syzbot


KCSAN: data-race in can_send / can_send (4)

Status: moderation: reported on 2022/04/26 02:08
Subsystems: can
[Documentation on labels]
Reported-by: syzbot+64d2873ba7ba90e1b7e0@syzkaller.appspotmail.com
First crash: 859d, last: 2d12h
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in can_send / can_send (2) can 1 1481d 1481d 0/26 auto-closed as invalid on 2020/05/07 07:35
upstream KCSAN: data-race in can_send / can_send (3) can 1 1227d 1193d 0/26 auto-closed as invalid on 2020/12/25 11:24
upstream KCSAN: data-race in can_send / can_send can 1 1581d 1581d 0/26 auto-closed as invalid on 2020/01/28 10:46

Sample crash report:
==================================================================
BUG: KCSAN: data-race in can_send / can_send

read-write to 0xffff88814650b770 of 8 bytes by interrupt on cpu 0:
 can_send+0x570/0x5d0 net/can/af_can.c:290
 bcm_can_tx+0x314/0x420 net/can/bcm.c:314
 bcm_tx_timeout_handler+0xdb/0x260
 __run_hrtimer kernel/time/hrtimer.c:1692 [inline]
 __hrtimer_run_queues+0x214/0x5e0 kernel/time/hrtimer.c:1756
 hrtimer_run_softirq+0xe4/0x2d0 kernel/time/hrtimer.c:1773
 __do_softirq+0xc8/0x285 kernel/softirq.c:554
 invoke_softirq kernel/softirq.c:428 [inline]
 __irq_exit_rcu kernel/softirq.c:633 [inline]
 irq_exit_rcu+0x3c/0x90 kernel/softirq.c:645
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1043 [inline]
 sysvec_apic_timer_interrupt+0x73/0x80 arch/x86/kernel/apic/apic.c:1043
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702
 percpu_down_read_trylock include/linux/percpu-rwsem.h:82 [inline]
 __sb_start_write_trylock include/linux/fs.h:1667 [inline]
 sb_start_write_trylock include/linux/fs.h:1803 [inline]
 touch_atime+0xac/0x350 fs/inode.c:1978
 file_accessed include/linux/fs.h:2457 [inline]
 iterate_dir+0x2e1/0x310 fs/readdir.c:113
 __do_sys_getdents64 fs/readdir.c:409 [inline]
 __se_sys_getdents64+0x88/0x1a0 fs/readdir.c:394
 __x64_sys_getdents64+0x43/0x50 fs/readdir.c:394
 do_syscall_64+0xd3/0x1d0
 entry_SYSCALL_64_after_hwframe+0x6d/0x75

read-write to 0xffff88814650b770 of 8 bytes by interrupt on cpu 1:
 can_send+0x570/0x5d0 net/can/af_can.c:290
 bcm_can_tx+0x314/0x420 net/can/bcm.c:314
 bcm_tx_timeout_handler+0xdb/0x260
 __run_hrtimer kernel/time/hrtimer.c:1692 [inline]
 __hrtimer_run_queues+0x214/0x5e0 kernel/time/hrtimer.c:1756
 hrtimer_run_softirq+0xe4/0x2d0 kernel/time/hrtimer.c:1773
 __do_softirq+0xc8/0x285 kernel/softirq.c:554
 run_ksoftirqd+0x17/0x30 kernel/softirq.c:924
 smpboot_thread_fn+0x31c/0x4c0 kernel/smpboot.c:164
 kthread+0x1d1/0x210 kernel/kthread.c:388
 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243

value changed: 0x00000000000037d6 -> 0x00000000000037d7

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 22 Comm: ksoftirqd/1 Tainted: G        W          6.8.0-syzkaller-11136-g66a27abac311 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
==================================================================
==================================================================
BUG: KCSAN: data-race in can_send / can_send

read-write to 0xffff88814650b710 of 8 bytes by interrupt on cpu 0:
 can_send+0x55c/0x5d0 net/can/af_can.c:289
 bcm_can_tx+0x314/0x420 net/can/bcm.c:314
 bcm_tx_timeout_handler+0xdb/0x260
 __run_hrtimer kernel/time/hrtimer.c:1692 [inline]
 __hrtimer_run_queues+0x214/0x5e0 kernel/time/hrtimer.c:1756
 hrtimer_run_softirq+0xe4/0x2d0 kernel/time/hrtimer.c:1773
 __do_softirq+0xc8/0x285 kernel/softirq.c:554
 invoke_softirq kernel/softirq.c:428 [inline]
 __irq_exit_rcu kernel/softirq.c:633 [inline]
 irq_exit_rcu+0x3c/0x90 kernel/softirq.c:645
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1043 [inline]
 sysvec_apic_timer_interrupt+0x73/0x80 arch/x86/kernel/apic/apic.c:1043
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702
 dup_fd+0x366/0x610 fs/file.c:382
 copy_files+0xc1/0x130 kernel/fork.c:1791
 copy_process+0xe45/0x1f80 kernel/fork.c:2377
 kernel_clone+0x16a/0x570 kernel/fork.c:2796
 __do_sys_clone kernel/fork.c:2939 [inline]
 __se_sys_clone kernel/fork.c:2923 [inline]
 __x64_sys_clone+0xe8/0x120 kernel/fork.c:2923
 do_syscall_64+0xd3/0x1d0
 entry_SYSCALL_64_after_hwframe+0x6d/0x75

read-write to 0xffff88814650b710 of 8 bytes by interrupt on cpu 1:
 can_send+0x55c/0x5d0 net/can/af_can.c:289
 bcm_can_tx+0x314/0x420 net/can/bcm.c:314
 bcm_tx_timeout_handler+0xdb/0x260
 __run_hrtimer kernel/time/hrtimer.c:1692 [inline]
 __hrtimer_run_queues+0x214/0x5e0 kernel/time/hrtimer.c:1756
 hrtimer_run_softirq+0xe4/0x2d0 kernel/time/hrtimer.c:1773
 __do_softirq+0xc8/0x285 kernel/softirq.c:554
 do_softirq+0x5e/0x90 kernel/softirq.c:455
 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382
 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline]
 _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210
 spin_unlock_bh include/linux/spinlock.h:396 [inline]
 batadv_nc_purge_paths+0x21d/0x270 net/batman-adv/network-coding.c:471
 batadv_nc_worker+0x402/0xac0 net/batman-adv/network-coding.c:722
 process_one_work kernel/workqueue.c:3254 [inline]
 process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335
 worker_thread+0x526/0x730 kernel/workqueue.c:3416
 kthread+0x1d1/0x210 kernel/kthread.c:388
 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243

value changed: 0x000000000000c712 -> 0x000000000000c713

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 56 Comm: kworker/u8:4 Tainted: G        W          6.8.0-syzkaller-11136-g66a27abac311 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
Workqueue: bat_events batadv_nc_worker
==================================================================

Crashes (1272):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/03/16 17:04 upstream 66a27abac311 d615901c .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2024/03/04 04:54 upstream 58c806d867bf 25905f5d .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2024/02/17 12:53 upstream c1ca10ceffbb 578f7538 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2024/02/17 01:47 upstream 0f1dd5e91e2b 578f7538 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2024/02/08 02:19 upstream 547ab8fc4cb0 6404acf9 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2024/02/05 11:37 upstream 54be6c6c5ae8 e23e8c20 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2024/01/21 18:31 upstream 7a396820222d 9bd8dcda .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2024/01/19 14:06 upstream 9d1694dc91ce 21772ce4 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2024/01/13 12:09 upstream 052d534373b7 551587c1 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2024/01/05 13:54 upstream 1f874787ed9a 28c42cff .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2024/01/01 20:06 upstream 610a9b8f49fb fb427a07 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/12/23 08:16 upstream 5254c0cbc92d fb427a07 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/12/21 23:50 upstream 9a6b294ab496 4f9530a3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/12/12 10:14 upstream 26aff849438c 28b24332 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/11/27 03:00 upstream d2da77f431ac 5b429f39 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/11/24 15:11 upstream f1a09972a45a 5b429f39 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/11/24 00:29 upstream d3fa86b1a7b4 5b429f39 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/11/14 10:01 upstream 9bacdd8996c7 cb976f63 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/11/12 10:51 upstream 1b907d050735 6d6dbf8a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/11/09 20:41 upstream 6bc986ab839c 56230772 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/11/08 05:25 upstream 13d88ac54ddd 83211397 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/11/04 02:23 upstream 6bdfe2d88b9f 500bfdc4 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/11/03 13:04 upstream 8f6f76a6a29f c4ac074c .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/10/25 00:32 upstream d88520ad73b7 17e6d526 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/10/08 05:30 upstream 59f3fd30af35 5e837c76 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/10/06 19:55 upstream 7de25c855b63 ea12a918 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/10/06 01:25 upstream 3006adf3be79 db17ad9f .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/09/26 14:26 upstream 6465e260f487 0b6a67ac .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/09/17 01:00 upstream ad8a69f361b9 0b6a67ac .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/09/16 05:02 upstream e42bebf6db29 0b6a67ac .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/09/12 23:24 upstream a747acc0b752 59da8366 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/09/08 03:24 upstream 4a0fc73da97e 72324844 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/09/06 00:17 upstream 7733171926cc 0b6286dc .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/08/25 06:11 upstream 4f9e7fabf864 49be837e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/08/23 09:22 upstream 89bf6209cad6 b81ca3f6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/08/23 01:05 upstream 53663f4103ff b81ca3f6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/08/21 18:21 upstream f7757129e3de 6b415825 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/08/18 12:38 upstream 0e8860d2125f acb1ba71 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/08/18 08:15 upstream 0e8860d2125f 74b106b6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/08/17 16:23 upstream 16931859a650 74b106b6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/08/17 14:31 upstream 4853c74bd7ab 74b106b6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/08/15 23:02 upstream d4f8e13b0614 39990d51 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2023/08/13 23:00 upstream a785fd28d31f 39990d51 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2022/04/25 15:41 upstream af2d861d4cd2 152baedd .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2022/04/24 23:00 upstream 42740a2ff5d3 131df97d .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
2021/11/10 06:34 upstream cb690f5238d7 55fa030c .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in can_send / can_send
* Struck through repros no longer work on HEAD.