syzbot


KCSAN: data-race in n_tty_receive_buf_common / n_tty_write (4)

Status: auto-obsoleted due to no activity on 2023/05/10 10:49
Subsystems: serial
[Documentation on labels]
First crash: 639d, last: 548d
Similar bugs (5)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in n_tty_receive_buf_common / n_tty_write (2) serial 36 789d 1127d 0/28 auto-closed as invalid on 2022/09/11 21:39
upstream KCSAN: data-race in n_tty_receive_buf_common / n_tty_write (6) serial 6 39d 114d 0/28 auto-obsoleted due to no activity on 2024/09/30 21:50
upstream KCSAN: data-race in n_tty_receive_buf_common / n_tty_write serial 1 1538d 1538d 0/28 auto-closed as invalid on 2020/08/23 22:27
upstream KCSAN: data-race in n_tty_receive_buf_common / n_tty_write (5) serial 41 158d 301d 0/28 auto-obsoleted due to no activity on 2024/06/03 08:33
upstream KCSAN: data-race in n_tty_receive_buf_common / n_tty_write (3) serial 5 702d 745d 0/28 auto-obsoleted due to no activity on 2022/12/07 10:52

Sample crash report:
==================================================================
BUG: KCSAN: data-race in n_tty_receive_buf_common / n_tty_write

write to 0xffffc900018e5020 of 8 bytes by task 10279 on cpu 0:
 process_echoes drivers/tty/n_tty.c:798 [inline]
 n_tty_write+0x1b0/0xa80 drivers/tty/n_tty.c:2336
 do_tty_write drivers/tty/tty_io.c:1018 [inline]
 file_tty_write+0x3a0/0x600 drivers/tty/tty_io.c:1089
 tty_write+0x28/0x30 drivers/tty/tty_io.c:1110
 call_write_iter include/linux/fs.h:1851 [inline]
 new_sync_write fs/read_write.c:491 [inline]
 vfs_write+0x463/0x760 fs/read_write.c:584
 ksys_write+0xeb/0x1a0 fs/read_write.c:637
 __do_sys_write fs/read_write.c:649 [inline]
 __se_sys_write fs/read_write.c:646 [inline]
 __x64_sys_write+0x42/0x50 fs/read_write.c:646
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

read to 0xffffc900018e5020 of 8 bytes by task 8227 on cpu 1:
 flush_echoes drivers/tty/n_tty.c:812 [inline]
 __receive_buf drivers/tty/n_tty.c:1615 [inline]
 n_tty_receive_buf_common+0x895/0xb50 drivers/tty/n_tty.c:1711
 n_tty_receive_buf2+0x32/0x40 drivers/tty/n_tty.c:1746
 tty_ldisc_receive_buf+0x60/0xe0 drivers/tty/tty_buffer.c:457
 tty_port_default_receive_buf+0x58/0x80 drivers/tty/tty_port.c:39
 receive_buf drivers/tty/tty_buffer.c:515 [inline]
 flush_to_ldisc+0x1ca/0x400 drivers/tty/tty_buffer.c:565
 process_one_work+0x3e6/0x750 kernel/workqueue.c:2390
 worker_thread+0x5f2/0xa10 kernel/workqueue.c:2537
 kthread+0x1a6/0x1e0 kernel/kthread.c:376
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308

value changed: 0x0000000000000008 -> 0x000000000000000e

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 8227 Comm: kworker/u4:22 Not tainted 6.3.0-rc5-syzkaller-00022-g76f598ba7d8e #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
Workqueue: events_unbound flush_to_ldisc
==================================================================

Crashes (5):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/04/05 10:40 upstream 76f598ba7d8e 831373d3 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in n_tty_receive_buf_common / n_tty_write
2023/03/19 18:07 upstream a3671bd86a97 7939252e .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in n_tty_receive_buf_common / n_tty_write
2023/03/02 03:57 upstream ee3f96b16468 f8902b57 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in n_tty_receive_buf_common / n_tty_write
2023/02/10 15:40 upstream 38c1e0c65865 e29a17f5 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in n_tty_receive_buf_common / n_tty_write
2023/01/04 09:56 upstream 69b41ac87e4a 1dac8c7a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in n_tty_receive_buf_common / n_tty_write
* Struck through repros no longer work on HEAD.