syzbot

 sign-in | mailing list | source | docs
🐞 Open [987] Subsystems 🐞 Fixed [5238] 🐞 Invalid [12509] Missing Backports [83] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

KCSAN: data-race in __io_cqring_fill_event / io_wake_function (3)

Status: auto-closed as invalid on 2022/02/16 08:36
Subsystems: fs
[Documentation on labels]
First crash: 975d, last: 834d
Similar bugs (2)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in __io_cqring_fill_event / io_wake_function fs 2 1093d 1106d 0/26 auto-closed as invalid on 2021/06/02 15:37
upstream KCSAN: data-race in __io_cqring_fill_event / io_wake_function (2) fs 2 1022d 1027d 0/26 auto-closed as invalid on 2021/08/12 17:15

Sample crash report:
==================================================================
BUG: KCSAN: data-race in __io_cqring_fill_event / io_wake_function

write to 0xffff888136999200 of 4 bytes by task 30407 on cpu 0:
 io_get_cqe fs/io_uring.c:1695 [inline]
 __io_cqring_fill_event+0xf9/0x380 fs/io_uring.c:1873
 io_req_complete_post+0x4b/0x5d0 fs/io_uring.c:1896
 io_issue_sqe+0x4c0e/0x53b0
 io_wq_submit_work+0x1c5/0x370 fs/io_uring.c:6840
 io_worker_handle_work+0x4ca/0xbd0 fs/io-wq.c:576
 io_wqe_worker+0x1bc/0x4f0 fs/io-wq.c:632
 ret_from_fork+0x1f/0x30

read to 0xffff888136999200 of 4 bytes by task 30411 on cpu 1:
 io_should_wake fs/io_uring.c:7577 [inline]
 io_wake_function+0x36/0x100 fs/io_uring.c:7597
 __wake_up_common+0xbc/0x130 kernel/sched/wait.c:108
 __wake_up_common_lock kernel/sched/wait.c:138 [inline]
 __wake_up+0x80/0xc0 kernel/sched/wait.c:157
 io_cqring_ev_posted fs/io_uring.c:1723 [inline]
 io_req_complete_post+0x2e4/0x5d0 fs/io_uring.c:1918
 io_issue_sqe+0x4c0e/0x53b0
 io_wq_submit_work+0x1c5/0x370 fs/io_uring.c:6840
 io_worker_handle_work+0x4ca/0xbd0 fs/io-wq.c:576
 io_wqe_worker+0x1bc/0x4f0 fs/io-wq.c:632
 ret_from_fork+0x1f/0x30

value changed: 0x000001cf -> 0x000001d0

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 30411 Comm: iou-wrk-30396 Not tainted 5.16.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================

Crashes (15):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/01/12 08:26 upstream 6f38be8f2ccd 44d1319a .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_fill_event / io_wake_function
2022/01/01 08:08 upstream 800829388818 e1768e9c .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_fill_event / io_wake_function
2021/12/05 08:46 upstream 79a72162048e a617004c .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_fill_event / io_wake_function
2021/11/11 14:59 upstream debe436e77c7 75b04091 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_fill_event / io_wake_function
2021/11/07 05:13 upstream 512b7931ad05 4c1be0be .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_fill_event / io_wake_function
2021/11/02 12:40 upstream bfc484fe6abb 098b5d53 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_fill_event / io_wake_function
2021/10/06 09:37 upstream 60a9483534ed 0a63fd36 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_fill_event / io_wake_function
2021/10/05 04:49 upstream 84b3e42564ac ce697b49 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_fill_event / io_wake_function
2021/09/27 08:50 upstream 996148ee05d0 78494d16 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_fill_event / io_wake_function
2021/09/26 16:54 upstream a3b397b4fffb 8cac236e .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_fill_event / io_wake_function
2021/09/25 19:54 upstream 85736168463d 8cac236e .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_fill_event / io_wake_function
2021/09/25 13:14 upstream 7d42e9818258 8cac236e .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_fill_event / io_wake_function
2021/09/18 13:59 upstream 4357f03d6611 70b76c1d .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_fill_event / io_wake_function
2021/09/05 11:11 upstream a9c9a6f741cd d236a457 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_fill_event / io_wake_function
2021/08/24 22:17 upstream 6e764bcd1cf7 b599f2fc .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_fill_event / io_wake_function
* Struck through repros no longer work on HEAD.