syzbot

 sign-in | mailing list | source | docs
🐞 Open [993] Subsystems 🐞 Fixed [5244] 🐞 Invalid [12518] Missing Backports [83] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush

Status: moderation: reported on 2024/02/11 11:36
Subsystems: cgroups mm
[Documentation on labels]
Reported-by: syzbot+19fc22693ef14439725b@syzkaller.appspotmail.com
First crash: 76d, last: 9h57m

Sample crash report:
==================================================================
BUG: KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush

write to 0xffffe8ffffd42c80 of 4 bytes by task 3207 on cpu 0:
 mem_cgroup_css_rstat_flush+0x4ea/0x540 mm/memcontrol.c:5848
 cgroup_rstat_flush_locked+0x848/0x980 kernel/cgroup/rstat.c:245
 cgroup_rstat_flush+0x26/0x40 kernel/cgroup/rstat.c:277
 do_flush_stats mm/memcontrol.c:745 [inline]
 flush_memcg_stats_dwork+0x50/0x90 mm/memcontrol.c:782
 process_one_work kernel/workqueue.c:3254 [inline]
 process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335
 worker_thread+0x526/0x730 kernel/workqueue.c:3416
 kthread+0x1d1/0x210 kernel/kthread.c:388
 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244

read-write to 0xffffe8ffffd42c80 of 4 bytes by task 10427 on cpu 1:
 memcg_rstat_updated mm/memcontrol.c:725 [inline]
 __mod_memcg_lruvec_state+0x13a/0x1a0 mm/memcontrol.c:875
 __mod_lruvec_state+0x3c/0x50 mm/memcontrol.c:897
 __update_lru_size include/linux/mm_inline.h:47 [inline]
 update_lru_size include/linux/mm_inline.h:56 [inline]
 lruvec_add_folio include/linux/mm_inline.h:326 [inline]
 lru_add_fn+0x289/0x430 mm/swap.c:215
 folio_batch_move_lru+0x20c/0x2c0 mm/swap.c:233
 folio_batch_add_and_move mm/swap.c:249 [inline]
 folio_add_lru+0xd4/0x130 mm/swap.c:532
 shmem_alloc_and_add_folio mm/shmem.c:1722 [inline]
 shmem_get_folio_gfp+0x7dc/0xb70 mm/shmem.c:2055
 shmem_get_folio mm/shmem.c:2160 [inline]
 shmem_write_begin+0xa0/0x1c0 mm/shmem.c:2744
 generic_perform_write+0x1d5/0x410 mm/filemap.c:3974
 shmem_file_write_iter+0xc8/0xf0 mm/shmem.c:2920
 call_write_iter include/linux/fs.h:2110 [inline]
 new_sync_write fs/read_write.c:497 [inline]
 vfs_write+0x771/0x8e0 fs/read_write.c:590
 ksys_write+0xeb/0x1b0 fs/read_write.c:643
 __do_sys_write fs/read_write.c:655 [inline]
 __se_sys_write fs/read_write.c:652 [inline]
 __x64_sys_write+0x42/0x50 fs/read_write.c:652
 x64_sys_call+0x27b7/0x2d30 arch/x86/include/generated/asm/syscalls_64.h:2
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1d0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0x0000001e -> 0x00000000

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 10427 Comm: syz-executor.0 Not tainted 6.9.0-rc5-syzkaller-00296-g5eb4573ea63d #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
==================================================================
loop0: detected capacity change from 0 to 2048
EXT4-fs error (device loop0): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
EXT4-fs (loop0): Delayed block allocation failed for inode 19 at logical offset 10 with max blocks 1 with error 28
EXT4-fs (loop0): This should not happen!! Data will be lost

EXT4-fs (loop0): Total free blocks count 0
EXT4-fs (loop0): Free/Dirty block details
EXT4-fs (loop0): free_blocks=2415919104
EXT4-fs (loop0): dirty_blocks=32
EXT4-fs (loop0): Block reservation details
EXT4-fs (loop0): i_reserved_data_blocks=1

Crashes (230):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/04/27 03:02 upstream 5eb4573ea63d 07b455f9 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/27 02:01 upstream 5eb4573ea63d 059e9963 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/26 11:39 upstream c942a0cd3603 059e9963 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/26 06:35 upstream c942a0cd3603 8bdc0f22 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/25 17:13 upstream e33c4963bf53 8bdc0f22 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/24 16:54 upstream e88c4cfcb7b8 8bdc0f22 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/23 22:25 upstream 9d1ddab261f3 21339d7b .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/23 08:56 upstream 71b1543c83d6 21339d7b .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/23 00:16 upstream a2c63a3f3d68 36c961ad .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/22 09:32 upstream ed30a4a51bb1 36c961ad .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/22 07:53 upstream ed30a4a51bb1 af24b050 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/21 18:19 upstream 48cf398f15fc af24b050 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/20 20:32 upstream 977b1ef51866 af24b050 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/20 07:16 upstream 13a2e429f644 af24b050 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/19 18:46 upstream 3cdb45594619 af24b050 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/18 21:44 upstream 2668e3ae2ef3 af24b050 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/18 08:51 upstream 8cd26fd90c1a af24b050 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/18 07:20 upstream 8cd26fd90c1a acc528cb .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/17 17:59 upstream 4b6b51322118 acc528cb .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/17 15:21 upstream 96fca68c4fbf acc528cb .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/16 15:59 upstream 96fca68c4fbf 18f6e127 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/16 03:14 upstream 96fca68c4fbf 0d592ce4 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/15 14:40 upstream 0bbac3facb5d b9af7e61 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/15 14:32 upstream 0bbac3facb5d b9af7e61 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/15 07:15 upstream 0bbac3facb5d c8349e48 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/14 18:09 upstream 399f4dae683a c8349e48 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/13 19:48 upstream 7efd0a74039f c8349e48 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/13 06:12 upstream 8f2c057754b2 c8349e48 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/12 16:56 upstream 5939d45155bb c8349e48 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/12 15:12 upstream 586b5dfb51b9 c8349e48 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/12 04:06 upstream 586b5dfb51b9 27de0a5c .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/11 16:12 upstream e8c39d0f57f3 95ed9ece .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/11 00:51 upstream 9875c0beb8ad 4320ec32 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/10 11:45 upstream 2c71fdf02a95 4320ec32 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/10 09:11 upstream 2c71fdf02a95 171ec371 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/09 19:30 upstream 20cb38a7af88 171ec371 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/09 17:38 upstream 20cb38a7af88 f3234354 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/09 02:02 upstream 20cb38a7af88 f3234354 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/08 13:28 upstream fec50db7033e 53df08b6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/08 06:59 upstream fec50db7033e ca620dd8 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/07 18:13 upstream 9fe30842a90b ca620dd8 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/06 18:17 upstream f2f80ac80987 ca620dd8 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/06 04:11 upstream 104db052b62d ca620dd8 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/05 14:28 upstream 8cb4a9a82b21 77230c29 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/05 00:29 upstream c88b9b4cde17 0ee3535e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/04 12:54 upstream c85af715cac0 0ee3535e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/04 09:21 upstream c85af715cac0 0ee3535e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/04/04 04:43 upstream c85af715cac0 51c4dcff .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
2024/02/11 11:35 upstream 7521f258ea30 77b23aa1 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __mod_memcg_lruvec_state / mem_cgroup_css_rstat_flush
* Struck through repros no longer work on HEAD.