syzbot


KCSAN: data-race in tcp_init_metrics / tcp_update_metrics

Status: auto-closed as invalid on 2020/09/08 03:38
Subsystems: net
[Documentation on labels]
First crash: 1333d, last: 1333d

Sample crash report:
==================================================================
BUG: KCSAN: data-race in tcp_init_metrics / tcp_update_metrics

write to 0xffff8880a1f85044 of 4 bytes by interrupt on cpu 0:
 tcp_metric_set net/ipv4/tcp_metrics.c:75 [inline]
 tcp_update_metrics+0x1e2/0x6c0 net/ipv4/tcp_metrics.c:363
 tcp_time_wait+0x49c/0x530 net/ipv4/tcp_minisocks.c:339
 tcp_fin+0x123/0x390 net/ipv4/tcp_input.c:4182
 tcp_data_queue+0xcd1/0x3160 net/ipv4/tcp_input.c:4841
 tcp_rcv_state_process+0x129b/0x15f0 net/ipv4/tcp_input.c:6411
 tcp_v4_do_rcv+0x3e2/0x480 net/ipv4/tcp_ipv4.c:1663
 tcp_v4_rcv+0x219b/0x2420 net/ipv4/tcp_ipv4.c:2023
 ip_protocol_deliver_rcu+0x1f9/0x400 net/ipv4/ip_input.c:204
 ip_local_deliver_finish net/ipv4/ip_input.c:231 [inline]
 NF_HOOK include/linux/netfilter.h:307 [inline]
 ip_local_deliver+0x1d6/0x2a0 net/ipv4/ip_input.c:252
 dst_input include/net/dst.h:449 [inline]
 ip_rcv_finish net/ipv4/ip_input.c:428 [inline]
 NF_HOOK include/linux/netfilter.h:307 [inline]
 ip_rcv+0x1a6/0x250 net/ipv4/ip_input.c:539
 __netif_receive_skb_one_core net/core/dev.c:5281 [inline]
 __netif_receive_skb+0x8b/0x1b0 net/core/dev.c:5395
 process_backlog+0x29f/0x4a0 net/core/dev.c:6239
 napi_poll+0x178/0x4a0 net/core/dev.c:6684
 net_rx_action+0x1ba/0x530 net/core/dev.c:6752
 __do_softirq+0x198/0x360 kernel/softirq.c:298
 run_ksoftirqd+0x2f/0x60 kernel/softirq.c:636
 smpboot_thread_fn+0x347/0x530 kernel/smpboot.c:165
 kthread+0x20d/0x230 kernel/kthread.c:292
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:293

read to 0xffff8880a1f85044 of 4 bytes by task 3397 on cpu 1:
 tcp_metric_get net/ipv4/tcp_metrics.c:68 [inline]
 tcp_init_metrics+0x210/0x380 net/ipv4/tcp_metrics.c:481
 tcp_init_transfer+0x59/0x5c0 net/ipv4/tcp_input.c:5776
 tcp_finish_connect+0xee/0x220 net/ipv4/tcp_input.c:5809
 tcp_rcv_synsent_state_process+0xc12/0x1280 net/ipv4/tcp_input.c:6029
 tcp_rcv_state_process+0x192/0x15f0 net/ipv4/tcp_input.c:6228
 tcp_v4_do_rcv+0x3e2/0x480 net/ipv4/tcp_ipv4.c:1663
 sk_backlog_rcv include/net/sock.h:997 [inline]
 __release_sock+0xf5/0x260 net/core/sock.c:2550
 release_sock+0x40/0x110 net/core/sock.c:3066
 inet_stream_connect+0x58/0x70 net/ipv4/af_inet.c:723
 rds_tcp_conn_path_connect+0x366/0x430 net/rds/tcp_connect.c:172
 rds_connect_worker+0x125/0x1a0 net/rds/threads.c:176
 process_one_work+0x3e1/0x9a0 kernel/workqueue.c:2269
 worker_thread+0x665/0xbe0 kernel/workqueue.c:2415
 kthread+0x20d/0x230 kernel/kthread.c:292
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:293

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 3397 Comm: kworker/u4:4 Not tainted 5.8.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: krdsd rds_connect_worker
==================================================================

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2020/08/04 03:36 upstream e4cbce4d1317 96dd3623 .config console log report ci2-upstream-kcsan-gce
* Struck through repros no longer work on HEAD.