syzbot

 sign-in | mailing list | source | docs
🐞 Open [980] Subsystems 🐞 Fixed [5236] 🐞 Invalid [12500] Missing Backports [83] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

KCSAN: data-race in __io_cqring_overflow_flush / exit_signals

Status: auto-closed as invalid on 2021/03/24 08:04
Subsystems: kernel
[Documentation on labels]
First crash: 1178d, last: 1162d

Sample crash report:
==================================================================
BUG: KCSAN: data-race in __io_cqring_overflow_flush / exit_signals

write to 0xffff8880224af02c of 4 bytes by task 26043 on cpu 1:
 exit_signals+0x10d/0x540 kernel/signal.c:2865
 do_exit+0x1b4/0x1690 kernel/exit.c:781
 do_group_exit+0xce/0x180 kernel/exit.c:922
 get_signal+0xdce/0x14e0 kernel/signal.c:2773
 arch_do_signal_or_restart+0x2a/0x270 arch/x86/kernel/signal.c:811
 handle_signal_work kernel/entry/common.c:147 [inline]
 exit_to_user_mode_loop kernel/entry/common.c:171 [inline]
 exit_to_user_mode_prepare+0x11a/0x1b0 kernel/entry/common.c:201
 __syscall_exit_to_user_mode_work kernel/entry/common.c:283 [inline]
 syscall_exit_to_user_mode+0x20/0x40 kernel/entry/common.c:294
 do_syscall_64+0x45/0x80 arch/x86/entry/common.c:56
 entry_SYSCALL_64_after_hwframe+0x44/0xa9

read to 0xffff8880224af02c of 4 bytes by task 26060 on cpu 0:
 io_match_task fs/io_uring.c:1077 [inline]
 __io_cqring_overflow_flush+0x184/0x770 fs/io_uring.c:1787
 io_cqring_overflow_flush fs/io_uring.c:1837 [inline]
 io_uring_cancel_task_requests+0x70a/0xb30 fs/io_uring.c:8982
 __io_uring_files_cancel+0x9b/0x200 fs/io_uring.c:9066
 io_uring_files_cancel include/linux/io_uring.h:51 [inline]
 do_exit+0x19a/0x1690 kernel/exit.c:780
 do_group_exit+0xce/0x180 kernel/exit.c:922
 get_signal+0xdce/0x14e0 kernel/signal.c:2773
 arch_do_signal_or_restart+0x2a/0x270 arch/x86/kernel/signal.c:811
 handle_signal_work kernel/entry/common.c:147 [inline]
 exit_to_user_mode_loop kernel/entry/common.c:171 [inline]
 exit_to_user_mode_prepare+0x11a/0x1b0 kernel/entry/common.c:201
 __syscall_exit_to_user_mode_work kernel/entry/common.c:283 [inline]
 syscall_exit_to_user_mode+0x20/0x40 kernel/entry/common.c:294
 do_syscall_64+0x45/0x80 arch/x86/entry/common.c:56
 entry_SYSCALL_64_after_hwframe+0x44/0xa9

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 26060 Comm: syz-executor.5 Not tainted 5.11.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================

Crashes (8):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2021/02/17 08:03 upstream f40ddce88593 052f8d9f .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_overflow_flush / exit_signals
2021/02/14 00:52 upstream ac30d8ce28d6 98682e5e .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_overflow_flush / exit_signals
2021/02/11 00:58 upstream 291009f656e8 a52ee10a .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_overflow_flush / exit_signals
2021/02/07 10:53 upstream 825b5991a46e 2ce644fc .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_overflow_flush / exit_signals
2021/02/07 03:35 upstream 964d069f93c4 0655e081 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_overflow_flush / exit_signals
2021/02/05 13:02 upstream dd86e7fa07a3 23a562df .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_overflow_flush / exit_signals
2021/02/03 22:45 upstream 3afe9076a7c1 624dad51 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_overflow_flush / exit_signals
2021/02/01 21:26 upstream 88bb507a74ea e6b95f32 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_cqring_overflow_flush / exit_signals
* Struck through repros no longer work on HEAD.