[Bug] soft lockup in sys_sendmmsg in Linux kernel v6.14

From: Luka
Date: Tue Jul 08 2025 - 03:51:05 EST

Next message: Peter Zijlstra: "Re: [PATCH 0/3] futex: Use RCU-based per-CPU reference counting"
Previous message: Nam Cao: "Re: [PATCH v10 17/19] rv: Add rtapp_sleep monitor"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Dear Linux Kernel Maintainers,

I hope this message finds you well.

I am writing to report a potential vulnerability I encountered during
testing of the Linux Kernel version v6.14.

Git Commit: 38fec10eb60d687e30c8c6b5420d86e8149f7557 (tag: v6.14)

Bug Location: __x64_sys_sendmmsg+0x9d/0x110 net/socket.c:2733

Bug report: https://pastebin.com/YrfrS22B

Entire kernel config: https://pastebin.com/MRWGr3nv

Root Cause Analysis:

A soft lockup occurs during invocation of the sys_sendmmsg() syscall
due to prolonged CPU occupation in packet transmission routines,
likely caused by excessive memory allocation or reclaim activity in
UDP socket send path. The issue involves __ip_append_data() and
udp_sendmsg() functions exhausting CPU cycles within the softirq
context, without yielding, which starves other kernel tasks and
triggers a watchdog timeout.

At present, I have not yet obtained a minimal reproducer for this
issue. However, I am actively working on reproducing it, and I will
promptly share any additional findings or a working reproducer as soon
as it becomes available.

Thank you very much for your time and attention to this matter. I
truly appreciate the efforts of the Linux kernel community.

Best regards,
Luka

Next message: Peter Zijlstra: "Re: [PATCH 0/3] futex: Use RCU-based per-CPU reference counting"
Previous message: Nam Cao: "Re: [PATCH v10 17/19] rv: Add rtapp_sleep monitor"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]