syzbot


KCSAN: data-race in __delete_from_page_cache / nr_blockdev_pages

Status: auto-closed as invalid on 2020/06/16 17:33
Reported-by: syzbot+@syzkaller.appspotmail.com
First crash: 1018d, last: 906d
similar bugs (4):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in __delete_from_page_cache / nr_blockdev_pages (3) 2 701d 736d 0/24 auto-closed as invalid on 2020/12/03 16:50
upstream KCSAN: data-race in __delete_from_page_cache / nr_blockdev_pages (2) 3 774d 815d 0/24 auto-closed as invalid on 2020/09/21 11:21
upstream KCSAN: data-race in __delete_from_page_cache / nr_blockdev_pages (5) 30 262d 324d 0/24 auto-closed as invalid on 2022/02/16 04:25
upstream KCSAN: data-race in __delete_from_page_cache / nr_blockdev_pages (4) 1 605d 605d 0/24 auto-closed as invalid on 2021/03/09 23:45

Sample crash report:
==================================================================
BUG: KCSAN: data-race in __delete_from_page_cache / nr_blockdev_pages

write to 0xffff88812a346668 of 8 bytes by task 26367 on cpu 1:
 page_cache_delete mm/filemap.c:153 [inline]
 __delete_from_page_cache+0x1e4/0x490 mm/filemap.c:238
 __remove_mapping+0x2ea/0x540 mm/vmscan.c:925
 shrink_page_list+0x1086/0x2970 mm/vmscan.c:1425
 shrink_inactive_list+0x390/0x8d0 mm/vmscan.c:1945
 shrink_list mm/vmscan.c:2164 [inline]
 shrink_lruvec+0x4c9/0xd20 mm/vmscan.c:2482
 shrink_node_memcgs mm/vmscan.c:2671 [inline]
 shrink_node+0x30a/0x1000 mm/vmscan.c:2777
 shrink_zones mm/vmscan.c:2980 [inline]
 do_try_to_free_pages+0x230/0xb30 mm/vmscan.c:3033
 try_to_free_mem_cgroup_pages+0x1f7/0x4b0 mm/vmscan.c:3355
 reclaim_high.constprop.0+0xee/0x140 mm/memcontrol.c:2232
 mem_cgroup_handle_over_high+0x8f/0x180 mm/memcontrol.c:2313
 tracehook_notify_resume include/linux/tracehook.h:197 [inline]
 exit_to_usermode_loop+0x20a/0x2c0 arch/x86/entry/common.c:164
 prepare_exit_to_usermode+0x190/0x1c0 arch/x86/entry/common.c:195
 swapgs_restore_regs_and_return_to_usermode+0x0/0x40

read to 0xffff88812a346668 of 8 bytes by task 11864 on cpu 0:
 nr_blockdev_pages+0x6c/0xc0 fs/block_dev.c:952
 si_meminfo+0x3a/0x60 mm/page_alloc.c:5126
 update_defense_level+0x4a/0xa80 net/netfilter/ipvs/ip_vs_ctl.c:101
 defense_work_handler+0x3a/0xd0 net/netfilter/ipvs/ip_vs_ctl.c:224
 process_one_work+0x424/0x930 kernel/workqueue.c:2264
 worker_thread+0x9a/0x7e0 kernel/workqueue.c:2410
 kthread+0x1cb/0x1f0 kernel/kthread.c:255
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:352

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 11864 Comm: kworker/0:17 Not tainted 5.6.0-rc1-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: events defense_work_handler
==================================================================

Crashes (5):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci2-upstream-kcsan-gce 2020/04/07 17:26 https://github.com/google/ktsan.git kcsan 40959e34d670 db9bcd4b .config log report
ci2-upstream-kcsan-gce 2020/03/07 07:44 https://github.com/google/ktsan.git kcsan 941e0d917bbf fd2a5f28 .config log report
ci2-upstream-kcsan-gce 2020/02/10 17:34 https://github.com/google/ktsan.git kcsan f60f0f543333 18847f55 .config log report
ci2-upstream-kcsan-gce 2020/01/30 05:28 https://github.com/google/ktsan.git kcsan 245a43005292 5ed23f9a .config log report
ci2-upstream-kcsan-gce 2019/12/17 19:44 https://github.com/google/ktsan.git kcsan 245a43005292 1af3875f .config log report
* Struck through repros no longer work on HEAD.