syzbot

==================================================================
BUG: KCSAN: data-race in virtqueue_disable_cb / vring_interrupt

write to 0xffff8881032cb15a of 1 bytes by interrupt on cpu 0:
 vring_interrupt+0x124/0x170 drivers/virtio/virtio_ring.c:2458
 __handle_irq_event_percpu+0x92/0x400 kernel/irq/handle.c:158
 handle_irq_event_percpu kernel/irq/handle.c:193 [inline]
 handle_irq_event+0x60/0xf0 kernel/irq/handle.c:210
 handle_edge_irq+0x17e/0x5a0 kernel/irq/chip.c:819
 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline]
 handle_irq arch/x86/kernel/irq.c:231 [inline]
 __common_interrupt+0x60/0x100 arch/x86/kernel/irq.c:250
 common_interrupt+0x45/0xc0 arch/x86/kernel/irq.c:240
 asm_common_interrupt+0x22/0x40

read to 0xffff8881032cb15a of 1 bytes by task 1992 on cpu 1:
 virtqueue_disable_cb+0x17/0x160 drivers/virtio/virtio_ring.c:2307
 start_xmit+0xd1/0xaf0 drivers/net/virtio_net.c:1830
 __netdev_start_xmit include/linux/netdevice.h:4819 [inline]
 netdev_start_xmit include/linux/netdevice.h:4833 [inline]
 xmit_one+0xc0/0x2a0 net/core/dev.c:3590
 dev_hard_start_xmit+0x72/0x120 net/core/dev.c:3606
 sch_direct_xmit+0x1ac/0x580 net/sched/sch_generic.c:342
 __dev_xmit_skb+0x806/0xdb0 net/core/dev.c:3817
 __dev_queue_xmit+0x59f/0xfe0 net/core/dev.c:4222
 dev_queue_xmit include/linux/netdevice.h:3008 [inline]
 neigh_hh_output include/net/neighbour.h:535 [inline]
 neigh_output include/net/neighbour.h:549 [inline]
 ip_finish_output2+0x70b/0x850 net/ipv4/ip_output.c:228
 ip_finish_output+0xf3/0x250 net/ipv4/ip_output.c:316
 NF_HOOK_COND include/linux/netfilter.h:296 [inline]
 ip_output+0xf3/0x1a0 net/ipv4/ip_output.c:430
 dst_output include/net/dst.h:451 [inline]
 ip_local_out net/ipv4/ip_output.c:126 [inline]
 __ip_queue_xmit+0xa2e/0xa50 net/ipv4/ip_output.c:532
 ip_queue_xmit+0x34/0x40 net/ipv4/ip_output.c:546
 __tcp_transmit_skb+0x1242/0x1730 net/ipv4/tcp_output.c:1402
 __tcp_send_ack+0x1dc/0x2e0 net/ipv4/tcp_output.c:3981
 tcp_send_ack+0x23/0x30 net/ipv4/tcp_output.c:3987
 __tcp_cleanup_rbuf+0x14e/0x260 net/ipv4/tcp.c:1617
 tcp_cleanup_rbuf net/ipv4/tcp.c:1628 [inline]
 tcp_recvmsg_locked+0x10c4/0x1580 net/ipv4/tcp.c:2640
 tcp_recvmsg+0x148/0x4c0 net/ipv4/tcp.c:2670
 inet_recvmsg+0x9e/0x210 net/ipv4/af_inet.c:850
 sock_recvmsg_nosec net/socket.c:995 [inline]
 sock_recvmsg net/socket.c:1013 [inline]
 sock_read_iter+0x1b1/0x1f0 net/socket.c:1086
 call_read_iter include/linux/fs.h:2181 [inline]
 new_sync_read fs/read_write.c:389 [inline]
 vfs_read+0x3a5/0x560 fs/read_write.c:470
 ksys_read+0xe8/0x1a0 fs/read_write.c:607
 __do_sys_read fs/read_write.c:617 [inline]
 __se_sys_read fs/read_write.c:615 [inline]
 __x64_sys_read+0x3e/0x50 fs/read_write.c:615
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x2b/0x70 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

value changed: 0x00 -> 0x01

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 1992 Comm: syz-fuzzer Not tainted 6.0.0-rc6-syzkaller-00045-gdc164f4fb00a-dirty #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022
==================================================================