syzbot

 sign-in | mailing list | source | docs
🐞 Open [1658]
Subsystems
🐞 Fixed [6096]
🐞 Invalid [15180]
Missing Backports [162]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KCSAN: data-race in wg_xmit / wg_xmit

Status: auto-closed as invalid on 2020/11/17 12:19
Subsystems: wireguard
[Documentation on labels]
First crash: 1614d, last: 1614d
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in wg_xmit / wg_xmit (2) wireguard 1 1517d 1517d 0/28 auto-closed as invalid on 2021/02/22 13:14
upstream KCSAN: data-race in wg_xmit / wg_xmit (4) wireguard 1 491d 486d 25/28 fixed on 2024/01/22 01:16
upstream KCSAN: data-race in wg_xmit / wg_xmit (3) wireguard 1 956d 956d 0/28 auto-closed as invalid on 2022/09/06 05:24

Sample crash report:
==================================================================
BUG: KCSAN: data-race in wg_xmit / wg_xmit

write to 0xffff88807ad22130 of 8 bytes by task 10892 on cpu 0:
 wg_xmit+0x602/0x6a0 drivers/net/wireguard/device.c:205
 __netdev_start_xmit include/linux/netdevice.h:4681 [inline]
 netdev_start_xmit include/linux/netdevice.h:4695 [inline]
 xmit_one+0xc0/0x2b0 net/core/dev.c:3561
 dev_hard_start_xmit net/core/dev.c:3577 [inline]
 __dev_queue_xmit+0xf00/0x1580 net/core/dev.c:4136
 dev_queue_xmit+0x13/0x20 net/core/dev.c:4169
 __bpf_tx_skb net/core/filter.c:2112 [inline]
 __bpf_redirect_no_mac net/core/filter.c:2137 [inline]
 __bpf_redirect+0x56a/0x7c0 net/core/filter.c:2160
 ____bpf_clone_redirect net/core/filter.c:2191 [inline]
 bpf_clone_redirect+0x168/0x1c0 net/core/filter.c:2163
 bpf_prog_049923eb4e3e016c+0x5c/0xefc
 bpf_dispatcher_nop_func include/linux/bpf.h:586 [inline]
 bpf_test_run+0x26d/0x4a0 net/bpf/test_run.c:49
 bpf_prog_test_run_skb+0x6bd/0xe00 net/bpf/test_run.c:496
 bpf_prog_test_run kernel/bpf/syscall.c:2996 [inline]
 __do_sys_bpf+0x3612/0x9700 kernel/bpf/syscall.c:4196
 __se_sys_bpf kernel/bpf/syscall.c:4136 [inline]
 __x64_sys_bpf+0x3d/0x50 kernel/bpf/syscall.c:4136
 do_syscall_64+0x39/0x80 arch/x86/entry/common.c:46
 entry_SYSCALL_64_after_hwframe+0x44/0xa9

read to 0xffff88807ad22130 of 8 bytes by task 10896 on cpu 1:
 wg_xmit+0x5f0/0x6a0 drivers/net/wireguard/device.c:205
 __netdev_start_xmit include/linux/netdevice.h:4681 [inline]
 netdev_start_xmit include/linux/netdevice.h:4695 [inline]
 xmit_one+0xc0/0x2b0 net/core/dev.c:3561
 dev_hard_start_xmit net/core/dev.c:3577 [inline]
 __dev_queue_xmit+0xf00/0x1580 net/core/dev.c:4136
 dev_queue_xmit+0x13/0x20 net/core/dev.c:4169
 __bpf_tx_skb net/core/filter.c:2112 [inline]
 __bpf_redirect_no_mac net/core/filter.c:2137 [inline]
 __bpf_redirect+0x56a/0x7c0 net/core/filter.c:2160
 ____bpf_clone_redirect net/core/filter.c:2191 [inline]
 bpf_clone_redirect+0x168/0x1c0 net/core/filter.c:2163
 bpf_prog_049923eb4e3e016c+0x5c/0xd00
 bpf_dispatcher_nop_func include/linux/bpf.h:586 [inline]
 bpf_test_run+0x26d/0x4a0 net/bpf/test_run.c:49
 bpf_prog_test_run_skb+0x6bd/0xe00 net/bpf/test_run.c:496
 bpf_prog_test_run kernel/bpf/syscall.c:2996 [inline]
 __do_sys_bpf+0x3612/0x9700 kernel/bpf/syscall.c:4196
 __se_sys_bpf kernel/bpf/syscall.c:4136 [inline]
 __x64_sys_bpf+0x3d/0x50 kernel/bpf/syscall.c:4136
 do_syscall_64+0x39/0x80 arch/x86/entry/common.c:46
 entry_SYSCALL_64_after_hwframe+0x44/0xa9

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 10896 Comm: syz-executor.5 Not tainted 5.9.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2020/10/13 12:16 upstream 865c50e1d279 bd69ee0d .config console log report info ci2-upstream-kcsan-gce
* Struck through repros no longer work on HEAD.