syzbot

 sign-in | mailing list | source | docs
🐞 Open [1641]
Subsystems
🐞 Fixed [6105]
🐞 Invalid [15290]
Missing Backports [171]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KCSAN: data-race in __io_req_complete_post / io_wake_function (2)

Status: auto-obsoleted due to no activity on 2022/11/22 02:14
Subsystems: io-uring
[Documentation on labels]
First crash: 919d, last: 890d
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in __io_req_complete_post / io_wake_function io-uring 1 954d 954d 0/28 auto-closed as invalid on 2022/09/18 16:28

Sample crash report:
==================================================================
BUG: KCSAN: data-race in __io_req_complete_post / io_wake_function

read-write to 0xffff888142867a10 of 4 bytes by task 13685 on cpu 0:
 io_get_cqe_overflow io_uring/io_uring.h:102 [inline]
 io_get_cqe io_uring/io_uring.h:114 [inline]
 __io_fill_cqe_req io_uring/io_uring.h:127 [inline]
 __io_req_complete_post+0x9e/0xb80 io_uring/io_uring.c:855
 io_req_complete_post io_uring/io_uring.c:864 [inline]
 io_issue_sqe+0x432/0x900 io_uring/io_uring.c:1753
 io_wq_submit_work+0x3d3/0x570 io_uring/io_uring.c:1818
 io_worker_handle_work+0x545/0xc00 io_uring/io-wq.c:587
 io_wqe_worker+0x210/0x8f0 io_uring/io-wq.c:632
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306

read to 0xffff888142867a10 of 4 bytes by task 13684 on cpu 1:
 io_should_wake io_uring/io_uring.c:2322 [inline]
 io_wake_function+0x39/0x150 io_uring/io_uring.c:2343
 __wake_up_common+0xbc/0x130 kernel/sched/wait.c:107
 __wake_up_common_lock kernel/sched/wait.c:137 [inline]
 __wake_up+0x80/0xc0 kernel/sched/wait.c:156
 __io_cqring_wake io_uring/io_uring.h:215 [inline]
 io_cqring_wake io_uring/io_uring.h:221 [inline]
 io_cqring_ev_posted io_uring/io_uring.c:582 [inline]
 __io_cq_unlock_post io_uring/io_uring.c:590 [inline]
 io_cq_unlock_post io_uring/io_uring.c:595 [inline]
 io_req_complete_post io_uring/io_uring.c:865 [inline]
 io_issue_sqe+0x4d6/0x900 io_uring/io_uring.c:1753
 io_wq_submit_work+0x3d3/0x570 io_uring/io_uring.c:1818
 io_worker_handle_work+0x545/0xc00 io_uring/io-wq.c:587
 io_wqe_worker+0x210/0x8f0 io_uring/io-wq.c:632
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306

value changed: 0x000014c9 -> 0x000014ca

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 13684 Comm: iou-wrk-13653 Not tainted 6.1.0-rc1-syzkaller-dirty #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
==================================================================

Crashes (4):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/10/18 02:11 upstream 9abf2313adc1 94744d21 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_req_complete_post / io_wake_function
2022/10/08 19:22 upstream 62e6e5940c0c aea5da89 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_req_complete_post / io_wake_function
2022/09/28 12:50 upstream 46452d3786a8 75c78242 .config console log report info [disk image] [vmlinux] ci2-upstream-kcsan-gce KCSAN: data-race in __io_req_complete_post / io_wake_function
2022/09/18 21:01 upstream 38eddeedbbea dd9a85ff .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in __io_req_complete_post / io_wake_function
* Struck through repros no longer work on HEAD.