KCSAN: data-race in tick_sched_timer / tick_sched

KCSAN: data-race in tick_sched_timer / tick_sched_timer
Status: moderation: reported on 2020/07/30 16:33
Reported-by: syzbot+867130cb240c41f15164@syzkaller.appspotmail.com
First crash: 261d, last: 23h34m

Sample crash report:

==================================================================
BUG: KCSAN: data-race in tick_sched_timer / tick_sched_timer

write to 0xffffffff87bc63e0 of 4 bytes by interrupt on cpu 0:
 tick_sched_do_timer kernel/time/tick-sched.c:191 [inline]
 tick_sched_timer+0x1f5/0x210 kernel/time/tick-sched.c:1362
 __run_hrtimer+0x163/0x460 kernel/time/hrtimer.c:1519
 __hrtimer_run_queues kernel/time/hrtimer.c:1583 [inline]
 hrtimer_interrupt+0x36e/0xa30 kernel/time/hrtimer.c:1645
 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1089 [inline]
 __sysvec_apic_timer_interrupt+0x6f/0x200 arch/x86/kernel/apic/apic.c:1106
 sysvec_apic_timer_interrupt+0x32/0x80 arch/x86/kernel/apic/apic.c:1100
 asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:632

read to 0xffffffff87bc63e0 of 4 bytes by interrupt on cpu 1:
 tick_sched_do_timer kernel/time/tick-sched.c:187 [inline]
 tick_sched_timer+0x35/0x210 kernel/time/tick-sched.c:1362
 __run_hrtimer+0x163/0x460 kernel/time/hrtimer.c:1519
 __hrtimer_run_queues kernel/time/hrtimer.c:1583 [inline]
 hrtimer_interrupt+0x36e/0xa30 kernel/time/hrtimer.c:1645
 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1089 [inline]
 __sysvec_apic_timer_interrupt+0x6f/0x200 arch/x86/kernel/apic/apic.c:1106
 sysvec_apic_timer_interrupt+0x69/0x80 arch/x86/kernel/apic/apic.c:1100
 asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:632
 should_watch kernel/kcsan/core.c:261 [inline]
 check_access kernel/kcsan/core.c:627 [inline]
 __tsan_read4+0x140/0x180 kernel/kcsan/core.c:839
 ipt_do_table+0x38/0xce0 net/ipv4/netfilter/ip_tables.c:229
 iptable_filter_hook+0x3b/0x50 net/ipv4/netfilter/iptable_filter.c:37
 nf_hook_entry_hookfn include/linux/netfilter.h:136 [inline]
 nf_hook_slow+0x72/0x170 net/netfilter/core.c:589
 nf_hook include/linux/netfilter.h:256 [inline]
 NF_HOOK include/linux/netfilter.h:299 [inline]
 ip_local_deliver+0x272/0x2a0 net/ipv4/ip_input.c:252
 dst_input include/net/dst.h:458 [inline]
 ip_sublist_rcv_finish net/ipv4/ip_input.c:551 [inline]
 ip_list_rcv_finish net/ipv4/ip_input.c:601 [inline]
 ip_sublist_rcv+0x4c4/0x590 net/ipv4/ip_input.c:609
 ip_list_rcv+0x262/0x290 net/ipv4/ip_input.c:644
 __netif_receive_skb_list_ptype net/core/dev.c:5408 [inline]
 __netif_receive_skb_list_core+0x34b/0x450 net/core/dev.c:5456
 __netif_receive_skb_list+0x262/0x2e0 net/core/dev.c:5508
 netif_receive_skb_list_internal+0xda/0x330 net/core/dev.c:5618
 gro_normal_list net/core/dev.c:5772 [inline]
 napi_complete_done+0x1b2/0x4d0 net/core/dev.c:6474
 virtqueue_napi_complete+0x28/0x80 drivers/net/virtio_net.c:334
 virtnet_poll+0x65f/0x790 drivers/net/virtio_net.c:1455
 __napi_poll+0x77/0x510 net/core/dev.c:6892
 napi_poll net/core/dev.c:6959 [inline]
 net_rx_action+0x29f/0x680 net/core/dev.c:7036
 __do_softirq+0x13c/0x2c3 kernel/softirq.c:345
 run_ksoftirqd+0x13/0x20 kernel/softirq.c:652
 smpboot_thread_fn+0x34f/0x520 kernel/smpboot.c:165
 kthread+0x20b/0x230 kernel/kthread.c:292
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 18 Comm: ksoftirqd/1 Not tainted 5.12.0-rc1-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================

Crashes (274):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	VM info	Title
ci2-upstream-kcsan-gce	2021/03/06 04:15	upstream	280d542f	4a024a9b	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/03/05 04:04	upstream	cee407c5	f89ed068	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/03/04 12:10	upstream	f69d02e3	d7e4e604	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/24 07:33	upstream	c03c21ba	fcc6d71b	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/23 19:12	upstream	3b9cdafb	fcc6d71b	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/22 15:51	upstream	31caf8b2	c26fb06b	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/22 10:00	upstream	31caf8b2	a659b3f1	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/21 22:29	upstream	55f62bc8	a659b3f1	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/21 12:09	upstream	e767b353	3e5ed8b4	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/19 21:12	upstream	f40ddce8	f689d40a	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/19 09:03	upstream	f40ddce8	14052202	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/17 16:03	upstream	f40ddce8	052f8d9f	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/15 17:17	upstream	f40ddce8	98682e5e	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/14 23:01	upstream	358fecee	98682e5e	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/13 18:52	upstream	c6d8570e	98682e5e	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/13 08:32	upstream	dcc0b490	98682e5e	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/10 13:16	upstream	e0756cfc	9c8b8541	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/08 10:13	upstream	b75dba7f	2ce644fc	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/07 17:56	upstream	825b5991	2ce644fc	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/06 22:06	upstream	1e0d27fc	0655e081	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/06 05:56	upstream	1e0d27fc	23a562df	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/04 02:25	upstream	3afe9076	624dad51	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/03 06:47	upstream	3aaf0a27	624dad51	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/02/02 05:55	upstream	88bb507a	e6b95f32	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/31 12:30	upstream	6642d600	fc9fd31e	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/29 20:41	upstream	bec4c296	fc9fd31e	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/29 09:56	upstream	bec4c296	6593fd32	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/28 19:24	upstream	e5ff2cb9	7df34f59	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/27 22:30	upstream	76c057c8	a57db36f	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/27 19:01	upstream	2ab38c17	a57db36f	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/27 10:04	upstream	2ab38c17	a0ebf917	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/26 00:53	upstream	f8ad8187	52e37319	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/25 11:57	upstream	6ee1d745	52e37319	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/24 22:46	upstream	e6806137	52e37319	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/24 03:39	upstream	e1ae4b0b	52e37319	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/23 10:26	upstream	fe75a218	52e37319	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/21 05:06	upstream	75439bc4	d4f4eca5	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/19 16:10	upstream	1e2a199f	63631df1	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/18 17:28	upstream	19c329f6	63631df1	.config	log	report	info	KCSAN: data-race in tick_sched_timer / tick_sched_timer
ci2-upstream-kcsan-gce	2021/01/16 08:12	upstream	1d94330a	65a7a854	.config	log	report	info
ci2-upstream-kcsan-gce	2021/01/15 21:28	upstream	5ee88057	65a7a854	.config	log	report	info
ci2-upstream-kcsan-gce	2021/01/15 05:10	upstream	14662050	65a7a854	.config	log	report	info
ci2-upstream-kcsan-gce	2021/01/14 16:16	upstream	65f0d241	468dbb55	.config	log	report	info
ci2-upstream-kcsan-gce	2021/01/12 13:43	upstream	a0d54b4f	2c1f2513	.config	log	report	info
ci2-upstream-kcsan-gce	2021/01/09 23:19	upstream	2ff90100	2c1f2513	.config	log	report	info
ci2-upstream-kcsan-gce	2021/01/09 17:13	upstream	996e435f	a6c52263	.config	log	report	info
ci2-upstream-kcsan-gce	2020/07/29 23:48	upstream	6ba1b005	233283a1	.config	log	report
ci2-upstream-kcsan-gce	2020/07/29 13:50	upstream	6ba1b005	19a8de55	.config	log	report
ci2-upstream-kcsan-gce	2020/06/18 22:07	upstream	1b504402	3ea11d3f	.config	log	report