ>
dequeue_skb net/sched/sch_generic.c:148 [inline]
qdisc_restart net/sched/sch_generic.c:241 [inline]
__qdisc_run+0x2b8/0xe00 net/sched/sch_generic.c:257
__dev_xmit_skb net/core/dev.c:3235 [inline]
__dev_queue_xmit+0x1571/0x25e0 net/core/dev.c:3493
dev_queue_xmit+0x18/0x20 net/core/dev.c:3558
neigh_resolve_output net/core/neighbour.c:1364 [inline]
neigh_resolve_output+0x4d8/0x870 net/core/neighbour.c:1344
neigh_output include/net/neighbour.h:500 [inline]
ip6_finish_output2+0x9ab/0x21b0 net/ipv6/ip6_output.c:120
ip6_finish_output+0x4f4/0xb50 net/ipv6/ip6_output.c:154
NF_HOOK_COND include/linux/netfilter.h:239 [inline]
ip6_output+0x20f/0x6d0 net/ipv6/ip6_output.c:171
dst_output include/net/dst.h:462 [inline]
NF_HOOK include/linux/netfilter.h:250 [inline]
ndisc_send_skb+0xb56/0x11e0 net/ipv6/ndisc.c:483
ndisc_send_rs+0x129/0x680 net/ipv6/ndisc.c:677
addrconf_rs_timer+0x289/0x5a0 net/ipv6/addrconf.c:3757
call_timer_fn+0x161/0x670 kernel/time/timer.c:1279
expire_timers kernel/time/timer.c:1318 [inline]
__run_timers kernel/time/timer.c:1634 [inline]
__run_timers kernel/time/timer.c:1602 [inline]
run_timer_softirq+0x5b4/0x1570 kernel/time/timer.c:1647
__do_softirq+0x244/0x9a0 kernel/softirq.c:288
invoke_softirq kernel/softirq.c:368 [inline]
irq_exit+0x160/0x1b0 kernel/softirq.c:409
exiting_irq arch/x86/include/asm/apic.h:648 [inline]
smp_apic_timer_interrupt+0x146/0x5e0 arch/x86/kernel/apic/apic.c:1102
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
</IRQ>
RIP: 0010:memcmp+0x39/0xc0 lib/string.c:861
RSP: 0018:ffff88806908f860 EFLAGS: 00000212 ORIG_RAX: ffffffffffffff10
RAX: ffff88806908f90e RBX: ffff88806908f90e RCX: 0000000000000005
RDX: 00000000000000ff RSI: ffff88809a5f2b6e RDI: ffff88806908f908
RBP: ffff88806908f888 R08: 00000000d1e53faf R09: 0000000000000003
R10: 0000000000000000 R11: ffff888069080640 R12: dffffc0000000000
R13: ffff88806908f958 R14: 000000000000000a R15: ffff88809a5f2b50
find_stack lib/stackdepot.c:176 [inline]
depot_save_stack+0x11c/0x410 lib/stackdepot.c:225
save_stack+0xa9/0xd0 mm/kasan/kasan.c:453
set_track mm/kasan/kasan.c:459 [inline]
kasan_kmalloc mm/kasan/kasan.c:551 [inline]
kasan_kmalloc+0xce/0xf0 mm/kasan/kasan.c:529
kasan_slab_alloc+0xf/0x20 mm/kasan/kasan.c:489
kmem_cache_alloc+0x12e/0x780 mm/slab.c:3552
dup_mmap kernel/fork.c:652 [inline]
dup_mm kernel/fork.c:1208 [inline]
copy_mm kernel/fork.c:1263 [inline]
copy_process.part.0+0x444f/0x6a00 kernel/fork.c:1780
copy_process kernel/fork.c:1595 [inline]
_do_fork+0x19e/0xce0 kernel/fork.c:2085
SYSC_clone kernel/fork.c:2195 [inline]
SyS_clone+0x37/0x50 kernel/fork.c:2189
do_syscall_64+0x1e8/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x7f16c5f9ff46
RSP: 002b:00007ffc004a37c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
RAX: ffffffffffffffda RBX: 00007ffc004a37c0 RCX: 00007f16c5f9ff46
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
RBP: 00007ffc004a3820 R08: 0000000000001c05 R09: 0000000000001c05
R10: 00007f16c68bca70 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffc004a37e0 R14: 0000000000000005 R15: 0000000000000005
Code: 48 89 03 48 89 f8 48 c1 e8 03 42 80 3c 20 00 0f 85 a9 04 00 00 4c 89
f0 4c 89 73 08 48 c1 e8 03 42 80 3c 20 00 0f 85 4d 04 00 00 <49> 89 1e e9
9d fb ff ff e8 8d 51 6d fc 48 8b 45 c0 4c 8b 75 d0
rcu_sched kthread starved for 10564 jiffies! g35896 c35895 f0x0
RCU_GP_WAIT_FQS(3) ->state=0x402 ->cpu=0
rcu_sched I29776 9 2 0x80000000
Call Trace:
context_switch kernel/sched/core.c:2807 [inline]
__schedule+0x7b8/0x1cd0 kernel/sched/core.c:3383
schedule+0x92/0x1c0 kernel/sched/core.c:3427
schedule_timeout+0x43e/0xe10 kernel/time/timer.c:1744
rcu_gp_kthread+0xbf4/0x1ec0 kernel/rcu/tree.c:2255
kthread+0x319/0x430 kernel/kthread.c:232
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot found the following crash on:
HEAD commit: 414510bc Linux 4.14.142
git tree: linux-4.14.y
console output: https://syzkaller.appspot.com/x/log.txt?x=125e55c6600000
kernel config: https://syzkaller.appspot.com/x/.config?x=9aa0b2ccd827f416
dashboard link: https://syzkaller.appspot.com/bug?extid=e154076b1d1d78492322
compiler: gcc (GCC) 9.0.0 20181231 (experimental)
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+e15407...@syzkaller.appspotmail.com
INFO: rcu_preempt self-detected stall on CPU
0-...: (1 GPs behind) idle=d12/140000000000002/0 softirq=145580/145585
fqs=4913
(t=10500 jiffies g=44999 c=44998 q=12336)
NMI backtrace for cpu 0
CPU: 0 PID: 7173 Comm: udevd Not tainted 4.14.142 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS
Google 01/01/2011
Call Trace:
<IRQ>
__dump_stack lib/dump_stack.c:17 [inline]
dump_stack+0x138/0x197 lib/dump_stack.c:53
nmi_cpu_backtrace.cold+0x57/0x94 lib/nmi_backtrace.c:101
nmi_trigger_cpumask_backtrace+0x141/0x189 lib/nmi_backtrace.c:62
arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:38
trigger_single_cpu_backtrace include/linux/nmi.h:158 [inline]
rcu_dump_cpu_stacks+0x186/0x1d2 kernel/rcu/tree.c:1396
print_cpu_stall kernel/rcu/tree.c:1542 [inline]
check_cpu_stall kernel/rcu/tree.c:1610 [inline]
__rcu_pending kernel/rcu/tree.c:3390 [inline]
rcu_pending kernel/rcu/tree.c:3452 [inline]
rcu_check_callbacks.cold+0x43d/0xd0a kernel/rcu/tree.c:2792
update_process_times+0x31/0x70 kernel/time/timer.c:1588
tick_sched_handle+0x85/0x160 kernel/time/tick-sched.c:161
tick_sched_timer+0x43/0x130 kernel/time/tick-sched.c:1219
__run_hrtimer kernel/time/hrtimer.c:1220 [inline]
__hrtimer_run_queues+0x270/0xbc0 kernel/time/hrtimer.c:1284
hrtimer_interrupt+0x1d8/0x5d0 kernel/time/hrtimer.c:1318
local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1075 [inline]
smp_apic_timer_interrupt+0x11c/0x5e0 arch/x86/kernel/apic/apic.c:1100
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
RIP: 0010:__list_del_entry_valid+0xb3/0xf5 lib/list_debug.c:54
RSP: 0018:ffff8880aee075c8 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff10
RAX: dffffc0000000000 RBX: ffff888056c0fcf8 RCX: 0000000000000000
RDX: 1ffff1100ad81fb3 RSI: ffff888056c0fd90 RDI: ffff888056c0fd98
RBP: ffff8880aee075e0 R08: 0000000000000000 R09: ffff888069081020
R10: ffff888069081000 R11: ffff888069080640 R12: ffff888056c0fd90
R13: ffff888056c0fd90 R14: ffff888056c0fcf8 R15: ffff888056c0fd80
__list_del_entry include/linux/list.h:117 [inline]
list_move_tail include/linux/list.h:182 [inline]
hhf_dequeue+0x57f/0xa60 net/sched/sch_hhf.c:438
dequeue_skb net/sched/sch_generic.c:148 [inline]
qdisc_restart net/sched/sch_generic.c:241 [inline]
__qdisc_run+0x2b8/0xe00 net/sched/sch_generic.c:257
__dev_xmit_skb net/core/dev.c:3235 [inline]
__dev_queue_xmit+0x1571/0x25e0 net/core/dev.c:3493
dev_queue_xmit+0x18/0x20 net/core/dev.c:3558
neigh_resolve_output net/core/neighbour.c:1364 [inline]
neigh_resolve_output+0x4d8/0x870 net/core/neighbour.c:1344
neigh_output include/net/neighbour.h:500 [inline]
ip6_finish_output2+0x9ab/0x21b0 net/ipv6/ip6_output.c:120
ip6_finish_output+0x4f4/0xb50 net/ipv6/ip6_output.c:154
NF_HOOK_COND include/linux/netfilter.h:239 [inline]
ip6_output+0x20f/0x6d0 net/ipv6/ip6_output.c:171
dst_output include/net/dst.h:462 [inline]
NF_HOOK include/linux/netfilter.h:250 [inline]
ndisc_send_skb+0xb56/0x11e0 net/ipv6/ndisc.c:483
ndisc_send_rs+0x129/0x680 net/ipv6/ndisc.c:677
addrconf_rs_timer+0x289/0x5a0 net/ipv6/addrconf.c:3757
call_timer_fn+0x161/0x670 kernel/time/timer.c:1279
expire_timers kernel/time/timer.c:1318 [inline]
__run_timers kernel/time/timer.c:1634 [inline]
__run_timers kernel/time/timer.c:1602 [inline]
run_timer_softirq+0x5b4/0x1570 kernel/time/timer.c:1647
__do_softirq+0x244/0x9a0 kernel/softirq.c:288
invoke_softirq kernel/softirq.c:368 [inline]
irq_exit+0x160/0x1b0 kernel/softirq.c:409
exiting_irq arch/x86/include/asm/apic.h:648 [inline]
smp_apic_timer_interrupt+0x146/0x5e0 arch/x86/kernel/apic/apic.c:1102
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
</IRQ>
RIP: 0010:memcmp+0x39/0xc0 lib/string.c:861
RSP: 0018:ffff88806908f860 EFLAGS: 00000212 ORIG_RAX: ffffffffffffff10
RAX: ffff88806908f90e RBX: ffff88806908f90e RCX: 0000000000000005
RDX: 00000000000000ff RSI: ffff88809a5f2b6e RDI: ffff88806908f908
RBP: ffff88806908f888 R08: 00000000d1e53faf R09: 0000000000000003
R10: 0000000000000000 R11: ffff888069080640 R12: dffffc0000000000
R13: ffff88806908f958 R14: 000000000000000a R15: ffff88809a5f2b50
find_stack lib/stackdepot.c:176 [inline]
depot_save_stack+0x11c/0x410 lib/stackdepot.c:225
save_stack+0xa9/0xd0 mm/kasan/kasan.c:453
set_track mm/kasan/kasan.c:459 [inline]
kasan_kmalloc mm/kasan/kasan.c:551 [inline]
kasan_kmalloc+0xce/0xf0 mm/kasan/kasan.c:529
kasan_slab_alloc+0xf/0x20 mm/kasan/kasan.c:489
kmem_cache_alloc+0x12e/0x780 mm/slab.c:3552
dup_mmap kernel/fork.c:652 [inline]
dup_mm kernel/fork.c:1208 [inline]
copy_mm kernel/fork.c:1263 [inline]
copy_process.part.0+0x444f/0x6a00 kernel/fork.c:1780
copy_process kernel/fork.c:1595 [inline]
_do_fork+0x19e/0xce0 kernel/fork.c:2085
SYSC_clone kernel/fork.c:2195 [inline]
SyS_clone+0x37/0x50 kernel/fork.c:2189
do_syscall_64+0x1e8/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x7f16c5f9ff46
RSP: 002b:00007ffc004a37c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
RAX: ffffffffffffffda RBX: 00007ffc004a37c0 RCX: 00007f16c5f9ff46
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
RBP: 00007ffc004a3820 R08: 0000000000001c05 R09: 0000000000001c05
R10: 00007f16c68bca70 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffc004a37e0 R14: 0000000000000005 R15: 0000000000000005
INFO: rcu_sched detected stalls on CPUs/tasks:
0-...: (10502 ticks this GP) idle=d12/140000000000001/0
softirq=145585/145585 fqs=0
(detected by 1, t=10563 jiffies, g=35896, c=35895, q=706)
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 7173 Comm: udevd Not tainted 4.14.142 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS
Google 01/01/2011
task: ffff888069080640 task.stack: ffff888069088000
RIP: 0010:__write_once_size include/linux/compiler.h:210 [inline]
RIP: 0010:__list_add include/linux/list.h:66 [inline]
RIP: 0010:list_add_tail include/linux/list.h:93 [inline]
RIP: 0010:list_move_tail include/linux/list.h:183 [inline]
RIP: 0010:hhf_dequeue+0x4a6/0xa60 net/sched/sch_hhf.c:451
RSP: 0018:ffff8880aee075f0 EFLAGS: 00000246
RAX: 1ffff1100ad81fb2 RBX: ffff888056c0fcf8 RCX: 0000000000000000
RDX: 0000000000000100 RSI: ffff888056c0fd90 RDI: ffff888056c0fd00
RBP: ffff8880aee07640 R08: 0000000000000000 R09: ffff888069081020
R10: ffff888069081000 R11: ffff888069080640 R12: dffffc0000000000
R13: ffff888056c0fb00 R14: ffff888056c0fd90 R15: ffff888056c0fd80
FS: 00007f16c68bc7a0(0000) GS:ffff8880aee00000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f16c68c2000 CR3: 0000000093cab000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
<IRQ>
dequeue_skb net/sched/sch_generic.c:148 [inline]
qdisc_restart net/sched/sch_generic.c:241 [inline]
__qdisc_run+0x2b8/0xe00 net/sched/sch_generic.c:257
__dev_xmit_skb net/core/dev.c:3235 [inline]
__dev_queue_xmit+0x1571/0x25e0 net/core/dev.c:3493
dev_queue_xmit+0x18/0x20 net/core/dev.c:3558
neigh_resolve_output net/core/neighbour.c:1364 [inline]
neigh_resolve_output+0x4d8/0x870 net/core/neighbour.c:1344
neigh_output include/net/neighbour.h:500 [inline]
ip6_finish_output2+0x9ab/0x21b0 net/ipv6/ip6_output.c:120
ip6_finish_output+0x4f4/0xb50 net/ipv6/ip6_output.c:154
NF_HOOK_COND include/linux/netfilter.h:239 [inline]
ip6_output+0x20f/0x6d0 net/ipv6/ip6_output.c:171
dst_output include/net/dst.h:462 [inline]
NF_HOOK include/linux/netfilter.h:250 [inline]
ndisc_send_skb+0xb56/0x11e0 net/ipv6/ndisc.c:483
ndisc_send_rs+0x129/0x680 net/ipv6/ndisc.c:677
addrconf_rs_timer+0x289/0x5a0 net/ipv6/addrconf.c:3757
call_timer_fn+0x161/0x670 kernel/time/timer.c:1279
expire_timers kernel/time/timer.c:1318 [inline]
__run_timers kernel/time/timer.c:1634 [inline]
__run_timers kernel/time/timer.c:1602 [inline]
run_timer_softirq+0x5b4/0x1570 kernel/time/timer.c:1647
__do_softirq+0x244/0x9a0 kernel/softirq.c:288
invoke_softirq kernel/softirq.c:368 [inline]
irq_exit+0x160/0x1b0 kernel/softirq.c:409
exiting_irq arch/x86/include/asm/apic.h:648 [inline]
smp_apic_timer_interrupt+0x146/0x5e0 arch/x86/kernel/apic/apic.c:1102
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
</IRQ>
RIP: 0010:memcmp+0x39/0xc0 lib/string.c:861
RSP: 0018:ffff88806908f860 EFLAGS: 00000212 ORIG_RAX: ffffffffffffff10
RAX: ffff88806908f90e RBX: ffff88806908f90e RCX: 0000000000000005
RDX: 00000000000000ff RSI: ffff88809a5f2b6e RDI: ffff88806908f908
RBP: ffff88806908f888 R08: 00000000d1e53faf R09: 0000000000000003
R10: 0000000000000000 R11: ffff888069080640 R12: dffffc0000000000
R13: ffff88806908f958 R14: 000000000000000a R15: ffff88809a5f2b50
find_stack lib/stackdepot.c:176 [inline]
depot_save_stack+0x11c/0x410 lib/stackdepot.c:225
save_stack+0xa9/0xd0 mm/kasan/kasan.c:453
set_track mm/kasan/kasan.c:459 [inline]
kasan_kmalloc mm/kasan/kasan.c:551 [inline]
kasan_kmalloc+0xce/0xf0 mm/kasan/kasan.c:529
kasan_slab_alloc+0xf/0x20 mm/kasan/kasan.c:489
kmem_cache_alloc+0x12e/0x780 mm/slab.c:3552
dup_mmap kernel/fork.c:652 [inline]
dup_mm kernel/fork.c:1208 [inline]
copy_mm kernel/fork.c:1263 [inline]
copy_process.part.0+0x444f/0x6a00 kernel/fork.c:1780
copy_process kernel/fork.c:1595 [inline]
_do_fork+0x19e/0xce0 kernel/fork.c:2085
SYSC_clone kernel/fork.c:2195 [inline]
SyS_clone+0x37/0x50 kernel/fork.c:2189
do_syscall_64+0x1e8/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x7f16c5f9ff46
RSP: 002b:00007ffc004a37c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
RAX: ffffffffffffffda RBX: 00007ffc004a37c0 RCX: 00007f16c5f9ff46
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
RBP: 00007ffc004a3820 R08: 0000000000001c05 R09: 0000000000001c05
R10: 00007f16c68bca70 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffc004a37e0 R14: 0000000000000005 R15: 0000000000000005
Code: 48 89 03 48 89 f8 48 c1 e8 03 42 80 3c 20 00 0f 85 a9 04 00 00 4c 89
f0 4c 89 73 08 48 c1 e8 03 42 80 3c 20 00 0f 85 4d 04 00 00 <49> 89 1e e9
9d fb ff ff e8 8d 51 6d fc 48 8b 45 c0 4c 8b 75 d0
rcu_sched kthread starved for 10564 jiffies! g35896 c35895 f0x0
RCU_GP_WAIT_FQS(3) ->state=0x402 ->cpu=0
rcu_sched I29776 9 2 0x80000000
Call Trace:
context_switch kernel/sched/core.c:2807 [inline]
__schedule+0x7b8/0x1cd0 kernel/sched/core.c:3383
schedule+0x92/0x1c0 kernel/sched/core.c:3427
schedule_timeout+0x43e/0xe10 kernel/time/timer.c:1744
rcu_gp_kthread+0xbf4/0x1ec0 kernel/rcu/tree.c:2255
kthread+0x319/0x430 kernel/kthread.c:232
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot
Sep 6, 2019, 10:42:07 AM9/6/19
to syzkaller...@googlegroups.com
Hello,
syzbot found the following crash on:
HEAD commit: 0fed55c2 Linux 4.19.70
syzbot found the following crash on:
git tree: linux-4.19.y
console output: https://syzkaller.appspot.com/x/log.txt?x=12421efa600000
kernel config: https://syzkaller.appspot.com/x/.config?x=2964bf2f89c3f203
dashboard link: https://syzkaller.appspot.com/bug?extid=3124886eb71de4f18b40
compiler: gcc (GCC) 9.0.0 20181231 (experimental)
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+312488...@syzkaller.appspotmail.com
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
rcu: INFO: rcu_preempt self-detected stall on CPU
rcu: 1-....: (1 GPs behind) idle=4d2/0/0x3 softirq=37107/37108 fqs=5248
rcu: (t=10502 jiffies g=35621 q=3135)
NMI backtrace for cpu 1
CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.19.70 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS
Google 01/01/2011
Call Trace:
<IRQ>
__dump_stack lib/dump_stack.c:77 [inline]
Google 01/01/2011
Call Trace:
<IRQ>
dump_stack+0x172/0x1f0 lib/dump_stack.c:113
nmi_cpu_backtrace.cold+0x63/0xa4 lib/nmi_backtrace.c:101
nmi_trigger_cpumask_backtrace+0x1b0/0x1f8 lib/nmi_backtrace.c:62
arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:38
trigger_single_cpu_backtrace include/linux/nmi.h:164 [inline]
rcu_dump_cpu_stacks+0x189/0x1d5 kernel/rcu/tree.c:1340
print_cpu_stall kernel/rcu/tree.c:1478 [inline]
check_cpu_stall kernel/rcu/tree.c:1550 [inline]
__rcu_pending kernel/rcu/tree.c:3293 [inline]
rcu_pending kernel/rcu/tree.c:3336 [inline]
rcu_check_callbacks.cold+0x5e3/0xd90 kernel/rcu/tree.c:2682
update_process_times+0x32/0x80 kernel/time/timer.c:1636
tick_sched_handle+0xa2/0x190 kernel/time/tick-sched.c:164
tick_sched_timer+0x47/0x130 kernel/time/tick-sched.c:1274
__run_hrtimer kernel/time/hrtimer.c:1398 [inline]
__hrtimer_run_queues+0x33b/0xdc0 kernel/time/hrtimer.c:1460
hrtimer_interrupt+0x314/0x770 kernel/time/hrtimer.c:1518
local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1067 [inline]
smp_apic_timer_interrupt+0x111/0x550 arch/x86/kernel/apic/apic.c:1092
apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:893
RIP: 0010:__list_del_entry include/linux/list.h:117 [inline]
RIP: 0010:list_move_tail include/linux/list.h:182 [inline]
RIP: 0010:hhf_dequeue+0x5aa/0xa00 net/sched/sch_hhf.c:438
Code: f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 32 04 00 00 45 0f af b5
d4 02 00 00 48 89 df 45 01 fe 44 89 73 10 e8 76 48 97 fd <31> ff 41 89 c6
89 c6 e8 4a de dc fb 45 84 f6 74 63 e8 00 dd dc fb
RSP: 0018:ffff8880ae906e88 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
RAX: 0000000000000001 RBX: ffff8880a13b7df8 RCX: ffffffff858e8489
RDX: ffff8880a13b7df8 RSI: ffffffff858e893b RDI: ffff8880a13b7e98
RBP: ffff8880ae906ed8 R08: ffff8880aa2703c0 R09: 0000000000000007
R10: ffff8880aa270d58 R11: 00000000c253ba0e R12: dffffc0000000000
R13: ffff8880a13b7b40 R14: 0000000000000000 R15: 0000000000000000
dequeue_skb net/sched/sch_generic.c:277 [inline]
qdisc_restart net/sched/sch_generic.c:380 [inline]
__qdisc_run+0x1e7/0x1960 net/sched/sch_generic.c:398
__dev_xmit_skb net/core/dev.c:3501 [inline]
__dev_queue_xmit+0x165c/0x2fe0 net/core/dev.c:3811
dev_queue_xmit+0x18/0x20 net/core/dev.c:3876
br_dev_queue_push_xmit+0x405/0x5d0 net/bridge/br_forward.c:56
NF_HOOK include/linux/netfilter.h:289 [inline]
NF_HOOK include/linux/netfilter.h:283 [inline]
br_forward_finish+0xfa/0x400 net/bridge/br_forward.c:69
NF_HOOK include/linux/netfilter.h:289 [inline]
NF_HOOK include/linux/netfilter.h:283 [inline]
__br_forward+0x647/0xb30 net/bridge/br_forward.c:113
deliver_clone+0x61/0xc0 net/bridge/br_forward.c:129
maybe_deliver net/bridge/br_forward.c:184 [inline]
maybe_deliver net/bridge/br_forward.c:172 [inline]
br_flood+0x4da/0x710 net/bridge/br_forward.c:226
br_dev_xmit+0xeeb/0x1490 net/bridge/br_device.c:103
__netdev_start_xmit include/linux/netdevice.h:4303 [inline]
netdev_start_xmit include/linux/netdevice.h:4312 [inline]
xmit_one net/core/dev.c:3257 [inline]
dev_hard_start_xmit+0x1a5/0x980 net/core/dev.c:3273
__dev_queue_xmit+0x2704/0x2fe0 net/core/dev.c:3843
dev_queue_xmit+0x18/0x20 net/core/dev.c:3876
neigh_resolve_output net/core/neighbour.c:1369 [inline]
neigh_resolve_output+0x5b7/0x980 net/core/neighbour.c:1349
neigh_output include/net/neighbour.h:501 [inline]
ip6_finish_output2+0xb7f/0x2550 net/ipv6/ip6_output.c:120
ip6_finish_output+0x574/0xbe0 net/ipv6/ip6_output.c:154
NF_HOOK_COND include/linux/netfilter.h:278 [inline]
ip6_output+0x235/0x7c0 net/ipv6/ip6_output.c:171
dst_output include/net/dst.h:447 [inline]
NF_HOOK include/linux/netfilter.h:289 [inline]
ndisc_send_skb+0xf3b/0x1460 net/ipv6/ndisc.c:491
ndisc_send_rs+0x134/0x6d0 net/ipv6/ndisc.c:685
addrconf_rs_timer+0x30f/0x680 net/ipv6/addrconf.c:3821
call_timer_fn+0x18d/0x720 kernel/time/timer.c:1326
expire_timers kernel/time/timer.c:1363 [inline]
__run_timers kernel/time/timer.c:1682 [inline]
__run_timers kernel/time/timer.c:1650 [inline]
run_timer_softirq+0x652/0x1700 kernel/time/timer.c:1695
__do_softirq+0x25c/0x921 kernel/softirq.c:292
invoke_softirq kernel/softirq.c:372 [inline]
irq_exit+0x180/0x1d0 kernel/softirq.c:412
exiting_irq arch/x86/include/asm/apic.h:536 [inline]
smp_apic_timer_interrupt+0x13b/0x550 arch/x86/kernel/apic/apic.c:1094
apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:893
</IRQ>
RIP: 0010:native_safe_halt+0xe/0x10 arch/x86/include/asm/irqflags.h:61
Code: ff ff 48 89 df e8 82 1b ae fa eb 82 e9 07 00 00 00 0f 00 2d a4 fc 53
00 f4 c3 66 90 e9 07 00 00 00 0f 00 2d 94 fc 53 00 fb f4 <c3> 90 55 48 89
e5 41 57 41 56 41 55 41 54 53 e8 ce fd 65 fa e8 39
RSP: 0018:ffff8880aa27fd00 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
RAX: 1ffffffff10e48c4 RBX: ffff8880aa2703c0 RCX: 0000000000000000
RDX: dffffc0000000000 RSI: 0000000000000001 RDI: ffff8880aa270c3c
RBP: ffff8880aa27fd30 R08: ffff8880aa2703c0 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001
R13: ffffffff88724610 R14: 0000000000000001 R15: 0000000000000000
arch_cpu_idle+0xa/0x10 arch/x86/kernel/process.c:556
default_idle_call+0x36/0x90 kernel/sched/idle.c:93
cpuidle_idle_call kernel/sched/idle.c:153 [inline]
do_idle+0x377/0x560 kernel/sched/idle.c:262
cpu_startup_entry+0xc8/0xe0 kernel/sched/idle.c:368
start_secondary+0x3e8/0x5b0 arch/x86/kernel/smpboot.c:271
secondary_startup_64+0xa4/0xb0 arch/x86/kernel/head_64.S:243
syzbot
Dec 17, 2019, 1:46:04 PM12/17/19
to syzkaller...@googlegroups.com
Auto-closing this bug as obsolete.
Crashes did not happen for a while, no reproducer and no activity.
Crashes did not happen for a while, no reproducer and no activity.
syzbot
Dec 22, 2019, 6:02:09 AM12/22/19
to syzkaller...@googlegroups.com
syzbot has found a reproducer for the following crash on:
HEAD commit: e1f7d50a Linux 4.14.160
git tree: linux-4.14.y
console output: https://syzkaller.appspot.com/x/log.txt?x=114554e1e00000
kernel config: https://syzkaller.appspot.com/x/.config?x=46599517442ad9fb
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+e15407...@syzkaller.appspotmail.com
IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
8021q: adding VLAN 0 to HW filter on device batadv0
INFO: rcu_sched self-detected stall on CPU
0-...: (10499 ticks this GP) idle=bc6/140000000000002/0
softirq=59766/59766 fqs=7
(t=10500 jiffies g=1071 c=1070 q=15)
rcu_sched kthread starved for 1451 jiffies! g1071 c1070 f0x0
RCU_GP_WAIT_FQS(3) ->state=0x0 ->cpu=1
rcu_sched R running task 29824 9 2 0x80000000
Call Trace:
context_switch kernel/sched/core.c:2808 [inline]
__schedule+0x7b8/0x1cd0 kernel/sched/core.c:3384
schedule+0x92/0x1c0 kernel/sched/core.c:3428
schedule_timeout+0x43e/0xe10 kernel/time/timer.c:1746
RIP: 0010:ip6_finish_output2+0x1169/0x21b0 net/ipv6/ip6_output.c:71
RSP: 0018:ffff8880aec078f0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff10
RAX: dffffc0000000000 RBX: ffff88809773a440 RCX: 1ffff1101287791e
RDX: 1ffff1100fee71c0 RSI: ffff888083ac8800 RDI: ffff888090e79ca8
RBP: ffff8880aec07a00 R08: ffff8880943bc080 R09: 0000000000000003
R10: ffff8880aec07a18 R11: ffff8880943bc080 R12: ffff88808be5c700
R13: ffff88808be5c7c4 R14: ffff888083ac8800 R15: ffff88807f738e00
__run_timers kernel/time/timer.c:1604 [inline]
run_timer_softirq+0x5b7/0x1520 kernel/time/timer.c:1649
RSP: 0018:ffff888081a87e68 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff10
RAX: 0000000000000000 RBX: ffff888093b333c0 RCX: ffff8880943bc900
RDX: ffff8880952e9cc0 RSI: ffff888093b33498 RDI: ffff88807f09b0a0
RBP: ffff888081a87e80 R08: 000000000000288b R09: ffffffff89573e98
R10: ffff8880943bc900 R11: ffff8880943bc080 R12: 0000000000000003
R13: ffff88807f09b080 R14: ffff888093b33480 R15: ffff8880876ef840
__close_fd+0x14a/0x250 fs/file.c:637
SYSC_close fs/open.c:1180 [inline]
SyS_close+0x46/0xa0 fs/open.c:1178
do_syscall_64+0x1e8/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x414490
RSP: 002b:00007ffd97595e78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000414490
RDX: 0000001b2e020000 RSI: 0000000000000000 RDI: 0000000000000003
RBP: 0000000000000001 R08: 000000000000000e R09: ffffffffffffffff
R10: ffffffffffffffff R11: 0000000000000246 R12: 000000000075bf20
R13: 0000000000000004 R14: 0000000000760998 R15: 000000000075bf2c
INFO: rcu_preempt detected stalls on CPUs/tasks:
Tasks blocked on level-0 rcu_node (CPUs 0-1): P7087
(detected by 1, t=10554 jiffies, g=2049, c=2048, q=998)
kworker/u4:0 R running task 26768 7087 2 0x80000000
Workqueue: bat_events batadv_nc_worker
Call Trace:
context_switch kernel/sched/core.c:2808 [inline]
__schedule+0x7b8/0x1cd0 kernel/sched/core.c:3384
preempt_schedule_notrace kernel/sched/core.c:3582 [inline]
preempt_schedule_notrace+0xa0/0x130 kernel/sched/core.c:3553
___preempt_schedule_notrace+0x16/0x2c
rcu_is_watching+0x8c/0xb0 kernel/rcu/tree.c:1131
rcu_read_unlock include/linux/rcupdate.h:681 [inline]
batadv_nc_purge_orig_hash net/batman-adv/network-coding.c:420 [inline]
batadv_nc_worker+0x40a/0x6d0 net/batman-adv/network-coding.c:726
process_one_work+0x863/0x1600 kernel/workqueue.c:2114
worker_thread+0x5d9/0x1050 kernel/workqueue.c:2248
Workqueue: bat_events batadv_nc_worker
Call Trace:
context_switch kernel/sched/core.c:2808 [inline]
__schedule+0x7b8/0x1cd0 kernel/sched/core.c:3384
preempt_schedule_notrace kernel/sched/core.c:3582 [inline]
preempt_schedule_notrace+0xa0/0x130 kernel/sched/core.c:3553
___preempt_schedule_notrace+0x16/0x2c
rcu_is_watching+0x8c/0xb0 kernel/rcu/tree.c:1131
rcu_read_unlock include/linux/rcupdate.h:681 [inline]
batadv_nc_purge_orig_hash net/batman-adv/network-coding.c:420 [inline]
batadv_nc_worker+0x40a/0x6d0 net/batman-adv/network-coding.c:726
process_one_work+0x863/0x1600 kernel/workqueue.c:2114
worker_thread+0x5d9/0x1050 kernel/workqueue.c:2248
RCU_GP_WAIT_FQS(3) ->state=0x0 ->cpu=1
rcu_preempt R running task 29776 8 2 0x80000000
Call Trace:
context_switch kernel/sched/core.c:2808 [inline]
__schedule+0x7b8/0x1cd0 kernel/sched/core.c:3384
schedule+0x92/0x1c0 kernel/sched/core.c:3428
schedule_timeout+0x43e/0xe10 kernel/time/timer.c:1746
bridge0: port 2(bridge_slave_1) entered disabled state
device bridge_slave_0 left promiscuous mode
bridge0: port 1(bridge_slave_0) entered disabled state
device bridge_slave_1 left promiscuous mode
bridge0: port 2(bridge_slave_1) entered disabled state
device bridge_slave_0 left promiscuous mode
bridge0: port 1(bridge_slave_0) entered disabled state
device bridge_slave_1 left promiscuous mode
bridge0: port 2(bridge_slave_1) entered disabled state
device bridge_slave_0 left promiscuous mode
bridge0: port 1(bridge_slave_0) entered disabled state
device bridge_slave_1 left promiscuous mode
bridge0: port 2(bridge_slave_1) entered disabled state
device bridge_slave_0 left promiscuous mode
bridge0: port 1(bridge_slave_0) entered disabled state
device bridge_slave_1 left promiscuous mode
bridge0: port 2(bridge_slave_1) entered disabled state
device bridge_slave_0 left promiscuous mode
bridge0: port 1(bridge_slave_0) entered disabled state
device hsr_slave_1 left promiscuous mode
device hsr_slave_0 left promiscuous mode
team0 (unregistering): Port device team_slave_1 removed
team0 (unregistering): Port device team_slave_0 removed
bond0 (unregistering): Releasing backup interface bond_slave_1
bond0 (unregistering): Releasing backup interface bond_slave_0
bond0 (unregistering): Released all slaves
device hsr_slave_1 left promiscuous mode
device hsr_slave_0 left promiscuous mode
team0 (unregistering): Port device team_slave_1 removed
team0 (unregistering): Port device team_slave_0 removed
bond0 (unregistering): Releasing backup interface bond_slave_1
bond0 (unregistering): Releasing backup interface bond_slave_0
bond0 (unregistering): Released all slaves
device hsr_slave_1 left promiscuous mode
device hsr_slave_0 left promiscuous mode
team0 (unregistering): Port device team_slave_1 removed
team0 (unregistering): Port device team_slave_0 removed
bond0 (unregistering): Releasing backup interface bond_slave_1
bond0 (unregistering): Releasing backup interface bond_slave_0
bond0 (unregistering): Released all slaves
device hsr_slave_1 left promiscuous mode
device hsr_slave_0 left promiscuous mode
team0 (unregistering): Port device team_slave_1 removed
team0 (unregistering): Port device team_slave_0 removed
bond0 (unregistering): Releasing backup interface bond_slave_1
bond0 (unregistering): Releasing backup interface bond_slave_0
bond0 (unregistering): Released all slaves
device hsr_slave_1 left promiscuous mode
device hsr_slave_0 left promiscuous mode
team0 (unregistering): Port device team_slave_1 removed
team0 (unregistering): Port device team_slave_0 removed
bond0 (unregistering): Releasing backup interface bond_slave_1
bond0 (unregistering): Releasing backup interface bond_slave_0
bond0 (unregistering): Released all slaves
IPVS: ftp: loaded support on port[0] = 21
HEAD commit: e1f7d50a Linux 4.14.160
git tree: linux-4.14.y
console output: https://syzkaller.appspot.com/x/log.txt?x=114554e1e00000
kernel config: https://syzkaller.appspot.com/x/.config?x=46599517442ad9fb
dashboard link: https://syzkaller.appspot.com/bug?extid=e154076b1d1d78492322
compiler: gcc (GCC) 9.0.0 20181231 (experimental)
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=1153b90ae00000
compiler: gcc (GCC) 9.0.0 20181231 (experimental)
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+e15407...@syzkaller.appspotmail.com
IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
8021q: adding VLAN 0 to HW filter on device batadv0
INFO: rcu_sched self-detected stall on CPU
0-...: (10499 ticks this GP) idle=bc6/140000000000002/0
softirq=59766/59766 fqs=7
(t=10500 jiffies g=1071 c=1070 q=15)
rcu_sched kthread starved for 1451 jiffies! g1071 c1070 f0x0
RCU_GP_WAIT_FQS(3) ->state=0x0 ->cpu=1
rcu_sched R running task 29824 9 2 0x80000000
Call Trace:
context_switch kernel/sched/core.c:2808 [inline]
__schedule+0x7b8/0x1cd0 kernel/sched/core.c:3384
schedule+0x92/0x1c0 kernel/sched/core.c:3428
schedule_timeout+0x43e/0xe10 kernel/time/timer.c:1746
rcu_gp_kthread+0xbf4/0x1ec0 kernel/rcu/tree.c:2255
kthread+0x319/0x430 kernel/kthread.c:232
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
kthread+0x319/0x430 kernel/kthread.c:232
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
NMI backtrace for cpu 0
CPU: 0 PID: 7318 Comm: syz-executor.4 Not tainted 4.14.160-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS
Google 01/01/2011
Call Trace:
<IRQ>
__dump_stack lib/dump_stack.c:17 [inline]
dump_stack+0x142/0x197 lib/dump_stack.c:58
Google 01/01/2011
Call Trace:
<IRQ>
__dump_stack lib/dump_stack.c:17 [inline]
nmi_cpu_backtrace.cold+0x57/0x94 lib/nmi_backtrace.c:101
nmi_trigger_cpumask_backtrace+0x141/0x189 lib/nmi_backtrace.c:62
arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:38
trigger_single_cpu_backtrace include/linux/nmi.h:158 [inline]
rcu_dump_cpu_stacks+0x186/0x1d2 kernel/rcu/tree.c:1396
print_cpu_stall kernel/rcu/tree.c:1542 [inline]
check_cpu_stall kernel/rcu/tree.c:1610 [inline]
__rcu_pending kernel/rcu/tree.c:3390 [inline]
rcu_pending kernel/rcu/tree.c:3452 [inline]
rcu_check_callbacks.cold+0x43d/0xd0a kernel/rcu/tree.c:2792
update_process_times+0x31/0x70 kernel/time/timer.c:1590
nmi_trigger_cpumask_backtrace+0x141/0x189 lib/nmi_backtrace.c:62
arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:38
trigger_single_cpu_backtrace include/linux/nmi.h:158 [inline]
rcu_dump_cpu_stacks+0x186/0x1d2 kernel/rcu/tree.c:1396
print_cpu_stall kernel/rcu/tree.c:1542 [inline]
check_cpu_stall kernel/rcu/tree.c:1610 [inline]
__rcu_pending kernel/rcu/tree.c:3390 [inline]
rcu_pending kernel/rcu/tree.c:3452 [inline]
rcu_check_callbacks.cold+0x43d/0xd0a kernel/rcu/tree.c:2792
tick_sched_handle+0x85/0x160 kernel/time/tick-sched.c:161
tick_sched_timer+0x43/0x130 kernel/time/tick-sched.c:1219
__run_hrtimer kernel/time/hrtimer.c:1220 [inline]
__hrtimer_run_queues+0x270/0xbc0 kernel/time/hrtimer.c:1284
hrtimer_interrupt+0x1d8/0x5d0 kernel/time/hrtimer.c:1318
local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1075 [inline]
smp_apic_timer_interrupt+0x11c/0x5e0 arch/x86/kernel/apic/apic.c:1100
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
RIP: 0010:ip6_dst_idev include/net/ip6_fib.h:147 [inline]
tick_sched_timer+0x43/0x130 kernel/time/tick-sched.c:1219
__run_hrtimer kernel/time/hrtimer.c:1220 [inline]
__hrtimer_run_queues+0x270/0xbc0 kernel/time/hrtimer.c:1284
hrtimer_interrupt+0x1d8/0x5d0 kernel/time/hrtimer.c:1318
local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1075 [inline]
smp_apic_timer_interrupt+0x11c/0x5e0 arch/x86/kernel/apic/apic.c:1100
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
RIP: 0010:ip6_finish_output2+0x1169/0x21b0 net/ipv6/ip6_output.c:71
RSP: 0018:ffff8880aec078f0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff10
RAX: dffffc0000000000 RBX: ffff88809773a440 RCX: 1ffff1101287791e
RDX: 1ffff1100fee71c0 RSI: ffff888083ac8800 RDI: ffff888090e79ca8
RBP: ffff8880aec07a00 R08: ffff8880943bc080 R09: 0000000000000003
R10: ffff8880aec07a18 R11: ffff8880943bc080 R12: ffff88808be5c700
R13: ffff88808be5c7c4 R14: ffff888083ac8800 R15: ffff88807f738e00
ip6_finish_output+0x4f4/0xb50 net/ipv6/ip6_output.c:154
NF_HOOK_COND include/linux/netfilter.h:239 [inline]
ip6_output+0x20f/0x6d0 net/ipv6/ip6_output.c:171
dst_output include/net/dst.h:462 [inline]
NF_HOOK include/linux/netfilter.h:250 [inline]
ndisc_send_skb+0xb56/0x11e0 net/ipv6/ndisc.c:483
ndisc_send_rs+0x12b/0x670 net/ipv6/ndisc.c:677
NF_HOOK_COND include/linux/netfilter.h:239 [inline]
ip6_output+0x20f/0x6d0 net/ipv6/ip6_output.c:171
dst_output include/net/dst.h:462 [inline]
NF_HOOK include/linux/netfilter.h:250 [inline]
ndisc_send_skb+0xb56/0x11e0 net/ipv6/ndisc.c:483
addrconf_rs_timer+0x289/0x5a0 net/ipv6/addrconf.c:3757
call_timer_fn+0x161/0x670 kernel/time/timer.c:1279
expire_timers kernel/time/timer.c:1318 [inline]
__run_timers kernel/time/timer.c:1636 [inline]
call_timer_fn+0x161/0x670 kernel/time/timer.c:1279
expire_timers kernel/time/timer.c:1318 [inline]
__run_timers kernel/time/timer.c:1604 [inline]
run_timer_softirq+0x5b7/0x1520 kernel/time/timer.c:1649
__do_softirq+0x244/0x9a0 kernel/softirq.c:288
invoke_softirq kernel/softirq.c:368 [inline]
irq_exit+0x160/0x1b0 kernel/softirq.c:409
exiting_irq arch/x86/include/asm/apic.h:648 [inline]
smp_apic_timer_interrupt+0x146/0x5e0 arch/x86/kernel/apic/apic.c:1102
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
</IRQ>
RIP: 0010:__put_unused_fd+0xae/0x180 fs/file.c:558
invoke_softirq kernel/softirq.c:368 [inline]
irq_exit+0x160/0x1b0 kernel/softirq.c:409
exiting_irq arch/x86/include/asm/apic.h:648 [inline]
smp_apic_timer_interrupt+0x146/0x5e0 arch/x86/kernel/apic/apic.c:1102
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
</IRQ>
RSP: 0018:ffff888081a87e68 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff10
RAX: 0000000000000000 RBX: ffff888093b333c0 RCX: ffff8880943bc900
RDX: ffff8880952e9cc0 RSI: ffff888093b33498 RDI: ffff88807f09b0a0
RBP: ffff888081a87e80 R08: 000000000000288b R09: ffffffff89573e98
R10: ffff8880943bc900 R11: ffff8880943bc080 R12: 0000000000000003
R13: ffff88807f09b080 R14: ffff888093b33480 R15: ffff8880876ef840
__close_fd+0x14a/0x250 fs/file.c:637
SYSC_close fs/open.c:1180 [inline]
SyS_close+0x46/0xa0 fs/open.c:1178
do_syscall_64+0x1e8/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x414490
RSP: 002b:00007ffd97595e78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000414490
RDX: 0000001b2e020000 RSI: 0000000000000000 RDI: 0000000000000003
RBP: 0000000000000001 R08: 000000000000000e R09: ffffffffffffffff
R10: ffffffffffffffff R11: 0000000000000246 R12: 000000000075bf20
R13: 0000000000000004 R14: 0000000000760998 R15: 000000000075bf2c
INFO: rcu_preempt detected stalls on CPUs/tasks:
Tasks blocked on level-0 rcu_node (CPUs 0-1): P7087
(detected by 1, t=10554 jiffies, g=2049, c=2048, q=998)
kworker/u4:0 R running task 26768 7087 2 0x80000000
Workqueue: bat_events batadv_nc_worker
Call Trace:
context_switch kernel/sched/core.c:2808 [inline]
__schedule+0x7b8/0x1cd0 kernel/sched/core.c:3384
preempt_schedule_notrace kernel/sched/core.c:3582 [inline]
preempt_schedule_notrace+0xa0/0x130 kernel/sched/core.c:3553
___preempt_schedule_notrace+0x16/0x2c
rcu_is_watching+0x8c/0xb0 kernel/rcu/tree.c:1131
rcu_read_unlock include/linux/rcupdate.h:681 [inline]
batadv_nc_purge_orig_hash net/batman-adv/network-coding.c:420 [inline]
batadv_nc_worker+0x40a/0x6d0 net/batman-adv/network-coding.c:726
process_one_work+0x863/0x1600 kernel/workqueue.c:2114
worker_thread+0x5d9/0x1050 kernel/workqueue.c:2248
kthread+0x319/0x430 kernel/kthread.c:232
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
kworker/u4:0 R running task 26768 7087 2 0x80000000
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
Workqueue: bat_events batadv_nc_worker
Call Trace:
context_switch kernel/sched/core.c:2808 [inline]
__schedule+0x7b8/0x1cd0 kernel/sched/core.c:3384
preempt_schedule_notrace kernel/sched/core.c:3582 [inline]
preempt_schedule_notrace+0xa0/0x130 kernel/sched/core.c:3553
___preempt_schedule_notrace+0x16/0x2c
rcu_is_watching+0x8c/0xb0 kernel/rcu/tree.c:1131
rcu_read_unlock include/linux/rcupdate.h:681 [inline]
batadv_nc_purge_orig_hash net/batman-adv/network-coding.c:420 [inline]
batadv_nc_worker+0x40a/0x6d0 net/batman-adv/network-coding.c:726
process_one_work+0x863/0x1600 kernel/workqueue.c:2114
worker_thread+0x5d9/0x1050 kernel/workqueue.c:2248
kthread+0x319/0x430 kernel/kthread.c:232
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
rcu_preempt kthread starved for 1521 jiffies! g2049 c2048 f0x0
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
RCU_GP_WAIT_FQS(3) ->state=0x0 ->cpu=1
rcu_preempt R running task 29776 8 2 0x80000000
Call Trace:
context_switch kernel/sched/core.c:2808 [inline]
__schedule+0x7b8/0x1cd0 kernel/sched/core.c:3384
schedule+0x92/0x1c0 kernel/sched/core.c:3428
schedule_timeout+0x43e/0xe10 kernel/time/timer.c:1746
rcu_gp_kthread+0xbf4/0x1ec0 kernel/rcu/tree.c:2255
kthread+0x319/0x430 kernel/kthread.c:232
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
device bridge_slave_1 left promiscuous mode
kthread+0x319/0x430 kernel/kthread.c:232
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
bridge0: port 2(bridge_slave_1) entered disabled state
device bridge_slave_0 left promiscuous mode
bridge0: port 1(bridge_slave_0) entered disabled state
device bridge_slave_1 left promiscuous mode
bridge0: port 2(bridge_slave_1) entered disabled state
device bridge_slave_0 left promiscuous mode
bridge0: port 1(bridge_slave_0) entered disabled state
device bridge_slave_1 left promiscuous mode
bridge0: port 2(bridge_slave_1) entered disabled state
device bridge_slave_0 left promiscuous mode
bridge0: port 1(bridge_slave_0) entered disabled state
device bridge_slave_1 left promiscuous mode
bridge0: port 2(bridge_slave_1) entered disabled state
device bridge_slave_0 left promiscuous mode
bridge0: port 1(bridge_slave_0) entered disabled state
device bridge_slave_1 left promiscuous mode
bridge0: port 2(bridge_slave_1) entered disabled state
device bridge_slave_0 left promiscuous mode
bridge0: port 1(bridge_slave_0) entered disabled state
device hsr_slave_1 left promiscuous mode
device hsr_slave_0 left promiscuous mode
team0 (unregistering): Port device team_slave_1 removed
team0 (unregistering): Port device team_slave_0 removed
bond0 (unregistering): Releasing backup interface bond_slave_1
bond0 (unregistering): Releasing backup interface bond_slave_0
bond0 (unregistering): Released all slaves
device hsr_slave_1 left promiscuous mode
device hsr_slave_0 left promiscuous mode
team0 (unregistering): Port device team_slave_1 removed
team0 (unregistering): Port device team_slave_0 removed
bond0 (unregistering): Releasing backup interface bond_slave_1
bond0 (unregistering): Releasing backup interface bond_slave_0
bond0 (unregistering): Released all slaves
device hsr_slave_1 left promiscuous mode
device hsr_slave_0 left promiscuous mode
team0 (unregistering): Port device team_slave_1 removed
team0 (unregistering): Port device team_slave_0 removed
bond0 (unregistering): Releasing backup interface bond_slave_1
bond0 (unregistering): Releasing backup interface bond_slave_0
bond0 (unregistering): Released all slaves
device hsr_slave_1 left promiscuous mode
device hsr_slave_0 left promiscuous mode
team0 (unregistering): Port device team_slave_1 removed
team0 (unregistering): Port device team_slave_0 removed
bond0 (unregistering): Releasing backup interface bond_slave_1
bond0 (unregistering): Releasing backup interface bond_slave_0
bond0 (unregistering): Released all slaves
device hsr_slave_1 left promiscuous mode
device hsr_slave_0 left promiscuous mode
team0 (unregistering): Port device team_slave_1 removed
team0 (unregistering): Port device team_slave_0 removed
bond0 (unregistering): Releasing backup interface bond_slave_1
bond0 (unregistering): Releasing backup interface bond_slave_0
bond0 (unregistering): Released all slaves
IPVS: ftp: loaded support on port[0] = 21
syzbot
Jan 5, 2020, 2:30:11 PM1/5/20
to syzkaller...@googlegroups.com
syzbot has found a reproducer for the following crash on:
HEAD commit: 84f5ad46 Linux 4.14.162
git tree: linux-4.14.y
console output: https://syzkaller.appspot.com/x/log.txt?x=1447c149e00000
kernel config: https://syzkaller.appspot.com/x/.config?x=67bcc84091a71c98
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=12f776e1e00000
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+e15407...@syzkaller.appspotmail.com
INFO: rcu_preempt self-detected stall on CPU
1-...: (10499 ticks this GP) idle=98e/140000000000002/0
softirq=12932/12937 fqs=3
(t=10500 jiffies g=1533 c=1532 q=961)
rcu_preempt kthread starved for 2989 jiffies! g1533 c1532 f0x0
RCU_GP_WAIT_FQS(3) ->state=0x0 ->cpu=0
rcu_preempt R running task 29824 8 2 0x80000000
Call Trace:
__hrtimer_run_queues+0x270/0xbc0 kernel/time/hrtimer.c:1287
hrtimer_interrupt+0x1d8/0x5d0 kernel/time/hrtimer.c:1321
RIP: 0010:__sanitizer_cov_trace_pc+0xe/0x60 kernel/kcov.c:65
RSP: 0018:ffff8880aed07768 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff10
RAX: ffff88808bdf4340 RBX: ffff888088eb2400 RCX: ffff8880a89f870c
RDX: 1ffff1101513f0da RSI: ffff8880a89f8668 RDI: ffff8880a89f86d0
RBP: ffff8880aed078c0 R08: ffffffff851fe762 R09: ffff88808bdf4c58
R10: ffff88808bdf4c38 R11: ffff88808bdf4340 R12: ffff8880a89f8640
R13: ffff8880a89f8706 R14: 0000000000000046 R15: ffff888088eb2340
dev_queue_xmit+0x18/0x20 net/core/dev.c:3558
neigh_hh_output include/net/neighbour.h:490 [inline]
neigh_output include/net/neighbour.h:498 [inline]
ip6_finish_output2+0x10bd/0x21b0 net/ipv6/ip6_output.c:120
[inline]
RIP: 0010:__raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160
[inline]
RIP: 0010:_raw_spin_unlock_irqrestore+0x95/0xe0
kernel/locking/spinlock.c:192
RSP: 0018:ffff888095327a10 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff10
RAX: 1ffffffff0fe2d29 RBX: 0000000000000282 RCX: 0000000000000000
RDX: dffffc0000000000 RSI: 0000000000000001 RDI: 0000000000000282
RBP: ffff888095327a20 R08: ffff88808bdf4340 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880a7d8cd00
R13: ffff8880a7d8c540 R14: 0000000000000001 R15: ffff8880aed2b558
try_to_wake_up+0xa8/0xf90 kernel/sched/core.c:2091
wake_up_process kernel/sched/core.c:2160 [inline]
wake_up_q+0x95/0xf0 kernel/sched/core.c:468
futex_wake+0x38b/0x430 kernel/futex.c:1697
do_futex+0x290/0x19e0 kernel/futex.c:3907
SYSC_futex kernel/futex.c:3963 [inline]
SyS_futex+0x215/0x310 kernel/futex.c:3931
do_syscall_64+0x1e8/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x449979
RSP: 002b:00007fbb070efcf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
RAX: ffffffffffffffda RBX: 00000000006dfc28 RCX: 0000000000449979
RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00000000006dfc2c
RBP: 00000000006dfc20 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dfc2c
R13: 00007ffe1ad0f31f R14: 00007fbb070f09c0 R15: 20c49ba5e353f7cf
softirq=12932/12937 fqs=3
(detected by 0, t=10563 jiffies, g=1080, c=1079, q=11)
Sending NMI from CPU 0 to CPUs 1:
RIP: 0010:pvclock_clocksource_read+0x2ac/0x4a0 arch/x86/kernel/pvclock.c:122
RSP: 0018:ffff8880aed078c8 EFLAGS: 00000082
RAX: 0000012a7abd6b8f RBX: ffff88821fff7040 RCX: 000000000000000c
RDX: 0000000022add842 RSI: 0000000000000000 RDI: 0000000000000001
RBP: ffff8880aed078f0 R08: 0000012a9d6b43d1 R09: ffff88821fff7048
R10: ffff88821fff7050 R11: 0000000000000001 R12: dffffc0000000000
R13: ffff88821fff7043 R14: ffffed1043ffee09 R15: ffff88821fff705d
FS: 00007fbb070f0700(0000) GS:ffff8880aed00000(0000) knlGS:0000000000000000
kvm_sched_clock_read+0x9/0x20 arch/x86/kernel/kvmclock.c:100
paravirt_sched_clock arch/x86/include/asm/paravirt.h:175 [inline]
sched_clock+0x2e/0x50 arch/x86/kernel/tsc.c:228
sched_clock_cpu+0x1b/0x1c0 kernel/sched/clock.c:363
irqtime_account_irq+0x6a/0x290 kernel/sched/cputime.c:63
account_irq_exit_time include/linux/vtime.h:114 [inline]
irq_exit+0x4c/0x1b0 kernel/softirq.c:406
exiting_irq arch/x86/include/asm/apic.h:648 [inline]
smp_irq_work_interrupt+0xd2/0x4e0 arch/x86/kernel/irq_work.c:23
irq_work_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:823
RIP: 0010:trace_kmalloc_node include/trace/events/kmem.h:100 [inline]
RIP: 0010:kmem_cache_alloc_node_trace+0x374/0x770 mm/slab.c:3662
RSP: 0018:ffff8880aed07aa8 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff09
RAX: 0000000000000001 RBX: 0000000001090220 RCX: 1ffffffff1068254
RDX: 0000000000000000 RSI: ffff888097f5f920 RDI: ffff88808bdf4bbc
RBP: ffff8880aed07b20 R08: 00000000230647a2 R09: 0000000000000001
R10: 0000000000000000 R11: ffff88808bdf4340 R12: ffffffff8187a31d
R13: 0000000000000280 R14: ffff8880a89faa00 R15: 0000000001090220
__do_kmalloc_node mm/slab.c:3681 [inline]
__kmalloc_node_track_caller+0x3d/0x80 mm/slab.c:3696
__kmalloc_reserve.isra.0+0x40/0xe0 net/core/skbuff.c:137
__alloc_skb+0xcf/0x500 net/core/skbuff.c:205
alloc_skb include/linux/skbuff.h:980 [inline]
ndisc_alloc_skb+0x13c/0x340 net/ipv6/ndisc.c:402
ndisc_send_rs+0x303/0x670 net/ipv6/ndisc.c:661
[inline]
RIP: 0010:__raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160
[inline]
RIP: 0010:_raw_spin_unlock_irqrestore+0x95/0xe0
kernel/locking/spinlock.c:192
RSP: 0018:ffff888095327a10 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff10
RAX: 1ffffffff0fe2d29 RBX: 0000000000000282 RCX: 0000000000000000
RDX: dffffc0000000000 RSI: 0000000000000001 RDI: 0000000000000282
RBP: ffff888095327a20 R08: ffff88808bdf4340 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880a7d8cd00
R13: ffff8880a7d8c540 R14: 0000000000000001 R15: ffff8880aed2b558
try_to_wake_up+0xa8/0xf90 kernel/sched/core.c:2091
wake_up_process kernel/sched/core.c:2160 [inline]
wake_up_q+0x95/0xf0 kernel/sched/core.c:468
futex_wake+0x38b/0x430 kernel/futex.c:1697
do_futex+0x290/0x19e0 kernel/futex.c:3907
SYSC_futex kernel/futex.c:3963 [inline]
SyS_futex+0x215/0x310 kernel/futex.c:3931
do_syscall_64+0x1e8/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x449979
RSP: 002b:00007fbb070efcf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
RAX: ffffffffffffffda RBX: 00000000006dfc28 RCX: 0000000000449979
RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00000000006dfc2c
RBP: 00000000006dfc20 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dfc2c
R13: 00007ffe1ad0f31f R14: 00007fbb070f09c0 R15: 20c49ba5e353f7cf
Code: f6 05 50 1c 8a 07 01 4c 8d 04 02 75 2c 48 8b 05 6b dd c2 07 4c 39 c0
77 77 f0 4c 0f b1 05 5d dd c2 07 4c 39 c0 75 ed 48 83 c4 60 <4c> 89 c0 5b
41 5c 41 5d 41 5e 41 5f 5d c3 41 83 e3 01 74 ce eb
rcu_sched kthread starved for 3053 jiffies! g1080 c1079 f0x0
RCU_GP_WAIT_FQS(3) ->state=0x0 ->cpu=0
rcu_sched R running task 29824 9 2 0x80000000
Call Trace:
IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
HEAD commit: 84f5ad46 Linux 4.14.162
git tree: linux-4.14.y
console output: https://syzkaller.appspot.com/x/log.txt?x=1447c149e00000
kernel config: https://syzkaller.appspot.com/x/.config?x=67bcc84091a71c98
dashboard link: https://syzkaller.appspot.com/bug?extid=e154076b1d1d78492322
compiler: gcc (GCC) 9.0.0 20181231 (experimental)
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=1111ba56e00000
compiler: gcc (GCC) 9.0.0 20181231 (experimental)
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=12f776e1e00000
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+e15407...@syzkaller.appspotmail.com
INFO: rcu_preempt self-detected stall on CPU
softirq=12932/12937 fqs=3
(t=10500 jiffies g=1533 c=1532 q=961)
rcu_preempt kthread starved for 2989 jiffies! g1533 c1532 f0x0
RCU_GP_WAIT_FQS(3) ->state=0x0 ->cpu=0
rcu_preempt R running task 29824 8 2 0x80000000
Call Trace:
context_switch kernel/sched/core.c:2808 [inline]
__schedule+0x7b8/0x1cd0 kernel/sched/core.c:3384
schedule+0x92/0x1c0 kernel/sched/core.c:3428
schedule_timeout+0x43e/0xe10 kernel/time/timer.c:1746
__schedule+0x7b8/0x1cd0 kernel/sched/core.c:3384
schedule+0x92/0x1c0 kernel/sched/core.c:3428
schedule_timeout+0x43e/0xe10 kernel/time/timer.c:1746
rcu_gp_kthread+0xbf4/0x1ec0 kernel/rcu/tree.c:2255
kthread+0x319/0x430 kernel/kthread.c:232
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
kthread+0x319/0x430 kernel/kthread.c:232
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
NMI backtrace for cpu 1
CPU: 1 PID: 7809 Comm: syz-executor446 Not tainted 4.14.162-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS
Google 01/01/2011
Call Trace:
<IRQ>
__dump_stack lib/dump_stack.c:17 [inline]
dump_stack+0x142/0x197 lib/dump_stack.c:58
Google 01/01/2011
Call Trace:
<IRQ>
__dump_stack lib/dump_stack.c:17 [inline]
nmi_cpu_backtrace.cold+0x57/0x94 lib/nmi_backtrace.c:101
nmi_trigger_cpumask_backtrace+0x141/0x189 lib/nmi_backtrace.c:62
arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:38
trigger_single_cpu_backtrace include/linux/nmi.h:158 [inline]
rcu_dump_cpu_stacks+0x186/0x1d2 kernel/rcu/tree.c:1396
print_cpu_stall kernel/rcu/tree.c:1542 [inline]
check_cpu_stall kernel/rcu/tree.c:1610 [inline]
__rcu_pending kernel/rcu/tree.c:3390 [inline]
rcu_pending kernel/rcu/tree.c:3452 [inline]
rcu_check_callbacks.cold+0x43d/0xd0a kernel/rcu/tree.c:2792
update_process_times+0x31/0x70 kernel/time/timer.c:1590
nmi_trigger_cpumask_backtrace+0x141/0x189 lib/nmi_backtrace.c:62
arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:38
trigger_single_cpu_backtrace include/linux/nmi.h:158 [inline]
rcu_dump_cpu_stacks+0x186/0x1d2 kernel/rcu/tree.c:1396
print_cpu_stall kernel/rcu/tree.c:1542 [inline]
check_cpu_stall kernel/rcu/tree.c:1610 [inline]
__rcu_pending kernel/rcu/tree.c:3390 [inline]
rcu_pending kernel/rcu/tree.c:3452 [inline]
rcu_check_callbacks.cold+0x43d/0xd0a kernel/rcu/tree.c:2792
tick_sched_handle+0x85/0x160 kernel/time/tick-sched.c:161
tick_sched_timer+0x43/0x130 kernel/time/tick-sched.c:1219
__run_hrtimer kernel/time/hrtimer.c:1223 [inline]
tick_sched_timer+0x43/0x130 kernel/time/tick-sched.c:1219
__hrtimer_run_queues+0x270/0xbc0 kernel/time/hrtimer.c:1287
hrtimer_interrupt+0x1d8/0x5d0 kernel/time/hrtimer.c:1321
local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1075 [inline]
smp_apic_timer_interrupt+0x11c/0x5e0 arch/x86/kernel/apic/apic.c:1100
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
RIP: 0010:preempt_count arch/x86/include/asm/preempt.h:23 [inline]
smp_apic_timer_interrupt+0x11c/0x5e0 arch/x86/kernel/apic/apic.c:1100
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
RIP: 0010:__sanitizer_cov_trace_pc+0xe/0x60 kernel/kcov.c:65
RSP: 0018:ffff8880aed07768 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff10
RAX: ffff88808bdf4340 RBX: ffff888088eb2400 RCX: ffff8880a89f870c
RDX: 1ffff1101513f0da RSI: ffff8880a89f8668 RDI: ffff8880a89f86d0
RBP: ffff8880aed078c0 R08: ffffffff851fe762 R09: ffff88808bdf4c58
R10: ffff88808bdf4c38 R11: ffff88808bdf4340 R12: ffff8880a89f8640
R13: ffff8880a89f8706 R14: 0000000000000046 R15: ffff888088eb2340
dev_queue_xmit+0x18/0x20 net/core/dev.c:3558
neigh_hh_output include/net/neighbour.h:490 [inline]
neigh_output include/net/neighbour.h:498 [inline]
ip6_finish_output2+0x10bd/0x21b0 net/ipv6/ip6_output.c:120
ip6_finish_output+0x4f4/0xb50 net/ipv6/ip6_output.c:154
NF_HOOK_COND include/linux/netfilter.h:239 [inline]
ip6_output+0x20f/0x6d0 net/ipv6/ip6_output.c:171
dst_output include/net/dst.h:462 [inline]
NF_HOOK include/linux/netfilter.h:250 [inline]
ndisc_send_skb+0xb56/0x11e0 net/ipv6/ndisc.c:483
ndisc_send_rs+0x12b/0x670 net/ipv6/ndisc.c:677
NF_HOOK_COND include/linux/netfilter.h:239 [inline]
ip6_output+0x20f/0x6d0 net/ipv6/ip6_output.c:171
dst_output include/net/dst.h:462 [inline]
NF_HOOK include/linux/netfilter.h:250 [inline]
ndisc_send_skb+0xb56/0x11e0 net/ipv6/ndisc.c:483
addrconf_rs_timer+0x289/0x5a0 net/ipv6/addrconf.c:3757
call_timer_fn+0x161/0x670 kernel/time/timer.c:1279
expire_timers kernel/time/timer.c:1318 [inline]
call_timer_fn+0x161/0x670 kernel/time/timer.c:1279
expire_timers kernel/time/timer.c:1318 [inline]
__run_timers kernel/time/timer.c:1636 [inline]
__run_timers kernel/time/timer.c:1604 [inline]
run_timer_softirq+0x5b7/0x1520 kernel/time/timer.c:1649
__run_timers kernel/time/timer.c:1604 [inline]
run_timer_softirq+0x5b7/0x1520 kernel/time/timer.c:1649
__do_softirq+0x244/0x9a0 kernel/softirq.c:288
invoke_softirq kernel/softirq.c:368 [inline]
irq_exit+0x160/0x1b0 kernel/softirq.c:409
exiting_irq arch/x86/include/asm/apic.h:648 [inline]
smp_apic_timer_interrupt+0x146/0x5e0 arch/x86/kernel/apic/apic.c:1102
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
</IRQ>
RIP: 0010:arch_local_irq_restore arch/x86/include/asm/paravirt.h:779
invoke_softirq kernel/softirq.c:368 [inline]
irq_exit+0x160/0x1b0 kernel/softirq.c:409
exiting_irq arch/x86/include/asm/apic.h:648 [inline]
smp_apic_timer_interrupt+0x146/0x5e0 arch/x86/kernel/apic/apic.c:1102
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
</IRQ>
[inline]
RIP: 0010:__raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160
[inline]
RIP: 0010:_raw_spin_unlock_irqrestore+0x95/0xe0
kernel/locking/spinlock.c:192
RSP: 0018:ffff888095327a10 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff10
RAX: 1ffffffff0fe2d29 RBX: 0000000000000282 RCX: 0000000000000000
RDX: dffffc0000000000 RSI: 0000000000000001 RDI: 0000000000000282
RBP: ffff888095327a20 R08: ffff88808bdf4340 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880a7d8cd00
R13: ffff8880a7d8c540 R14: 0000000000000001 R15: ffff8880aed2b558
try_to_wake_up+0xa8/0xf90 kernel/sched/core.c:2091
wake_up_process kernel/sched/core.c:2160 [inline]
wake_up_q+0x95/0xf0 kernel/sched/core.c:468
futex_wake+0x38b/0x430 kernel/futex.c:1697
do_futex+0x290/0x19e0 kernel/futex.c:3907
SYSC_futex kernel/futex.c:3963 [inline]
SyS_futex+0x215/0x310 kernel/futex.c:3931
do_syscall_64+0x1e8/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x449979
RSP: 002b:00007fbb070efcf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
RAX: ffffffffffffffda RBX: 00000000006dfc28 RCX: 0000000000449979
RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00000000006dfc2c
RBP: 00000000006dfc20 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dfc2c
R13: 00007ffe1ad0f31f R14: 00007fbb070f09c0 R15: 20c49ba5e353f7cf
INFO: rcu_sched detected stalls on CPUs/tasks:
1-...: (10501 ticks this GP) idle=98e/140000000000002/0
softirq=12932/12937 fqs=3
(detected by 0, t=10563 jiffies, g=1080, c=1079, q=11)
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 7809 Comm: syz-executor446 Not tainted 4.14.162-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS
Google 01/01/2011
task: ffff88808bdf4340 task.stack: ffff888095320000
Google 01/01/2011
RIP: 0010:pvclock_clocksource_read+0x2ac/0x4a0 arch/x86/kernel/pvclock.c:122
RSP: 0018:ffff8880aed078c8 EFLAGS: 00000082
RAX: 0000012a7abd6b8f RBX: ffff88821fff7040 RCX: 000000000000000c
RDX: 0000000022add842 RSI: 0000000000000000 RDI: 0000000000000001
RBP: ffff8880aed078f0 R08: 0000012a9d6b43d1 R09: ffff88821fff7048
R10: ffff88821fff7050 R11: 0000000000000001 R12: dffffc0000000000
R13: ffff88821fff7043 R14: ffffed1043ffee09 R15: ffff88821fff705d
FS: 00007fbb070f0700(0000) GS:ffff8880aed00000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00000000200003c8 CR3: 0000000088aeb000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
<IRQ>
kvm_clock_read+0x23/0x40 arch/x86/kernel/kvmclock.c:88
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
<IRQ>
kvm_sched_clock_read+0x9/0x20 arch/x86/kernel/kvmclock.c:100
paravirt_sched_clock arch/x86/include/asm/paravirt.h:175 [inline]
sched_clock+0x2e/0x50 arch/x86/kernel/tsc.c:228
sched_clock_cpu+0x1b/0x1c0 kernel/sched/clock.c:363
irqtime_account_irq+0x6a/0x290 kernel/sched/cputime.c:63
account_irq_exit_time include/linux/vtime.h:114 [inline]
irq_exit+0x4c/0x1b0 kernel/softirq.c:406
exiting_irq arch/x86/include/asm/apic.h:648 [inline]
smp_irq_work_interrupt+0xd2/0x4e0 arch/x86/kernel/irq_work.c:23
irq_work_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:823
RIP: 0010:trace_kmalloc_node include/trace/events/kmem.h:100 [inline]
RIP: 0010:kmem_cache_alloc_node_trace+0x374/0x770 mm/slab.c:3662
RSP: 0018:ffff8880aed07aa8 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff09
RAX: 0000000000000001 RBX: 0000000001090220 RCX: 1ffffffff1068254
RDX: 0000000000000000 RSI: ffff888097f5f920 RDI: ffff88808bdf4bbc
RBP: ffff8880aed07b20 R08: 00000000230647a2 R09: 0000000000000001
R10: 0000000000000000 R11: ffff88808bdf4340 R12: ffffffff8187a31d
R13: 0000000000000280 R14: ffff8880a89faa00 R15: 0000000001090220
__do_kmalloc_node mm/slab.c:3681 [inline]
__kmalloc_node_track_caller+0x3d/0x80 mm/slab.c:3696
__kmalloc_reserve.isra.0+0x40/0xe0 net/core/skbuff.c:137
__alloc_skb+0xcf/0x500 net/core/skbuff.c:205
alloc_skb include/linux/skbuff.h:980 [inline]
ndisc_alloc_skb+0x13c/0x340 net/ipv6/ndisc.c:402
ndisc_send_rs+0x303/0x670 net/ipv6/ndisc.c:661
addrconf_rs_timer+0x289/0x5a0 net/ipv6/addrconf.c:3757
call_timer_fn+0x161/0x670 kernel/time/timer.c:1279
expire_timers kernel/time/timer.c:1318 [inline]
call_timer_fn+0x161/0x670 kernel/time/timer.c:1279
expire_timers kernel/time/timer.c:1318 [inline]
__run_timers kernel/time/timer.c:1636 [inline]
__run_timers kernel/time/timer.c:1604 [inline]
run_timer_softirq+0x5b7/0x1520 kernel/time/timer.c:1649
__run_timers kernel/time/timer.c:1604 [inline]
run_timer_softirq+0x5b7/0x1520 kernel/time/timer.c:1649
__do_softirq+0x244/0x9a0 kernel/softirq.c:288
invoke_softirq kernel/softirq.c:368 [inline]
irq_exit+0x160/0x1b0 kernel/softirq.c:409
exiting_irq arch/x86/include/asm/apic.h:648 [inline]
smp_apic_timer_interrupt+0x146/0x5e0 arch/x86/kernel/apic/apic.c:1102
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
</IRQ>
RIP: 0010:arch_local_irq_restore arch/x86/include/asm/paravirt.h:779
invoke_softirq kernel/softirq.c:368 [inline]
irq_exit+0x160/0x1b0 kernel/softirq.c:409
exiting_irq arch/x86/include/asm/apic.h:648 [inline]
smp_apic_timer_interrupt+0x146/0x5e0 arch/x86/kernel/apic/apic.c:1102
apic_timer_interrupt+0x96/0xa0 arch/x86/entry/entry_64.S:792
</IRQ>
[inline]
RIP: 0010:__raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160
[inline]
RIP: 0010:_raw_spin_unlock_irqrestore+0x95/0xe0
kernel/locking/spinlock.c:192
RSP: 0018:ffff888095327a10 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff10
RAX: 1ffffffff0fe2d29 RBX: 0000000000000282 RCX: 0000000000000000
RDX: dffffc0000000000 RSI: 0000000000000001 RDI: 0000000000000282
RBP: ffff888095327a20 R08: ffff88808bdf4340 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880a7d8cd00
R13: ffff8880a7d8c540 R14: 0000000000000001 R15: ffff8880aed2b558
try_to_wake_up+0xa8/0xf90 kernel/sched/core.c:2091
wake_up_process kernel/sched/core.c:2160 [inline]
wake_up_q+0x95/0xf0 kernel/sched/core.c:468
futex_wake+0x38b/0x430 kernel/futex.c:1697
do_futex+0x290/0x19e0 kernel/futex.c:3907
SYSC_futex kernel/futex.c:3963 [inline]
SyS_futex+0x215/0x310 kernel/futex.c:3931
do_syscall_64+0x1e8/0x640 arch/x86/entry/common.c:292
entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x449979
RSP: 002b:00007fbb070efcf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
RAX: ffffffffffffffda RBX: 00000000006dfc28 RCX: 0000000000449979
RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00000000006dfc2c
RBP: 00000000006dfc20 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dfc2c
R13: 00007ffe1ad0f31f R14: 00007fbb070f09c0 R15: 20c49ba5e353f7cf
Code: f6 05 50 1c 8a 07 01 4c 8d 04 02 75 2c 48 8b 05 6b dd c2 07 4c 39 c0
77 77 f0 4c 0f b1 05 5d dd c2 07 4c 39 c0 75 ed 48 83 c4 60 <4c> 89 c0 5b
41 5c 41 5d 41 5e 41 5f 5d c3 41 83 e3 01 74 ce eb
rcu_sched kthread starved for 3053 jiffies! g1080 c1079 f0x0
RCU_GP_WAIT_FQS(3) ->state=0x0 ->cpu=0
rcu_sched R running task 29824 9 2 0x80000000
Call Trace:
context_switch kernel/sched/core.c:2808 [inline]
__schedule+0x7b8/0x1cd0 kernel/sched/core.c:3384
schedule+0x92/0x1c0 kernel/sched/core.c:3428
schedule_timeout+0x43e/0xe10 kernel/time/timer.c:1746
__schedule+0x7b8/0x1cd0 kernel/sched/core.c:3384
schedule+0x92/0x1c0 kernel/sched/core.c:3428
schedule_timeout+0x43e/0xe10 kernel/time/timer.c:1746
rcu_gp_kthread+0xbf4/0x1ec0 kernel/rcu/tree.c:2255
kthread+0x319/0x430 kernel/kthread.c:232
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
kthread+0x319/0x430 kernel/kthread.c:232
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
Reply all
Reply to author
Forward
0 new messages