syzbot

 sign-in | mailing list | source | docs
🐞 Open [997] Subsystems 🐞 Fixed [5242] 🐞 Invalid [12511] Missing Backports [84] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

KCSAN: data-race in calc_wb_limits.part.0 / wbt_wait (3)

Status: closed as invalid on 2020/06/18 14:24
Subsystems: block
[Documentation on labels]
First crash: 1537d, last: 1430d
Similar bugs (2)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in calc_wb_limits.part.0 / wbt_wait block 4 1627d 1637d 0/26 closed as invalid on 2019/11/19 14:54
upstream KCSAN: data-race in calc_wb_limits.part.0 / wbt_wait (2) block 1 1610d 1610d 0/26 auto-closed as invalid on 2020/02/06 18:57

Sample crash report:
==================================================================
BUG: KCSAN: data-race in calc_wb_limits.part.0 / wbt_wait

write to 0xffff888128e8bd04 of 4 bytes by interrupt on cpu 0:
 calc_wb_limits.part.0+0x70/0xa0 block/blk-wbt.c:304
 calc_wb_limits block/blk-wbt.c:298 [inline]
 scale_up block/blk-wbt.c:313 [inline]
 scale_up+0x7d/0x250 block/blk-wbt.c:309
 wb_timer_fn+0x2d6/0xad0 block/blk-wbt.c:382
 blk_stat_timer_fn+0x3af/0x3d0 block/blk-stat.c:99
 call_timer_fn+0x58/0x2e0 kernel/time/timer.c:1405
 expire_timers kernel/time/timer.c:1450 [inline]
 __run_timers kernel/time/timer.c:1774 [inline]
 __run_timers kernel/time/timer.c:1741 [inline]
 run_timer_softirq+0xb14/0xbd0 kernel/time/timer.c:1787
 __do_softirq+0x118/0x34a kernel/softirq.c:292
 invoke_softirq kernel/softirq.c:373 [inline]
 irq_exit+0xb5/0xd0 kernel/softirq.c:413
 exiting_irq arch/x86/include/asm/apic.h:546 [inline]
 smp_apic_timer_interrupt+0xe2/0x270 arch/x86/kernel/apic/apic.c:1140
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:829
 arch_local_irq_restore arch/x86/include/asm/paravirt.h:759 [inline]
 console_unlock+0x903/0xb70 kernel/printk/printk.c:2506
 vprintk_emit+0x405/0x500 kernel/printk/printk.c:2021
 vprintk_default+0x2e/0x40 kernel/printk/printk.c:2048
 vprintk_func+0x81/0x13a kernel/printk/printk_safe.c:385
 printk+0x69/0x91 kernel/printk/printk.c:2081
 kauditd_printk_skb kernel/audit.c:533 [inline]
 kauditd_hold_skb.cold+0x21/0x26 kernel/audit.c:566
 kauditd_send_queue+0x1af/0x220 kernel/audit.c:729
 kauditd_thread+0x469/0x540 kernel/audit.c:855
 kthread+0x203/0x230 kernel/kthread.c:268
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:352

read to 0xffff888128e8bd04 of 4 bytes by task 17725 on cpu 1:
 rwb_enabled block/blk-wbt.c:80 [inline]
 bio_to_wbt_flags block/blk-wbt.c:551 [inline]
 wbt_wait+0x4d/0x260 block/blk-wbt.c:584
 __rq_qos_throttle+0x42/0x70 block/blk-rq-qos.c:72
 rq_qos_throttle block/blk-rq-qos.h:182 [inline]
 blk_mq_make_request+0x297/0xf60 block/blk-mq.c:1998
 generic_make_request block/blk-core.c:1075 [inline]
 generic_make_request+0x196/0x700 block/blk-core.c:1017
 submit_bio+0x8f/0x3a0 block/blk-core.c:1200
 submit_bio_wait+0xaf/0x150 block/bio.c:1077
 blkdev_issue_flush+0x12a/0x190 block/blk-flush.c:461
 ext4_sync_file+0x64d/0x8b0 fs/ext4/fsync.c:179
 vfs_fsync_range+0x7c/0x150 fs/sync.c:197
 generic_write_sync include/linux/fs.h:2872 [inline]
 iomap_dio_complete+0x37a/0x3c0 fs/iomap/direct-io.c:120
 iomap_dio_rw+0x8e3/0x9a0 fs/iomap/direct-io.c:569
 ext4_dio_write_iter fs/ext4/file.c:532 [inline]
 ext4_file_write_iter+0xb84/0xd30 fs/ext4/file.c:640
 call_write_iter include/linux/fs.h:1907 [inline]
 do_iter_readv_writev+0x4a7/0x5d0 fs/read_write.c:694
 do_iter_write fs/read_write.c:999 [inline]
 do_iter_write+0x137/0x3a0 fs/read_write.c:980
 vfs_iter_write+0x56/0x80 fs/read_write.c:1040
 iter_file_splice_write+0x530/0x830 fs/splice.c:760
 do_splice_from fs/splice.c:863 [inline]
 direct_splice_actor+0x97/0xb0 fs/splice.c:1037
 splice_direct_to_actor+0x22f/0x540 fs/splice.c:992
 do_splice_direct+0x152/0x1d0 fs/splice.c:1080
 do_sendfile+0x380/0x800 fs/read_write.c:1521
 __do_sys_sendfile64 fs/read_write.c:1576 [inline]
 __se_sys_sendfile64 fs/read_write.c:1568 [inline]
 __x64_sys_sendfile64+0xb8/0x140 fs/read_write.c:1568
 do_syscall_64+0xc7/0x3b0 arch/x86/entry/common.c:295
 entry_SYSCALL_64_after_hwframe+0x44/0xa9

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 17725 Comm: syz-executor.1 Not tainted 5.7.0-rc1-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================

Crashes (9):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2020/05/27 01:51 https://github.com/google/ktsan.git kcsan 7c3cd68e5d38 9072c126 .config console log report ci2-upstream-kcsan-gce
2020/05/03 20:35 https://github.com/google/ktsan.git kcsan 7c3cd68e5d38 58ae5e18 .config console log report ci2-upstream-kcsan-gce
2020/04/27 23:49 https://github.com/google/ktsan.git kcsan 7c3cd68e5d38 0ce7569e .config console log report ci2-upstream-kcsan-gce
2020/03/15 11:24 https://github.com/google/ktsan.git kcsan 941e0d917bbf 749688d2 .config console log report ci2-upstream-kcsan-gce
2020/03/07 18:40 https://github.com/google/ktsan.git kcsan 941e0d917bbf 2e9971bb .config console log report ci2-upstream-kcsan-gce
2020/02/20 13:05 https://github.com/google/ktsan.git kcsan b12d66a6c34f 81230308 .config console log report ci2-upstream-kcsan-gce
2020/02/19 22:18 https://github.com/google/ktsan.git kcsan b12d66a6c34f 47fae6e9 .config console log report ci2-upstream-kcsan-gce
2020/02/15 06:03 https://github.com/google/ktsan.git kcsan b12d66a6c34f 5d7b90f1 .config console log report ci2-upstream-kcsan-gce
2020/02/09 14:14 https://github.com/google/ktsan.git kcsan f60f0f543333 6ece2ea5 .config console log report ci2-upstream-kcsan-gce
* Struck through repros no longer work on HEAD.