syzbot


KCSAN: data-race in xfrm_sk_policy_insert / xfrm_sk_policy_insert (2)

Status: auto-closed as invalid on 2022/04/07 07:53
Reported-by: syzbot+@syzkaller.appspotmail.com
First crash: 279d, last: 279d
similar bugs (1):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in xfrm_sk_policy_insert / xfrm_sk_policy_insert 1 452d 452d 0/24 auto-closed as invalid on 2021/10/16 00:54

Sample crash report:
==================================================================
BUG: KCSAN: data-race in xfrm_sk_policy_insert / xfrm_sk_policy_insert

write to 0xffffffff86e63ad8 of 4 bytes by task 16032 on cpu 0:
 xfrm_gen_index net/xfrm/xfrm_policy.c:1384 [inline]
 xfrm_sk_policy_insert+0x12c/0x690 net/xfrm/xfrm_policy.c:2271
 xfrm_user_policy+0x444/0x570 net/xfrm/xfrm_state.c:2464
 do_ipv6_setsockopt net/ipv6/ipv6_sockglue.c:949 [inline]
 ipv6_setsockopt+0xdf1/0x3910 net/ipv6/ipv6_sockglue.c:1019
 tcp_setsockopt+0x8c/0xa0 net/ipv4/tcp.c:3694
 sock_common_setsockopt+0x5d/0x70 net/core/sock.c:3489
 __sys_setsockopt+0x209/0x2a0 net/socket.c:2180
 __do_sys_setsockopt net/socket.c:2191 [inline]
 __se_sys_setsockopt net/socket.c:2188 [inline]
 __x64_sys_setsockopt+0x62/0x70 net/socket.c:2188
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae

read to 0xffffffff86e63ad8 of 4 bytes by task 16030 on cpu 1:
 xfrm_gen_index net/xfrm/xfrm_policy.c:1383 [inline]
 xfrm_sk_policy_insert+0x10f/0x690 net/xfrm/xfrm_policy.c:2271
 xfrm_user_policy+0x444/0x570 net/xfrm/xfrm_state.c:2464
 do_ipv6_setsockopt net/ipv6/ipv6_sockglue.c:949 [inline]
 ipv6_setsockopt+0xdf1/0x3910 net/ipv6/ipv6_sockglue.c:1019
 tcp_setsockopt+0x8c/0xa0 net/ipv4/tcp.c:3694
 sock_common_setsockopt+0x5d/0x70 net/core/sock.c:3489
 __sys_setsockopt+0x209/0x2a0 net/socket.c:2180
 __do_sys_setsockopt net/socket.c:2191 [inline]
 __se_sys_setsockopt net/socket.c:2188 [inline]
 __x64_sys_setsockopt+0x62/0x70 net/socket.c:2188
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae

value changed: 0x00009430 -> 0x00009478

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 16030 Comm: syz-executor.3 Not tainted 5.17.0-rc6-syzkaller-00060-g92ebf5f91b4d-dirty #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================

Crashes (1):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci2-upstream-kcsan-gce 2022/03/03 07:51 upstream 92ebf5f91b4d 45a13a73 .config log report info KCSAN: data-race in xfrm_sk_policy_insert / xfrm_sk_policy_insert
* Struck through repros no longer work on HEAD.