KCSAN: data-race in __mod_timer / expire

KCSAN: data-race in __mod_timer / expire_timers
Status: moderation: reported on 2020/07/05 18:41
Reported-by: syzbot+aa7c2385d46c5eba0b89@syzkaller.appspotmail.com
First crash: 124d, last: 3d08h

Sample crash report:

==================================================================
BUG: KCSAN: data-race in __mod_timer / expire_timers

write to 0xffff88812c11cb08 of 8 bytes by interrupt on cpu 1:
 expire_timers+0x11e/0x260 kernel/time/timer.c:1461
 __run_timers+0x338/0x3d0 kernel/time/timer.c:1757
 run_timer_softirq+0x2e/0x60 kernel/time/timer.c:1770
 __do_softirq+0x198/0x331 kernel/softirq.c:298
 asm_call_irq_on_stack+0xf/0x20
 __run_on_irqstack arch/x86/include/asm/irq_stack.h:26 [inline]
 run_on_irqstack_cond arch/x86/include/asm/irq_stack.h:77 [inline]
 do_softirq_own_stack+0x5b/0x70 arch/x86/kernel/irq_64.c:77
 invoke_softirq kernel/softirq.c:393 [inline]
 __irq_exit_rcu+0x115/0x120 kernel/softirq.c:423
 sysvec_apic_timer_interrupt+0xba/0xd0 arch/x86/kernel/apic/apic.c:1091
 asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:631
 arch_local_irq_restore arch/x86/include/asm/paravirt.h:653 [inline]
 kcsan_setup_watchpoint+0x4ee/0x550 kernel/kcsan/core.c:591
 copy_pte_range+0x512/0x1c00 mm/memory.c:968
 copy_pmd_range mm/memory.c:1058 [inline]
 copy_pud_range mm/memory.c:1095 [inline]
 copy_p4d_range mm/memory.c:1119 [inline]
 copy_page_range+0x97a/0xc20 mm/memory.c:1183
 dup_mmap+0x74d/0xa10 kernel/fork.c:593
 dup_mm+0x7c/0x210 kernel/fork.c:1357
 copy_mm kernel/fork.c:1413 [inline]
 copy_process+0x1483/0x2eb0 kernel/fork.c:2095
 kernel_clone+0x14b/0x680 kernel/fork.c:2456
 __do_sys_clone kernel/fork.c:2573 [inline]
 __se_sys_clone kernel/fork.c:2557 [inline]
 __x64_sys_clone+0xc8/0xf0 kernel/fork.c:2557
 do_syscall_64+0x39/0x80 arch/x86/entry/common.c:46
 entry_SYSCALL_64_after_hwframe+0x44/0xa9

read to 0xffff88812c11cb08 of 8 bytes by task 9761 on cpu 0:
 __mod_timer+0x468/0xc00 kernel/time/timer.c:1040
 mod_timer+0x1b/0x20 kernel/time/timer.c:1111
 mld_dad_start_timer net/ipv6/mcast.c:1065 [inline]
 ipv6_mc_dad_complete+0x1c9/0x260 net/ipv6/mcast.c:2106
 addrconf_dad_completed+0x3fe/0x860 net/ipv6/addrconf.c:4171
 addrconf_dad_work+0x8dd/0x1150 net/ipv6/addrconf.c:3958
 process_one_work+0x3e1/0x950 kernel/workqueue.c:2272
 worker_thread+0x635/0xb90 kernel/workqueue.c:2418
 kthread+0x1ff/0x220 kernel/kthread.c:292
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 9761 Comm: kworker/0:4 Not tainted 5.9.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: ipv6_addrconf addrconf_dad_work
==================================================================

Crashes (211):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	VM info	Maintainers
ci2-upstream-kcsan-gce	2020/10/17 12:32	upstream	071a0578	fea47c01	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/16 23:43	upstream	54a4c789	6e262c73	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/16 09:30	upstream	9ff9b0d3	6e262c73	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/14 10:53	upstream	b5fc7a89	fc7735a2	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/13 21:14	upstream	6ad4bf6e	fc7735a2	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/13 09:20	upstream	865c50e1	bd69ee0d	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/12 16:01	upstream	bbf5c979	d32b0bbf	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/12 09:36	upstream	bbf5c979	4a77ae0b	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/11 19:41	upstream	3dd0130f	4a77ae0b	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/11 00:31	upstream	da690031	4a77ae0b	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/10 21:58	upstream	6f2f486d	4a77ae0b	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/09 21:43	upstream	8a5f78d9	93817d89	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/08 19:51	upstream	3d006ee4	92390980	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/08 11:06	upstream	c85fb28b	92390980	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/05 00:15	upstream	549738f1	5ef9c291	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/04 09:36	upstream	22fbc037	5ef9c291	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/03 04:16	upstream	d3d45f82	2653fa43	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/02 13:50	upstream	472e5b05	062c9832	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/01 20:32	upstream	fcadab74	9602ddf4	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/10/01 08:43	upstream	60e72093	4103fce0	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/30 07:14	upstream	02de58b2	8516f6d3	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/30 06:06	upstream	02de58b2	5abc3f1a	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/28 08:08	upstream	a1b8638b	6bfdbe89	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/26 23:17	upstream	eeddbe68	5dd8aee8	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/26 18:47	upstream	eeddbe68	2d5ea0cb	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/22 17:08	upstream	eff48dde	3e8f6c27	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/21 21:28	upstream	98477740	9e1fa68e	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/20 18:47	upstream	bdcf11de	9564d2e9	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/20 12:58	upstream	325d0eab	53ce8104	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/20 10:52	upstream	325d0eab	53ce8104	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/20 09:21	upstream	325d0eab	53ce8104	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/20 03:08	upstream	325d0eab	53ce8104	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/19 23:29	upstream	eb5f95f1	53ce8104	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/19 21:57	upstream	eb5f95f1	53ce8104	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/19 19:51	upstream	eb5f95f1	53ce8104	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/19 08:47	upstream	92ab97ad	53ce8104	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/19 01:16	upstream	92ab97ad	53ce8104	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/18 23:13	upstream	92ab97ad	53ce8104	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/18 21:58	upstream	92ab97ad	53ce8104	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/18 20:51	upstream	92ab97ad	53ce8104	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/09/18 18:54	upstream	10b82d51	38962c8b	.config	log	report	info	akpm@linux-foundation.org, bp@alien8.de, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/07/05 00:56	upstream	35e884f8	24d7f505	.config	log	report		akpm@linux-foundation.org, bp@alien8.de, hkallweit1@gmail.com, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org
ci2-upstream-kcsan-gce	2020/06/18 14:06	upstream	1b504402	3ea11d3f	.config	log	report		akpm@linux-foundation.org, bp@alien8.de, hkallweit1@gmail.com, hpa@zytor.com, linux-kernel@vger.kernel.org, luto@kernel.org, mingo@redhat.com, tglx@linutronix.de, x86@kernel.org