syzbot

 sign-in | mailing list | source | docs
🐞 Open [978] Subsystems 🐞 Fixed [5216] 🐞 Invalid [12472] Missing Backports [82] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

KCSAN: data-race in vfs_readlink / vfs_unlink

Status: closed as invalid on 2020/06/18 14:24
Subsystems: fs
[Documentation on labels]
First crash: 1592d, last: 1430d
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in vfs_readlink / vfs_unlink (2) fs 246 1051d 1298d 0/26 auto-closed as invalid on 2021/07/07 22:03

Sample crash report:
==================================================================
BUG: KCSAN: data-race in vfs_readlink / vfs_unlink

write to 0xffff8880baf14e40 of 4 bytes by task 9014 on cpu 1:
 dont_mount include/linux/dcache.h:352 [inline]
 vfs_unlink+0x267/0x400 fs/namei.c:3811
 do_unlinkat+0x33f/0x550 fs/namei.c:3873
 __do_sys_unlink fs/namei.c:3920 [inline]
 __se_sys_unlink fs/namei.c:3918 [inline]
 __x64_sys_unlink+0x38/0x50 fs/namei.c:3918
 do_syscall_64+0xc7/0x3b0 arch/x86/entry/common.c:295
 entry_SYSCALL_64_after_hwframe+0x44/0xa9

read to 0xffff8880baf14e40 of 4 bytes by task 5282 on cpu 0:
 d_is_symlink include/linux/dcache.h:419 [inline]
 vfs_readlink+0x1b3/0x250 fs/namei.c:4536
 do_readlinkat+0x200/0x230 fs/stat.c:421
 __do_sys_readlink fs/stat.c:442 [inline]
 __se_sys_readlink fs/stat.c:439 [inline]
 __x64_sys_readlink+0x4c/0x60 fs/stat.c:439
 do_syscall_64+0xc7/0x3b0 arch/x86/entry/common.c:295
 entry_SYSCALL_64_after_hwframe+0x44/0xa9

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 5282 Comm: systemd-udevd Not tainted 5.7.0-rc1-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================
Kernel panic - not syncing: panic_on_warn set ...
CPU: 0 PID: 5282 Comm: systemd-udevd Not tainted 5.7.0-rc1-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x11d/0x187 lib/dump_stack.c:118
 panic+0x210/0x640 kernel/panic.c:221
 kcsan_report.cold+0xc/0x1a kernel/kcsan/report.c:626
 kcsan_setup_watchpoint+0x3fb/0x440 kernel/kcsan/core.c:519
 d_is_symlink include/linux/dcache.h:419 [inline]
 vfs_readlink+0x1b3/0x250 fs/namei.c:4536
 do_readlinkat+0x200/0x230 fs/stat.c:421
 __do_sys_readlink fs/stat.c:442 [inline]
 __se_sys_readlink fs/stat.c:439 [inline]
 __x64_sys_readlink+0x4c/0x60 fs/stat.c:439
 do_syscall_64+0xc7/0x3b0 arch/x86/entry/common.c:295
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x7f8417964087
Code: 73 01 c3 48 8b 0d 11 be 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 59 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d e1 bd 2b 00 f7 d8 64 89 01 48
RSP: 002b:00007ffc5c768b58 EFLAGS: 00000293 ORIG_RAX: 0000000000000059
RAX: ffffffffffffffda RBX: 00007ffc5c768bf0 RCX: 00007f8417964087
RDX: 0000000000000200 RSI: 00007ffc5c768d00 RDI: 00007ffc5c768bd0
RBP: 00007ffc5c769158 R08: 0000000000000001 R09: 0000000000000014
R10: 0000000000000064 R11: 0000000000000293 R12: 00007ffc5c768d00
R13: 000056062956f010 R14: 000056062956f0e0 R15: 00007ffc5c768bd0
Kernel Offset: disabled
Rebooting in 86400 seconds..

Crashes (12):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2020/05/19 12:07 https://github.com/google/ktsan.git kcsan 7c3cd68e5d38 6d882fd2 .config console log report ci2-upstream-kcsan-gce
2020/05/15 04:17 https://github.com/google/ktsan.git kcsan 7c3cd68e5d38 2d572622 .config console log report ci2-upstream-kcsan-gce
2020/05/13 04:48 https://github.com/google/ktsan.git kcsan 7c3cd68e5d38 a44eb8f7 .config console log report ci2-upstream-kcsan-gce
2020/04/18 17:34 https://github.com/google/ktsan.git kcsan 7c3cd68e5d38 365fba24 .config console log report ci2-upstream-kcsan-gce
2020/03/31 08:21 https://github.com/google/ktsan.git kcsan 40959e34d670 c8d1cc20 .config console log report ci2-upstream-kcsan-gce
2020/03/19 11:36 https://github.com/google/ktsan.git kcsan 40959e34d670 2c31c529 .config console log report ci2-upstream-kcsan-gce
2020/02/03 00:12 https://github.com/google/ktsan.git kcsan 245a43005292 93e5e335 .config console log report ci2-upstream-kcsan-gce
2020/01/30 12:48 https://github.com/google/ktsan.git kcsan 245a43005292 5ed23f9a .config console log report ci2-upstream-kcsan-gce
2020/01/22 03:45 https://github.com/google/ktsan.git kcsan 245a43005292 8eda0b95 .config console log report ci2-upstream-kcsan-gce
2020/01/16 11:00 https://github.com/google/ktsan.git kcsan 245a43005292 f9b69507 .config console log report ci2-upstream-kcsan-gce
2019/12/29 14:37 https://github.com/google/ktsan.git kcsan 245a43005292 af6b8ef8 .config console log report ci2-upstream-kcsan-gce
2019/12/09 06:44 https://github.com/google/ktsan.git kcsan ef798c30ba4e 1508f453 .config console log report ci2-upstream-kcsan-gce
* Struck through repros no longer work on HEAD.