syzbot

 sign-in | mailing list | source | docs
🐞 Open [1566]
Subsystems
🐞 Fixed [6420]
🐞 Invalid [16298]
Missing Backports [199]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KCSAN: data-race in __mod_timer / timer_clear_idle (4)

Status: auto-obsoleted due to no activity on 2022/10/14 01:10
Subsystems: kernel
[Documentation on labels]
First crash: 1044d, last: 1044d
Similar bugs (3)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in __mod_timer / timer_clear_idle kernel 6 74 1809d 1822d 0/29 auto-closed as invalid on 2020/09/08 21:36
upstream KCSAN: data-race in __mod_timer / timer_clear_idle (3) kernel 6 8 1550d 1658d 0/29 auto-closed as invalid on 2021/05/25 13:49
upstream KCSAN: data-race in __mod_timer / timer_clear_idle (2) kernel 6 1 1753d 1753d 0/29 auto-closed as invalid on 2020/11/04 00:53

Sample crash report:
==================================================================
BUG: KCSAN: data-race in __mod_timer / timer_clear_idle

write to 0xffff888237c1ba65 of 1 bytes by task 0 on cpu 0:
 timer_clear_idle+0x2e/0x40 kernel/time/timer.c:1755
 tick_nohz_restart_sched_tick+0x20/0x110 kernel/time/tick-sched.c:968
 tick_nohz_idle_update_tick kernel/time/tick-sched.c:1315 [inline]
 tick_nohz_idle_exit+0x119/0x280 kernel/time/tick-sched.c:1349
 do_idle+0x215/0x250 kernel/sched/idle.c:316
 cpu_startup_entry+0x15/0x20 kernel/sched/idle.c:400
 rest_init+0xe8/0xf0 init/main.c:727
 start_kernel+0x0/0x656 init/main.c:883
 start_kernel+0x5d1/0x656 init/main.c:1138
 secondary_startup_64_no_verify+0xcf/0xdb

read to 0xffff888237c1ba65 of 1 bytes by interrupt on cpu 1:
 trigger_dyntick_cpu kernel/time/timer.c:592 [inline]
 enqueue_timer kernel/time/timer.c:624 [inline]
 __mod_timer+0x8e0/0xc40 kernel/time/timer.c:1113
 mod_timer+0x1b/0x20 kernel/time/timer.c:1161
 sk_reset_timer+0x1f/0xa0 net/core/sock.c:3287
 tcp_send_delayed_ack+0x239/0x250 net/ipv4/tcp_output.c:3939
 __tcp_ack_snd_check+0x2f6/0x500 net/ipv4/tcp_input.c:5528
 tcp_ack_snd_check net/ipv4/tcp_input.c:5569 [inline]
 tcp_rcv_established+0x719/0xea0 net/ipv4/tcp_input.c:6007
 tcp_v4_do_rcv+0x2a8/0x5a0 net/ipv4/tcp_ipv4.c:1661
 tcp_v4_rcv+0x17c8/0x1a30 net/ipv4/tcp_ipv4.c:2078
 ip_protocol_deliver_rcu+0x23f/0x490 net/ipv4/ip_input.c:205
 ip_local_deliver_finish+0x126/0x160 net/ipv4/ip_input.c:233
 NF_HOOK include/linux/netfilter.h:307 [inline]
 ip_local_deliver+0x100/0x1b0 net/ipv4/ip_input.c:254
 dst_input include/net/dst.h:461 [inline]
 ip_sublist_rcv_finish net/ipv4/ip_input.c:575 [inline]
 ip_list_rcv_finish net/ipv4/ip_input.c:625 [inline]
 ip_sublist_rcv+0x524/0x5f0 net/ipv4/ip_input.c:633
 ip_list_rcv+0x277/0x2b0 net/ipv4/ip_input.c:668
 __netif_receive_skb_list_ptype net/core/dev.c:5528 [inline]
 __netif_receive_skb_list_core+0x37d/0x490 net/core/dev.c:5576
 __netif_receive_skb_list+0x2a2/0x320 net/core/dev.c:5628
 netif_receive_skb_list_internal+0x254/0x390 net/core/dev.c:5719
 gro_normal_list include/net/gro.h:430 [inline]
 napi_complete_done+0x1b2/0x3c0 net/core/dev.c:6060
 virtqueue_napi_complete drivers/net/virtio_net.c:398 [inline]
 virtnet_poll+0x6e4/0x990 drivers/net/virtio_net.c:1675
 __napi_poll+0x65/0x390 net/core/dev.c:6511
 napi_poll net/core/dev.c:6578 [inline]
 net_rx_action+0x37e/0x730 net/core/dev.c:6689
 __do_softirq+0x158/0x2e3 kernel/softirq.c:571
 __irq_exit_rcu kernel/softirq.c:650 [inline]
 irq_exit_rcu+0x41/0x70 kernel/softirq.c:662
 common_interrupt+0x9f/0xc0 arch/x86/kernel/irq.c:240
 asm_common_interrupt+0x22/0x40
 native_safe_halt arch/x86/include/asm/irqflags.h:51 [inline]
 arch_safe_halt arch/x86/include/asm/irqflags.h:89 [inline]
 acpi_safe_halt drivers/acpi/processor_idle.c:112 [inline]
 acpi_idle_do_entry drivers/acpi/processor_idle.c:555 [inline]
 acpi_idle_enter+0x283/0x310 drivers/acpi/processor_idle.c:692
 cpuidle_enter_state+0x2de/0x960 drivers/cpuidle/cpuidle.c:239
 cpuidle_enter+0x3c/0x60 drivers/cpuidle/cpuidle.c:356
 call_cpuidle kernel/sched/idle.c:155 [inline]
 cpuidle_idle_call kernel/sched/idle.c:236 [inline]
 do_idle+0x1a7/0x250 kernel/sched/idle.c:303
 cpu_startup_entry+0x15/0x20 kernel/sched/idle.c:400
 start_secondary+0x78/0x80 arch/x86/kernel/smpboot.c:262
 secondary_startup_64_no_verify+0xcf/0xdb

value changed: 0x01 -> 0x00

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.0.0-rc4-syzkaller-00126-g26b1224903b3-dirty #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022
==================================================================

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/09/09 01:03 upstream 26b1224903b3 f3027468 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __mod_timer / timer_clear_idle
* Struck through repros no longer work on HEAD.