syzbot

 sign-in | mailing list | source | docs
🐞 Open [41]
🐞 Fixed [469]
🐞 Invalid [348]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

DATA RACE in tun.(*Device).Write

Status: auto-obsoleted due to no activity on 2023/01/19 13:45
Reported-by: syzbot+df8abee5a40090a9368f@syzkaller.appspotmail.com
First crash: 767d, last: 767d

Sample crash report:
WARNING: DATA RACE
Read at 0x00c004e81c80 by goroutine 957:
  runtime.slicecopy()
      GOROOT/src/runtime/slice.go:295 +0x0
  gvisor.dev/gvisor/pkg/tcpip/link/tun.(*Device).Write()
      pkg/tcpip/link/tun/device.go:242 +0xa35
  gvisor.dev/gvisor/pkg/sentry/devices/tundev.(*tunFD).Write()
      pkg/sentry/devices/tundev/tundev.go:163 +0x309
  gvisor.dev/gvisor/pkg/sentry/vfs.(*FileDescription).Write()
      pkg/sentry/vfs/file_description.go:671 +0x124
  gvisor.dev/gvisor/pkg/sentry/syscalls/linux/vfs2.write()
      pkg/sentry/syscalls/linux/vfs2/read_write.go:348 +0x9c
  gvisor.dev/gvisor/pkg/sentry/syscalls/linux/vfs2.Write()
      pkg/sentry/syscalls/linux/vfs2/read_write.go:317 +0x2a4
  gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).executeSyscall()
      pkg/sentry/kernel/task_syscall.go:142 +0x9b7
  gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscallInvoke()
      pkg/sentry/kernel/task_syscall.go:322 +0x7c
  gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscallEnter()
      pkg/sentry/kernel/task_syscall.go:282 +0x8e
  gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscall()
      pkg/sentry/kernel/task_syscall.go:257 +0x495
  gvisor.dev/gvisor/pkg/sentry/kernel.(*runApp).execute()
      pkg/sentry/kernel/task_run.go:253 +0x18f8
  gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).run()
      pkg/sentry/kernel/task_run.go:94 +0x353
  gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).Start.func1()
      pkg/sentry/kernel/task_start.go:380 +0x47

Previous write at 0x00c004e81c82 by goroutine 1080:
  encoding/binary.bigEndian.PutUint16()
      GOROOT/src/encoding/binary/binary.go:107 +0x498
  gvisor.dev/gvisor/pkg/tcpip/checksum.Put()
      pkg/tcpip/checksum/checksum.go:30 +0x457
  gvisor.dev/gvisor/pkg/tcpip/header.ICMPv6.SetChecksum()
      pkg/tcpip/header/icmpv6.go:203 +0x44e
  gvisor.dev/gvisor/pkg/tcpip/network/ipv6.(*endpoint).sendNDPNS()
      pkg/tcpip/network/ipv6/ndp.go:1988 +0x316
  gvisor.dev/gvisor/pkg/tcpip/network/ipv6.(*endpoint).LinkAddressRequest()
      pkg/tcpip/network/ipv6/icmp.go:918 +0x324
  gvisor.dev/gvisor/pkg/tcpip/stack.(*neighborEntry).handlePacketQueuedLocked.func1()
      pkg/tcpip/stack/neighbor_entry.go:399 +0x121
  gvisor.dev/gvisor/pkg/sentry/kernel/time.AfterFunc.func1.1()
      pkg/sentry/kernel/time/util.go:57 +0x43

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/10/21 13:44 gvisor c40f8e36517d 3a03e294 .config console log report info ci-gvisor-ptrace-2-race DATA RACE in tun.(*Device).Write
* Struck through repros no longer work on HEAD.