syzbot

 sign-in | mailing list | source | docs
🐞 Open [982] Subsystems 🐞 Fixed [5217] 🐞 Invalid [12478] Missing Backports [82] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

KCSAN: data-race in copy_page_from_iter / copy_page_from_iter (3)

Status: auto-closed as invalid on 2021/09/14 15:09
Subsystems: mm
[Documentation on labels]
First crash: 1011d, last: 983d
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in copy_page_from_iter / copy_page_from_iter mm 4 1339d 1361d 0/26 auto-closed as invalid on 2020/09/24 11:06
upstream KCSAN: data-race in copy_page_from_iter / copy_page_from_iter (2) mm 17 1068d 1116d 0/26 auto-closed as invalid on 2021/06/22 00:41
upstream KCSAN: data-race in copy_page_from_iter / copy_page_from_iter (4) mm 69 628d 734d 0/26 auto-obsoleted due to no activity on 2022/09/05 09:34

Sample crash report:
==================================================================
BUG: KCSAN: data-race in copy_page_from_iter / copy_page_from_iter

write to 0xffff888121d68000 of 4096 bytes by task 12313 on cpu 1:
 instrument_copy_from_user include/linux/instrumented.h:136 [inline]
 copyin lib/iov_iter.c:167 [inline]
 copy_page_from_iter_iovec lib/iov_iter.c:312 [inline]
 copy_page_from_iter+0x261/0x530 lib/iov_iter.c:851
 process_vm_rw_pages mm/process_vm_access.c:43 [inline]
 process_vm_rw_single_vec+0x294/0x460 mm/process_vm_access.c:117
 process_vm_rw_core mm/process_vm_access.c:215 [inline]
 process_vm_rw+0x347/0x4e0 mm/process_vm_access.c:283
 __do_sys_process_vm_writev mm/process_vm_access.c:303 [inline]
 __se_sys_process_vm_writev mm/process_vm_access.c:298 [inline]
 __x64_sys_process_vm_writev+0x76/0x90 mm/process_vm_access.c:298
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x3d/0x90 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae

write to 0xffff888121d68000 of 4096 bytes by task 12331 on cpu 0:
 instrument_copy_from_user include/linux/instrumented.h:136 [inline]
 copyin lib/iov_iter.c:167 [inline]
 copy_page_from_iter_iovec lib/iov_iter.c:312 [inline]
 copy_page_from_iter+0x261/0x530 lib/iov_iter.c:851
 process_vm_rw_pages mm/process_vm_access.c:43 [inline]
 process_vm_rw_single_vec+0x294/0x460 mm/process_vm_access.c:117
 process_vm_rw_core mm/process_vm_access.c:215 [inline]
 process_vm_rw+0x347/0x4e0 mm/process_vm_access.c:283
 __do_sys_process_vm_writev mm/process_vm_access.c:303 [inline]
 __se_sys_process_vm_writev mm/process_vm_access.c:298 [inline]
 __x64_sys_process_vm_writev+0x76/0x90 mm/process_vm_access.c:298
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x3d/0x90 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 12331 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================

Crashes (4):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2021/08/10 15:00 upstream 9a73fa375d58 6972b106 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in copy_page_from_iter / copy_page_from_iter
2021/08/07 17:22 upstream c9194f32bfd9 6972b106 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in copy_page_from_iter / copy_page_from_iter
2021/08/03 12:19 upstream c500bee1c5b2 6c236867 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in copy_page_from_iter / copy_page_from_iter
2021/07/14 07:55 upstream 40226a3d96ef 484502bd .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in copy_page_from_iter / copy_page_from_iter
* Struck through repros no longer work on HEAD.