syzbot

 sign-in | mailing list | source | docs
🐞 Open [1026] Subsystems 🐞 Fixed [5278] 🐞 Invalid [12603] Missing Backports [86] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

KCSAN: data-race in __blk_mq_requeue_request / bt_tags_for_each

Status: auto-obsoleted due to no activity on 2023/05/29 14:50
Subsystems: block
[Documentation on labels]
First crash: 459d, last: 381d
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in __blk_mq_requeue_request / bt_tags_for_each (4) block 3 63d 97d 0/26 auto-obsoleted due to no activity on 2024/04/11 08:13
upstream KCSAN: data-race in __blk_mq_requeue_request / bt_tags_for_each (3) block 2 160d 150d 0/26 auto-obsoleted due to no activity on 2024/01/05 10:53
upstream KCSAN: data-race in __blk_mq_requeue_request / bt_tags_for_each (2) block 19 208d 327d 0/26 auto-obsoleted due to no activity on 2023/11/18 09:13

Sample crash report:
==================================================================
BUG: KCSAN: data-race in __blk_mq_requeue_request / bt_tags_for_each

write to 0xffff8881031ed360 of 4 bytes by task 41 on cpu 1:
 __blk_mq_put_driver_tag block/blk-mq.h:256 [inline]
 blk_mq_put_driver_tag block/blk-mq.h:269 [inline]
 __blk_mq_requeue_request+0x9f/0x2b0 block/blk-mq.c:1424
 blk_mq_handle_dev_resource block/blk-mq.c:1925 [inline]
 blk_mq_dispatch_rq_list+0x9a2/0x11f0 block/blk-mq.c:2066
 __blk_mq_sched_dispatch_requests+0x1ab/0x260 block/blk-mq-sched.c:305
 blk_mq_sched_dispatch_requests+0x93/0x100 block/blk-mq-sched.c:338
 __blk_mq_run_hw_queue+0x8e/0x110 block/blk-mq.c:2175
 __blk_mq_delay_run_hw_queue+0xb3/0x3a0 block/blk-mq.c:2251
 blk_mq_run_hw_queue+0x19f/0x330 block/blk-mq.c:2299
 blk_mq_run_hw_queues+0x15b/0x1e0 block/blk-mq.c:2347
 scsi_run_queue+0x55a/0x580 drivers/scsi/scsi_lib.c:456
 scsi_requeue_run_queue+0x25/0x30 drivers/scsi/scsi_lib.c:466
 process_one_work+0x3e6/0x750 kernel/workqueue.c:2390
 worker_thread+0x5f2/0xa10 kernel/workqueue.c:2537
 kthread+0x1a6/0x1e0 kernel/kthread.c:376
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308

read to 0xffff8881031ed360 of 4 bytes by task 2711 on cpu 0:
 blk_mq_find_and_get_req block/blk-mq-tag.c:253 [inline]
 bt_tags_iter block/blk-mq-tag.c:349 [inline]
 __sbitmap_for_each_set include/linux/sbitmap.h:281 [inline]
 sbitmap_for_each_set include/linux/sbitmap.h:302 [inline]
 bt_tags_for_each+0x2e2/0x500 block/blk-mq-tag.c:384
 __blk_mq_all_tag_iter block/blk-mq-tag.c:395 [inline]
 blk_mq_tagset_busy_iter+0x114/0x150 block/blk-mq-tag.c:439
 scsi_host_busy+0x4f/0x80 drivers/scsi/hosts.c:603
 scsi_host_queue_ready drivers/scsi/scsi_lib.c:1344 [inline]
 scsi_queue_rq+0x30a/0x1990 drivers/scsi/scsi_lib.c:1734
 blk_mq_dispatch_rq_list+0x7b1/0x11f0 block/blk-mq.c:2057
 __blk_mq_do_dispatch_sched block/blk-mq-sched.c:172 [inline]
 blk_mq_do_dispatch_sched+0x4de/0x820 block/blk-mq-sched.c:186
 __blk_mq_sched_dispatch_requests+0x1c1/0x260
 blk_mq_sched_dispatch_requests+0x93/0x100 block/blk-mq-sched.c:338
 __blk_mq_run_hw_queue+0x8e/0x110 block/blk-mq.c:2175
 __blk_mq_delay_run_hw_queue+0xb3/0x3a0 block/blk-mq.c:2251
 blk_mq_run_hw_queue+0x19f/0x330 block/blk-mq.c:2299
 blk_mq_sched_insert_requests+0x1da/0x2c0 block/blk-mq-sched.c:492
 blk_mq_dispatch_plug_list block/blk-mq.c:2746 [inline]
 blk_mq_flush_plug_list+0x519/0x660 block/blk-mq.c:2788
 __blk_flush_plug+0x223/0x280 block/blk-core.c:1153
 blk_finish_plug+0x47/0x60 block/blk-core.c:1177
 jbd2_journal_commit_transaction+0x1c28/0x3410 fs/jbd2/commit.c:797
 kjournald2+0x242/0x420 fs/jbd2/journal.c:209
 kthread+0x1a6/0x1e0 kernel/kthread.c:376
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308

value changed: 0x0000117f -> 0xffffffff

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 2711 Comm: jbd2/sda1-8 Not tainted 6.3.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
==================================================================

Crashes (9):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/04/24 14:43 upstream 457391b03803 fdc18293 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __blk_mq_requeue_request / bt_tags_for_each
2023/04/19 21:58 upstream 789b4a41c247 a219f34e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __blk_mq_requeue_request / bt_tags_for_each
2023/04/09 02:03 upstream a79d5c76f705 71147e29 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __blk_mq_requeue_request / bt_tags_for_each
2023/04/06 04:48 upstream 99ddf2254feb 8b834965 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __blk_mq_requeue_request / bt_tags_for_each
2023/04/01 07:57 upstream 5a57b48fdfcb f325deb0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __blk_mq_requeue_request / bt_tags_for_each
2023/03/05 12:11 upstream b01fe98d34f3 f8902b57 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __blk_mq_requeue_request / bt_tags_for_each
2023/02/16 14:45 upstream 033c40a89f55 38b317a7 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __blk_mq_requeue_request / bt_tags_for_each
2023/02/08 23:44 upstream 0983f6bf2bfc fc9c934e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __blk_mq_requeue_request / bt_tags_for_each
2023/02/05 08:59 upstream db27c22251e7 be607b78 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in __blk_mq_requeue_request / bt_tags_for_each
* Struck through repros no longer work on HEAD.