syzbot

 sign-in | mailing list | source | docs
🐞 Open [1633]
Subsystems
🐞 Fixed [6115]
🐞 Invalid [15342]
Missing Backports [170]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KCSAN: data-race in io_worker_handle_work / io_wq_worker_cancel

Status: auto-obsoleted due to no activity on 2022/12/11 07:07
Subsystems: io-uring
[Documentation on labels]
First crash: 875d, last: 875d
Similar bugs (2)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in io_worker_handle_work / io_wq_worker_cancel (3) io-uring 2 285d 290d 0/28 auto-obsoleted due to no activity on 2024/07/23 10:38
upstream KCSAN: data-race in io_worker_handle_work / io_wq_worker_cancel (2) io-uring 1 728d 728d 0/28 auto-obsoleted due to no activity on 2023/05/07 12:48

Sample crash report:
==================================================================
BUG: KCSAN: data-race in io_worker_handle_work / io_wq_worker_cancel

read-write to 0xffff8881036a5ed0 of 4 bytes by task 14333 on cpu 1:
 __io_wq_worker_cancel io_uring/io-wq.c:980 [inline]
 io_wq_worker_cancel+0x67/0x1c0 io_uring/io-wq.c:997
 io_wq_for_each_worker+0x119/0x220 io_uring/io-wq.c:849
 io_wqe_cancel_running_work io_uring/io-wq.c:1068 [inline]
 io_wq_cancel_cb+0x184/0x2c0 io_uring/io-wq.c:1103
 io_async_cancel_one io_uring/cancel.c:65 [inline]
 io_try_cancel+0x112/0x1e0 io_uring/cancel.c:89
 __io_async_cancel+0x63/0x2b0 io_uring/cancel.c:140
 io_async_cancel+0x170/0x220 io_uring/cancel.c:193
 io_issue_sqe+0x30f/0x850 io_uring/io_uring.c:1738
 io_queue_sqe io_uring/io_uring.c:1911 [inline]
 io_submit_sqe+0x3b1/0xa40 io_uring/io_uring.c:2169
 io_submit_sqes+0x274/0x530 io_uring/io_uring.c:2280
 __do_sys_io_uring_enter io_uring/io_uring.c:3214 [inline]
 __se_sys_io_uring_enter+0x1ef/0xc00 io_uring/io_uring.c:3146
 __x64_sys_io_uring_enter+0x74/0x80 io_uring/io_uring.c:3146
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x2b/0x70 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

read to 0xffff8881036a5ed0 of 4 bytes by task 14340 on cpu 0:
 io_get_work_hash io_uring/io-wq.c:445 [inline]
 io_worker_handle_work+0x50c/0xc00 io_uring/io-wq.c:581
 io_wqe_worker+0x210/0x8f0 io_uring/io-wq.c:632
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306

value changed: 0x00000000 -> 0x00000001

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 14340 Comm: iou-wrk-14333 Not tainted 6.1.0-rc3-syzkaller-00299-g2f5065a0bc9d-dirty #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
==================================================================

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/11/06 06:59 upstream 2f5065a0bc9d 6d752409 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in io_worker_handle_work / io_wq_worker_cancel
* Struck through repros no longer work on HEAD.