INFO: task hung in dump_header
5 views
Skip to first unread message
syzbot
Dec 14, 2019, 1:53:08 AM12/14/19
to syzkaller...@googlegroups.com
Hello,
syzbot found the following crash on:
HEAD commit: 312017a4 Linux 4.19.89
git tree: linux-4.19.y
console output: https://syzkaller.appspot.com/x/log.txt?x=14ee508ee00000
kernel config: https://syzkaller.appspot.com/x/.config?x=67c148d572dbab48
dashboard link: https://syzkaller.appspot.com/bug?extid=128e99f90ee814248755
compiler: gcc (GCC) 9.0.0 20181231 (experimental)
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+128e99...@syzkaller.appspotmail.com
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
protocol 88fb is buggy, dev hsr_slave_1
udevd invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE),
nodemask=(null), order=0, oom_score_adj=-1000
INFO: task kworker/0:2:2800 blocked for more than 140 seconds.
Not tainted 4.19.89-syzkaller #0
udevd cpuset=/ mems_allowed=0-1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
CPU: 1 PID: 31757 Comm: udevd Not tainted 4.19.89-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS
Google 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:77 [inline]
dump_stack+0x197/0x210 lib/dump_stack.c:118
dump_header+0x15e/0xa55 mm/oom_kill.c:441
kworker/0:2 D23392 2800 2 0x80000000
oom_kill_process.cold+0x10/0x6ef mm/oom_kill.c:954
Workqueue: ipv6_addrconf addrconf_verify_work
out_of_memory mm/oom_kill.c:1130 [inline]
out_of_memory+0x362/0x1330 mm/oom_kill.c:1062
Call Trace:
context_switch kernel/sched/core.c:2826 [inline]
__schedule+0x866/0x1dc0 kernel/sched/core.c:3515
__alloc_pages_may_oom mm/page_alloc.c:3551 [inline]
__alloc_pages_slowpath+0x20b5/0x2870 mm/page_alloc.c:4253
schedule+0x92/0x1c0 kernel/sched/core.c:3559
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3617
__alloc_pages_nodemask+0x617/0x750 mm/page_alloc.c:4417
__mutex_lock_common kernel/locking/mutex.c:1002 [inline]
__mutex_lock+0x726/0x1300 kernel/locking/mutex.c:1072
alloc_pages_current+0x107/0x210 mm/mempolicy.c:2197
alloc_pages include/linux/gfp.h:532 [inline]
__page_cache_alloc mm/filemap.c:969 [inline]
__page_cache_alloc+0x2bd/0x450 mm/filemap.c:954
page_cache_read mm/filemap.c:2408 [inline]
filemap_fault+0xfeb/0x1f00 mm/filemap.c:2592
mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:1087
ext4_filemap_fault+0x83/0xaf fs/ext4/inode.c:6328
__do_fault+0x111/0x480 mm/memory.c:3269
rtnl_lock+0x17/0x20 net/core/rtnetlink.c:77
do_read_fault mm/memory.c:3681 [inline]
do_fault mm/memory.c:3810 [inline]
handle_pte_fault mm/memory.c:4041 [inline]
__handle_mm_fault+0x2d78/0x3f80 mm/memory.c:4165
addrconf_verify_work+0xe/0x20 net/ipv6/addrconf.c:4466
process_one_work+0x989/0x1750 kernel/workqueue.c:2153
handle_mm_fault+0x1b5/0x690 mm/memory.c:4202
__do_page_fault+0x62a/0xe90 arch/x86/mm/fault.c:1390
do_page_fault+0x71/0x57d arch/x86/mm/fault.c:1465
worker_thread+0x98/0xe40 kernel/workqueue.c:2296
page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1204
kthread+0x354/0x420 kernel/kthread.c:246
RIP: 0033:0x7f4bfe994b71
Code: Bad RIP value.
RSP: 002b:00007ffef1c197b8 EFLAGS: 00010202
RAX: 0000000000000000 RBX: 0000000001438030 RCX: 0000000000000030
RDX: 00007f4bfe9d4690 RSI: 0000000000000005 RDI: 00000000014ebde5
RBP: 00000000014ebde0 R08: 00000000014ebde0 R09: 0000013246cc4dc8
R10: 001c1e4104800000 R11: 0000000000000000 R12: 0000000000000004
R13: 00000000014ebde5 R14: 0000000001438030 R15: 000000000000000b
net_ratelimit: 24 callbacks suppressed
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415
Mem-Info:
active_anon:1355545 inactive_anon:454 isolated_anon:0
active_file:70 inactive_file:112 isolated_file:30
unevictable:0 dirty:0 writeback:0 unstable:0
slab_reclaimable:15774 slab_unreclaimable:114935
mapped:52412 shmem:617 pagetables:8707 bounce:0
free:24983 free_pcp:63 free_cma:0
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
Showing all locks held in the system:
Node 0 active_anon:1724060kB inactive_anon:1816kB active_file:80kB
inactive_file:272kB unevictable:0kB isolated(anon):0kB isolated(file):128kB
mapped:209616kB dirty:0kB writeback:0kB shmem:2468kB shmem_thp: 0kB
shmem_pmdmapped: 0kB anon_thp: 198656kB writeback_tmp:0kB unstable:0kB
all_unreclaimable? no
Node 1 active_anon:3698228kB inactive_anon:0kB active_file:4kB
inactive_file:16kB unevictable:0kB isolated(anon):0kB isolated(file):0kB
mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB
shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB
all_unreclaimable? no
3 locks held by init/1:
#0: 00000000643586f5 (&mm->mmap_sem){++++}, at:
__do_page_fault+0x3c9/0xe90 arch/x86/mm/fault.c:1319
net_ratelimit: 24 callbacks suppressed
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
#1: 00000000b32f97fe (&ei->i_mmap_sem){++++}, at:
ext4_filemap_fault+0x7b/0xaf fs/ext4/inode.c:6327
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
Node 0 DMA free:10400kB min:220kB low:272kB high:324kB active_anon:5248kB
inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB
writepending:0kB present:15992kB managed:15908kB mlocked:0kB
kernel_stack:0kB pagetables:40kB bounce:0kB free_pcp:0kB local_pcp:0kB
free_cma:0kB
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
lowmem_reserve[]: 0 2545 2546 2546 2546
Node 0 DMA32 free:35368kB min:36168kB low:45208kB high:54248kB
active_anon:1719296kB inactive_anon:1816kB active_file:108kB
inactive_file:412kB unevictable:0kB writepending:0kB present:3129332kB
managed:2609796kB mlocked:0kB kernel_stack:14080kB pagetables:18416kB
bounce:0kB free_pcp:260kB local_pcp:260kB free_cma:0kB
#2: 00000000e97d7777 (fs_reclaim){+.+.}, at:
fs_reclaim_acquire.part.0+0x0/0x30 include/linux/compiler.h:193
lowmem_reserve[]: 0 0 1 1 1
Node 0 Normal free:0kB min:12kB low:12kB high:12kB active_anon:0kB
inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB
writepending:0kB present:786432kB managed:1140kB mlocked:0kB
kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB
free_cma:0kB
lowmem_reserve[]: 0 0 0 0 0
---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot found the following crash on:
HEAD commit: 312017a4 Linux 4.19.89
git tree: linux-4.19.y
console output: https://syzkaller.appspot.com/x/log.txt?x=14ee508ee00000
kernel config: https://syzkaller.appspot.com/x/.config?x=67c148d572dbab48
dashboard link: https://syzkaller.appspot.com/bug?extid=128e99f90ee814248755
compiler: gcc (GCC) 9.0.0 20181231 (experimental)
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+128e99...@syzkaller.appspotmail.com
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
protocol 88fb is buggy, dev hsr_slave_1
udevd invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE),
nodemask=(null), order=0, oom_score_adj=-1000
INFO: task kworker/0:2:2800 blocked for more than 140 seconds.
Not tainted 4.19.89-syzkaller #0
udevd cpuset=/ mems_allowed=0-1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
CPU: 1 PID: 31757 Comm: udevd Not tainted 4.19.89-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS
Google 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:77 [inline]
dump_stack+0x197/0x210 lib/dump_stack.c:118
dump_header+0x15e/0xa55 mm/oom_kill.c:441
kworker/0:2 D23392 2800 2 0x80000000
oom_kill_process.cold+0x10/0x6ef mm/oom_kill.c:954
Workqueue: ipv6_addrconf addrconf_verify_work
out_of_memory mm/oom_kill.c:1130 [inline]
out_of_memory+0x362/0x1330 mm/oom_kill.c:1062
Call Trace:
context_switch kernel/sched/core.c:2826 [inline]
__schedule+0x866/0x1dc0 kernel/sched/core.c:3515
__alloc_pages_may_oom mm/page_alloc.c:3551 [inline]
__alloc_pages_slowpath+0x20b5/0x2870 mm/page_alloc.c:4253
schedule+0x92/0x1c0 kernel/sched/core.c:3559
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:3617
__alloc_pages_nodemask+0x617/0x750 mm/page_alloc.c:4417
__mutex_lock_common kernel/locking/mutex.c:1002 [inline]
__mutex_lock+0x726/0x1300 kernel/locking/mutex.c:1072
alloc_pages_current+0x107/0x210 mm/mempolicy.c:2197
alloc_pages include/linux/gfp.h:532 [inline]
__page_cache_alloc mm/filemap.c:969 [inline]
__page_cache_alloc+0x2bd/0x450 mm/filemap.c:954
page_cache_read mm/filemap.c:2408 [inline]
filemap_fault+0xfeb/0x1f00 mm/filemap.c:2592
mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:1087
ext4_filemap_fault+0x83/0xaf fs/ext4/inode.c:6328
__do_fault+0x111/0x480 mm/memory.c:3269
rtnl_lock+0x17/0x20 net/core/rtnetlink.c:77
do_read_fault mm/memory.c:3681 [inline]
do_fault mm/memory.c:3810 [inline]
handle_pte_fault mm/memory.c:4041 [inline]
__handle_mm_fault+0x2d78/0x3f80 mm/memory.c:4165
addrconf_verify_work+0xe/0x20 net/ipv6/addrconf.c:4466
process_one_work+0x989/0x1750 kernel/workqueue.c:2153
handle_mm_fault+0x1b5/0x690 mm/memory.c:4202
__do_page_fault+0x62a/0xe90 arch/x86/mm/fault.c:1390
do_page_fault+0x71/0x57d arch/x86/mm/fault.c:1465
worker_thread+0x98/0xe40 kernel/workqueue.c:2296
page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1204
kthread+0x354/0x420 kernel/kthread.c:246
RIP: 0033:0x7f4bfe994b71
Code: Bad RIP value.
RSP: 002b:00007ffef1c197b8 EFLAGS: 00010202
RAX: 0000000000000000 RBX: 0000000001438030 RCX: 0000000000000030
RDX: 00007f4bfe9d4690 RSI: 0000000000000005 RDI: 00000000014ebde5
RBP: 00000000014ebde0 R08: 00000000014ebde0 R09: 0000013246cc4dc8
R10: 001c1e4104800000 R11: 0000000000000000 R12: 0000000000000004
R13: 00000000014ebde5 R14: 0000000001438030 R15: 000000000000000b
net_ratelimit: 24 callbacks suppressed
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415
Mem-Info:
active_anon:1355545 inactive_anon:454 isolated_anon:0
active_file:70 inactive_file:112 isolated_file:30
unevictable:0 dirty:0 writeback:0 unstable:0
slab_reclaimable:15774 slab_unreclaimable:114935
mapped:52412 shmem:617 pagetables:8707 bounce:0
free:24983 free_pcp:63 free_cma:0
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
Showing all locks held in the system:
Node 0 active_anon:1724060kB inactive_anon:1816kB active_file:80kB
inactive_file:272kB unevictable:0kB isolated(anon):0kB isolated(file):128kB
mapped:209616kB dirty:0kB writeback:0kB shmem:2468kB shmem_thp: 0kB
shmem_pmdmapped: 0kB anon_thp: 198656kB writeback_tmp:0kB unstable:0kB
all_unreclaimable? no
Node 1 active_anon:3698228kB inactive_anon:0kB active_file:4kB
inactive_file:16kB unevictable:0kB isolated(anon):0kB isolated(file):0kB
mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB
shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB
all_unreclaimable? no
3 locks held by init/1:
#0: 00000000643586f5 (&mm->mmap_sem){++++}, at:
__do_page_fault+0x3c9/0xe90 arch/x86/mm/fault.c:1319
net_ratelimit: 24 callbacks suppressed
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
#1: 00000000b32f97fe (&ei->i_mmap_sem){++++}, at:
ext4_filemap_fault+0x7b/0xaf fs/ext4/inode.c:6327
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
Node 0 DMA free:10400kB min:220kB low:272kB high:324kB active_anon:5248kB
inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB
writepending:0kB present:15992kB managed:15908kB mlocked:0kB
kernel_stack:0kB pagetables:40kB bounce:0kB free_pcp:0kB local_pcp:0kB
free_cma:0kB
protocol 88fb is buggy, dev hsr_slave_0
protocol 88fb is buggy, dev hsr_slave_1
lowmem_reserve[]: 0 2545 2546 2546 2546
Node 0 DMA32 free:35368kB min:36168kB low:45208kB high:54248kB
active_anon:1719296kB inactive_anon:1816kB active_file:108kB
inactive_file:412kB unevictable:0kB writepending:0kB present:3129332kB
managed:2609796kB mlocked:0kB kernel_stack:14080kB pagetables:18416kB
bounce:0kB free_pcp:260kB local_pcp:260kB free_cma:0kB
#2: 00000000e97d7777 (fs_reclaim){+.+.}, at:
fs_reclaim_acquire.part.0+0x0/0x30 include/linux/compiler.h:193
lowmem_reserve[]: 0 0 1 1 1
Node 0 Normal free:0kB min:12kB low:12kB high:12kB active_anon:0kB
inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB
writepending:0kB present:786432kB managed:1140kB mlocked:0kB
kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB
free_cma:0kB
lowmem_reserve[]: 0 0 0 0 0
---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot
Apr 12, 2020, 2:53:09 AM4/12/20
to syzkaller...@googlegroups.com
Auto-closing this bug as obsolete.
Crashes did not happen for a while, no reproducer and no activity.
Crashes did not happen for a while, no reproducer and no activity.
Reply all
Reply to author
Forward
0 new messages