syzbot

 sign-in | mailing list | source | docs
🐞 Open [993] Subsystems 🐞 Fixed [5244] 🐞 Invalid [12529] Missing Backports [83] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

KCSAN: data-race in can_receive / can_stat_update (6)

Status: auto-obsoleted due to no activity on 2023/03/13 11:08
Subsystems: can
[Documentation on labels]
First crash: 454d, last: 454d
Similar bugs (7)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in can_receive / can_stat_update (4) can 2 649d 662d 0/26 auto-closed as invalid on 2022/08/22 20:20
upstream KCSAN: data-race in can_receive / can_stat_update (2) can 1 1125d 1125d 0/26 auto-closed as invalid on 2021/05/04 12:50
upstream KCSAN: data-race in can_receive / can_stat_update (3) can 5 703d 777d 0/26 auto-closed as invalid on 2022/06/29 13:32
upstream KCSAN: data-race in can_receive / can_stat_update (7) can 2 383d 402d 0/26 auto-obsoleted due to no activity on 2023/05/15 22:30
upstream KCSAN: data-race in can_receive / can_stat_update can 3 1550d 1573d 0/26 auto-closed as invalid on 2020/04/09 06:18
upstream KCSAN: data-race in can_receive / can_stat_update (8) can 2 332d 346d 0/26 auto-obsoleted due to no activity on 2023/07/05 18:24
upstream KCSAN: data-race in can_receive / can_stat_update (5) can 1 604d 604d 0/26 auto-closed as invalid on 2022/10/06 14:19

Sample crash report:
==================================================================
BUG: KCSAN: data-race in can_receive / can_stat_update

read-write to 0xffff8881243f0be8 of 8 bytes by interrupt on cpu 1:
 can_receive+0x62/0x1f0 net/can/af_can.c:650
 canfd_rcv+0xe3/0x180 net/can/af_can.c:702
 __netif_receive_skb_one_core net/core/dev.c:5482 [inline]
 __netif_receive_skb+0x8b/0x1b0 net/core/dev.c:5596
 process_backlog+0x23f/0x3b0 net/core/dev.c:5924
 __napi_poll+0x65/0x390 net/core/dev.c:6485
 napi_poll net/core/dev.c:6552 [inline]
 net_rx_action+0x37e/0x730 net/core/dev.c:6663
 __do_softirq+0xf2/0x2c7 kernel/softirq.c:571
 run_ksoftirqd+0x1f/0x30 kernel/softirq.c:934
 smpboot_thread_fn+0x308/0x4a0 kernel/smpboot.c:164
 kthread+0x1a9/0x1e0 kernel/kthread.c:376
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308

read to 0xffff8881243f0be8 of 8 bytes by interrupt on cpu 0:
 can_stat_update+0x481/0x6f0 net/can/proc.c:152
 call_timer_fn+0x2e/0x240 kernel/time/timer.c:1700
 expire_timers+0x11f/0x260 kernel/time/timer.c:1751
 __run_timers+0x350/0x400 kernel/time/timer.c:2022
 run_timer_softirq+0x2e/0x60 kernel/time/timer.c:2035
 __do_softirq+0xf2/0x2c7 kernel/softirq.c:571
 __irq_exit_rcu kernel/softirq.c:650 [inline]
 irq_exit_rcu+0x41/0x70 kernel/softirq.c:662
 sysvec_apic_timer_interrupt+0x8d/0xb0 arch/x86/kernel/apic/apic.c:1107
 asm_sysvec_apic_timer_interrupt+0x16/0x20 arch/x86/include/asm/idtentry.h:649
 console_emit_next_record+0x609/0x680 kernel/printk/printk.c:2797
 console_flush_all+0x172/0x360
 console_unlock+0xf1/0x220 kernel/printk/printk.c:2966
 vprintk_emit+0x103/0x430 kernel/printk/printk.c:2359
 vprintk_default+0x22/0x30 kernel/printk/printk.c:2370
 vprintk+0x7f/0x90 kernel/printk/printk_safe.c:50
 _printk+0x76/0xa0 kernel/printk/printk.c:2380
 set_capacity_and_notify+0x176/0x1d0 block/genhd.c:90
 loop_set_size+0x2e/0x70 drivers/block/loop.c:237
 loop_configure+0xb1b/0xc30 drivers/block/loop.c:1100
 lo_ioctl+0x641/0x1290
 blkdev_ioctl+0x215/0x440 block/ioctl.c:616
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:870 [inline]
 __se_sys_ioctl+0xcb/0x140 fs/ioctl.c:856
 __x64_sys_ioctl+0x3f/0x50 fs/ioctl.c:856
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x2b/0x70 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

value changed: 0x0000000000000e19 -> 0x0000000000000e1a

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 6386 Comm: syz-executor.2 Not tainted 6.2.0-rc6-syzkaller-dirty #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
==================================================================
==================================================================
BUG: KCSAN: data-race in can_send / can_send

read-write to 0xffff888104d81610 of 8 bytes by interrupt on cpu 1:
 can_send+0x540/0x5b0 net/can/af_can.c:289
 bcm_can_tx+0x2f0/0x3f0 net/can/bcm.c:302
 bcm_tx_timeout_handler+0xce/0x250
 __run_hrtimer+0x132/0x420 kernel/time/hrtimer.c:1685
 __hrtimer_run_queues kernel/time/hrtimer.c:1749 [inline]
 hrtimer_run_softirq+0x1e9/0x480 kernel/time/hrtimer.c:1766
 __do_softirq+0xf2/0x2c7 kernel/softirq.c:571
 run_ksoftirqd+0x1f/0x30 kernel/softirq.c:934
 smpboot_thread_fn+0x308/0x4a0 kernel/smpboot.c:164
 kthread+0x1a9/0x1e0 kernel/kthread.c:376
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308

read-write to 0xffff888104d81610 of 8 bytes by interrupt on cpu 0:
 can_send+0x540/0x5b0 net/can/af_can.c:289
 bcm_can_tx+0x2f0/0x3f0 net/can/bcm.c:302
 bcm_tx_timeout_handler+0xce/0x250
 __run_hrtimer+0x132/0x420 kernel/time/hrtimer.c:1685
 __hrtimer_run_queues kernel/time/hrtimer.c:1749 [inline]
 hrtimer_run_softirq+0x1e9/0x480 kernel/time/hrtimer.c:1766
 __do_softirq+0xf2/0x2c7 kernel/softirq.c:571
 run_ksoftirqd+0x1f/0x30 kernel/softirq.c:934
 smpboot_thread_fn+0x308/0x4a0 kernel/smpboot.c:164
 kthread+0x1a9/0x1e0 kernel/kthread.c:376
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308

value changed: 0x000000000000a15d -> 0x000000000000a15e

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 12 Comm: ksoftirqd/0 Not tainted 6.2.0-rc6-syzkaller-dirty #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
==================================================================
==================================================================
BUG: KCSAN: data-race in can_receive / can_receive

read-write to 0xffff88812487cd08 of 8 bytes by interrupt on cpu 1:
 can_receive+0x4e/0x1f0 net/can/af_can.c:649
 canfd_rcv+0xe3/0x180 net/can/af_can.c:702
 __netif_receive_skb_one_core net/core/dev.c:5482 [inline]
 __netif_receive_skb+0x8b/0x1b0 net/core/dev.c:5596
 process_backlog+0x23f/0x3b0 net/core/dev.c:5924
 __napi_poll+0x65/0x390 net/core/dev.c:6485
 napi_poll net/core/dev.c:6552 [inline]
 net_rx_action+0x37e/0x730 net/core/dev.c:6663
 __do_softirq+0xf2/0x2c7 kernel/softirq.c:571
 run_ksoftirqd+0x1f/0x30 kernel/softirq.c:934
 smpboot_thread_fn+0x308/0x4a0 kernel/smpboot.c:164
 kthread+0x1a9/0x1e0 kernel/kthread.c:376
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308

read-write to 0xffff88812487cd08 of 8 bytes by interrupt on cpu 0:
 can_receive+0x4e/0x1f0 net/can/af_can.c:649
 canfd_rcv+0xe3/0x180 net/can/af_can.c:702
 __netif_receive_skb_one_core net/core/dev.c:5482 [inline]
 __netif_receive_skb+0x8b/0x1b0 net/core/dev.c:5596
 process_backlog+0x23f/0x3b0 net/core/dev.c:5924
 __napi_poll+0x65/0x390 net/core/dev.c:6485
 napi_poll net/core/dev.c:6552 [inline]
 net_rx_action+0x37e/0x730 net/core/dev.c:6663
 __do_softirq+0xf2/0x2c7 kernel/softirq.c:571
 run_ksoftirqd+0x1f/0x30 kernel/softirq.c:934
 smpboot_thread_fn+0x308/0x4a0 kernel/smpboot.c:164
 kthread+0x1a9/0x1e0 kernel/kthread.c:376
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308

value changed: 0x00000000000263ec -> 0x00000000000263ed

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 12 Comm: ksoftirqd/0 Not tainted 6.2.0-rc6-syzkaller-dirty #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
==================================================================

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/01/30 10:47 upstream 6d796c50f84c b68fb8d6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in can_receive / can_stat_update
* Struck through repros no longer work on HEAD.