syzbot


KCSAN: data-race in iptunnel_xmit / iptunnel_xmit (2)

Status: auto-closed as invalid on 2021/04/30 07:41
Subsystems: net
[Documentation on labels]
Reported-by: syzbot+58d8e5eb0f93534fd5f6@syzkaller.appspotmail.com
First crash: 1362d, last: 1088d
Similar bugs (4)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in iptunnel_xmit / iptunnel_xmit (4) net 15 496d 614d 0/26 auto-obsoleted due to no activity on 2022/12/13 21:39
upstream KCSAN: data-race in iptunnel_xmit / iptunnel_xmit (5) net 1 195d 195d 23/26 fixed on 2023/10/12 12:48
upstream KCSAN: data-race in iptunnel_xmit / iptunnel_xmit net 28 1372d 1597d 0/26 closed as invalid on 2020/06/18 14:24
upstream KCSAN: data-race in iptunnel_xmit / iptunnel_xmit (3) net 33 653d 825d 0/26 auto-closed as invalid on 2022/07/10 03:55

Sample crash report:
==================================================================
BUG: KCSAN: data-race in iptunnel_xmit / iptunnel_xmit

write to 0xffff888028d2b160 of 8 bytes by task 14130 on cpu 0:
 iptunnel_xmit_stats include/net/ip_tunnels.h:459 [inline]
 iptunnel_xmit+0x422/0x4a0 net/ipv4/ip_tunnel_core.c:87
 ip_tunnel_xmit+0xf2a/0x11c0 net/ipv4/ip_tunnel.c:804
 __gre_xmit net/ipv4/ip_gre.c:466 [inline]
 ipgre_xmit+0x4f5/0x550 net/ipv4/ip_gre.c:648
 __netdev_start_xmit include/linux/netdevice.h:4825 [inline]
 netdev_start_xmit include/linux/netdevice.h:4839 [inline]
 xmit_one+0xf9/0x2e0 net/core/dev.c:3605
 dev_hard_start_xmit net/core/dev.c:3621 [inline]
 __dev_queue_xmit+0xf22/0x1580 net/core/dev.c:4194
 dev_queue_xmit+0x13/0x20 net/core/dev.c:4227
 __bpf_tx_skb net/core/filter.c:2116 [inline]
 __bpf_redirect_no_mac net/core/filter.c:2141 [inline]
 __bpf_redirect+0x49c/0x7a0 net/core/filter.c:2164
 ____bpf_clone_redirect net/core/filter.c:2448 [inline]
 bpf_clone_redirect+0x168/0x1c0 net/core/filter.c:2420
 bpf_prog_bebbfe2050753572+0x56/0x8c
 bpf_dispatcher_nop_func include/linux/bpf.h:659 [inline]
 bpf_test_run+0x27d/0x440 net/bpf/test_run.c:50
 bpf_prog_test_run_skb+0x714/0xe90 net/bpf/test_run.c:582
 bpf_prog_test_run kernel/bpf/syscall.c:3132 [inline]
 __do_sys_bpf+0x3971/0x99c0 kernel/bpf/syscall.c:4411
 __se_sys_bpf kernel/bpf/syscall.c:4351 [inline]
 __x64_sys_bpf+0x3d/0x50 kernel/bpf/syscall.c:4351
 do_syscall_64+0x39/0x80 arch/x86/entry/common.c:46
 entry_SYSCALL_64_after_hwframe+0x44/0xae

read to 0xffff888028d2b160 of 8 bytes by task 14123 on cpu 1:
 iptunnel_xmit_stats include/net/ip_tunnels.h:459 [inline]
 iptunnel_xmit+0x410/0x4a0 net/ipv4/ip_tunnel_core.c:87
 ip_tunnel_xmit+0xf2a/0x11c0 net/ipv4/ip_tunnel.c:804
 __gre_xmit net/ipv4/ip_gre.c:466 [inline]
 ipgre_xmit+0x4f5/0x550 net/ipv4/ip_gre.c:648
 __netdev_start_xmit include/linux/netdevice.h:4825 [inline]
 netdev_start_xmit include/linux/netdevice.h:4839 [inline]
 xmit_one+0xf9/0x2e0 net/core/dev.c:3605
 dev_hard_start_xmit net/core/dev.c:3621 [inline]
 __dev_queue_xmit+0xf22/0x1580 net/core/dev.c:4194
 dev_queue_xmit+0x13/0x20 net/core/dev.c:4227
 __bpf_tx_skb net/core/filter.c:2116 [inline]
 __bpf_redirect_no_mac net/core/filter.c:2141 [inline]
 __bpf_redirect+0x49c/0x7a0 net/core/filter.c:2164
 ____bpf_clone_redirect net/core/filter.c:2448 [inline]
 bpf_clone_redirect+0x168/0x1c0 net/core/filter.c:2420
 bpf_prog_d7d583f53caddbf0+0x56/0xd58
 bpf_dispatcher_nop_func include/linux/bpf.h:659 [inline]
 bpf_test_run+0x27d/0x440 net/bpf/test_run.c:50
 bpf_prog_test_run_skb+0x714/0xe90 net/bpf/test_run.c:582
 bpf_prog_test_run kernel/bpf/syscall.c:3132 [inline]
 __do_sys_bpf+0x3971/0x99c0 kernel/bpf/syscall.c:4411
 __se_sys_bpf kernel/bpf/syscall.c:4351 [inline]
 __x64_sys_bpf+0x3d/0x50 kernel/bpf/syscall.c:4351
 do_syscall_64+0x39/0x80 arch/x86/entry/common.c:46
 entry_SYSCALL_64_after_hwframe+0x44/0xae

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 14123 Comm: syz-executor.2 Not tainted 5.12.0-rc4-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================

Crashes (61):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2021/03/26 07:40 upstream 002322402daf 6a383ecf .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in iptunnel_xmit / iptunnel_xmit
2021/03/24 17:08 upstream 7acac4b3196c 607e3baf .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in iptunnel_xmit / iptunnel_xmit
2021/03/11 22:55 upstream 28806e4d9b97 429d8a6b .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in iptunnel_xmit / iptunnel_xmit
2021/03/09 18:17 upstream 144c79ef3353 26967e35 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in iptunnel_xmit / iptunnel_xmit
2021/02/20 13:42 upstream f40ddce88593 3e5ed8b4 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in iptunnel_xmit / iptunnel_xmit
2021/02/12 22:53 upstream dcc0b49040c7 98682e5e .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in iptunnel_xmit / iptunnel_xmit
2021/02/06 19:12 upstream 1e0d27fce010 0655e081 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in iptunnel_xmit / iptunnel_xmit
2021/02/04 07:21 upstream 3afe9076a7c1 624dad51 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in iptunnel_xmit / iptunnel_xmit
2021/01/28 23:15 upstream e5ff2cb9cf67 7df34f59 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in iptunnel_xmit / iptunnel_xmit
2021/01/27 14:22 upstream 2ab38c17aac1 a0ebf917 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in iptunnel_xmit / iptunnel_xmit
2021/01/24 21:50 upstream e68061375f79 52e37319 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in iptunnel_xmit / iptunnel_xmit
2021/01/24 02:26 upstream e1ae4b0be158 52e37319 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in iptunnel_xmit / iptunnel_xmit
2021/01/23 00:39 upstream 83d09ad4b950 52e37319 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in iptunnel_xmit / iptunnel_xmit
2021/01/21 04:54 upstream 75439bc439e0 d4f4eca5 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in iptunnel_xmit / iptunnel_xmit
2021/01/17 15:40 upstream 0da0a8a0a0e1 fd103621 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in iptunnel_xmit / iptunnel_xmit
2021/01/17 01:25 upstream 54c6247d06f1 65a7a854 .config console log report info ci2-upstream-kcsan-gce
2021/01/15 09:19 upstream 146620506274 65a7a854 .config console log report info ci2-upstream-kcsan-gce
2021/01/13 12:44 upstream e609571b5ffa a945f0a3 .config console log report info ci2-upstream-kcsan-gce
2021/01/05 15:01 upstream 36bbbd0e234d a0234d98 .config console log report info ci2-upstream-kcsan-gce
2021/01/04 06:50 upstream e71ba9452f0b 79264ae3 .config console log report info ci2-upstream-kcsan-gce
2020/12/28 20:09 upstream 5c8fe583cce5 8259d56c .config console log report info ci2-upstream-kcsan-gce
2020/12/23 03:10 upstream 614cb5894306 04201c06 .config console log report info ci2-upstream-kcsan-gce
2020/12/22 00:02 upstream 8653b778e454 04201c06 .config console log report info ci2-upstream-kcsan-gce
2020/12/18 15:16 upstream a409ed156a90 04201c06 .config console log report info ci2-upstream-kcsan-gce
2020/12/18 06:41 upstream d64c6f96ba86 04201c06 .config console log report info ci2-upstream-kcsan-gce
2020/12/16 06:20 upstream d635a69dd498 f213e07e .config console log report info ci2-upstream-kcsan-gce
2020/12/12 01:05 upstream 7f376f1917d7 bca53db9 .config console log report info ci2-upstream-kcsan-gce
2020/12/07 13:04 upstream 0477e9288185 f80ce148 .config console log report info ci2-upstream-kcsan-gce
2020/12/03 23:29 upstream 34816d20f173 59ad4022 .config console log report info ci2-upstream-kcsan-gce
2020/12/03 01:44 upstream 3bb61aa61828 8c9190ef .config console log report info ci2-upstream-kcsan-gce
2020/11/29 00:57 upstream 67f34fa8893e a0092f9d .config console log report info ci2-upstream-kcsan-gce
2020/11/26 08:36 upstream fa02fcd94b0c 2f1cec62 .config console log report info ci2-upstream-kcsan-gce
2020/11/24 19:03 upstream d5beb3140f91 e34b696c .config console log report info ci2-upstream-kcsan-gce
2020/11/14 17:00 upstream f01c30de86f1 1bf9a662 .config console log report info ci2-upstream-kcsan-gce
2020/11/13 19:55 upstream 585e5b17b92d 4a7fa9b4 .config console log report info ci2-upstream-kcsan-gce
2020/11/12 19:45 upstream af5043c89a8e 77a55c8e .config console log report info ci2-upstream-kcsan-gce
2020/11/11 05:51 upstream eccc87672492 cca87986 .config console log report info ci2-upstream-kcsan-gce
2020/11/10 16:48 upstream 407ab579637c cca87986 .config console log report info ci2-upstream-kcsan-gce
2020/11/08 03:40 upstream 4429f14aeea9 cba33199 .config console log report info ci2-upstream-kcsan-gce
2020/10/26 09:19 upstream 3650b228f83a a1839e81 .config console log report info ci2-upstream-kcsan-gce
2020/10/22 04:55 upstream f804b3159482 be6b1582 .config console log report info ci2-upstream-kcsan-gce
2020/10/18 12:49 upstream 9d9af1007bc0 fea47c01 .config console log report info ci2-upstream-kcsan-gce
2020/10/08 21:33 upstream 3d006ee42dde 92390980 .config console log report info ci2-upstream-kcsan-gce
2020/09/25 05:10 upstream 171d4ff79f96 54289b08 .config console log report info ci2-upstream-kcsan-gce
2020/09/17 02:57 upstream 5925fa68fe82 8247808b .config console log report info ci2-upstream-kcsan-gce
2020/09/11 00:50 upstream 581cb3a26baf ac7ca78e .config console log report ci2-upstream-kcsan-gce
2020/09/03 06:25 upstream fc3abb53250a abf9ba4f .config console log report ci2-upstream-kcsan-gce
2020/08/15 18:40 upstream 410520d07f5c 5ce13532 .config console log report ci2-upstream-kcsan-gce
2020/08/11 01:12 upstream 4bcf69e57063 d3694ffb .config console log report ci2-upstream-kcsan-gce
2020/08/06 16:38 upstream 47ec5303d73e 4ca1c0ea .config console log report ci2-upstream-kcsan-gce
2020/07/26 03:56 upstream 04300d66f0a0 1f7cc1ca .config console log report ci2-upstream-kcsan-gce
2020/07/22 07:43 upstream 4fa640dc5230 21f1765e .config console log report ci2-upstream-kcsan-gce
2020/07/07 08:32 upstream bfe91da29bfa 42723355 .config console log report ci2-upstream-kcsan-gce
2020/07/01 10:53 upstream 7c30b859a947 090d8f7b .config console log report ci2-upstream-kcsan-gce
2020/07/01 07:49 upstream 7c30b859a947 c0383ebe .config console log report ci2-upstream-kcsan-gce
2020/06/30 17:55 upstream 7c30b859a947 917afeaa .config console log report ci2-upstream-kcsan-gce
2020/06/30 12:00 upstream 7c30b859a947 917afeaa .config console log report ci2-upstream-kcsan-gce
2020/06/30 10:25 upstream 7c30b859a947 917afeaa .config console log report ci2-upstream-kcsan-gce
2020/06/29 08:34 upstream 9ebcfadb0610 0375051c .config console log report ci2-upstream-kcsan-gce
2020/06/27 19:08 upstream 6116dea80dfd a2cdad9d .config console log report ci2-upstream-kcsan-gce
2020/06/25 10:42 upstream 8be3a53e18e0 c7b4497a .config console log report ci2-upstream-kcsan-gce
* Struck through repros no longer work on HEAD.