syzbot

 sign-in | mailing list | source | docs
🐞 Open [1653]
Subsystems
🐞 Fixed [6097]
🐞 Invalid [15237]
Missing Backports [163]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KCSAN: data-race in can_rcv_filter / can_rx_register

Status: auto-obsoleted due to no activity on 2023/05/20 18:12
Subsystems: can
[Documentation on labels]
First crash: 704d, last: 704d

Sample crash report:
BUG: KCSAN: data-race in can_rcv_filter / can_rx_register

read-write to 0xffff888108396020 of 4 bytes by task 4670 on cpu 0:
 can_rx_register+0x3fe/0x4c0 net/can/af_can.c:476
 bcm_rx_setup+0xb23/0xe20 net/can/bcm.c:1232
 bcm_sendmsg+0x1a5/0x470 net/can/bcm.c:1359
 sock_sendmsg_nosec net/socket.c:724 [inline]
 sock_sendmsg net/socket.c:747 [inline]
 ____sys_sendmsg+0x375/0x4c0 net/socket.c:2501
 ___sys_sendmsg net/socket.c:2555 [inline]
 __sys_sendmsg+0x1e3/0x270 net/socket.c:2584
 __do_sys_sendmsg net/socket.c:2593 [inline]
 __se_sys_sendmsg net/socket.c:2591 [inline]
 __x64_sys_sendmsg+0x46/0x50 net/socket.c:2591
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

read to 0xffff888108396020 of 4 bytes by interrupt on cpu 1:
 can_rcv_filter+0x40/0x490 net/can/af_can.c:583
 can_receive+0x116/0x1f0 net/can/af_can.c:659
 canfd_rcv+0xe7/0x180 net/can/af_can.c:702
 __netif_receive_skb_one_core net/core/dev.c:5480 [inline]
 __netif_receive_skb+0x90/0x1b0 net/core/dev.c:5594
 process_backlog+0x21f/0x380 net/core/dev.c:5922
 __napi_poll+0x60/0x3b0 net/core/dev.c:6483
 napi_poll net/core/dev.c:6550 [inline]
 net_rx_action+0x31a/0x6c0 net/core/dev.c:6660
 __do_softirq+0xc1/0x265 kernel/softirq.c:571
 invoke_softirq kernel/softirq.c:445 [inline]
 __irq_exit_rcu+0x57/0xa0 kernel/softirq.c:650
 sysvec_apic_timer_interrupt+0x6d/0x80 arch/x86/kernel/apic/apic.c:1107
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:645
 complete_walk+0x1/0x1e0 fs/namei.c:873
 do_open fs/namei.c:3526 [inline]
 path_openat+0x13bd/0x1d00 fs/namei.c:3715
 do_filp_open+0xf6/0x200 fs/namei.c:3742
 do_sys_openat2+0xb5/0x2a0 fs/open.c:1348
 do_sys_open fs/open.c:1364 [inline]
 __do_sys_openat fs/open.c:1380 [inline]
 __se_sys_openat fs/open.c:1375 [inline]
 __x64_sys_openat+0xf3/0x120 fs/open.c:1375
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

value changed: 0x00000000 -> 0x00000001

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 3127 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00173-g7a934f4bd7d6 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023
==================================================================

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/04/15 18:07 upstream 7a934f4bd7d6 ec410564 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in can_rcv_filter / can_rx_register
* Struck through repros no longer work on HEAD.