syzbot


KCSAN: data-race in __skb_wait_for_more_packets / inet_shutdown

Status: auto-closed as invalid on 2020/06/07 18:23
Reported-by: syzbot+@syzkaller.appspotmail.com
First crash: 1183d, last: 1045d
similar bugs (5):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in __skb_wait_for_more_packets / inet_shutdown (6) 1 235d 235d 0/24 auto-closed as invalid on 2022/07/22 19:29
upstream KCSAN: data-race in __skb_wait_for_more_packets / inet_shutdown (5) 2 598d 605d 0/24 auto-closed as invalid on 2021/07/25 13:18
upstream KCSAN: data-race in __skb_wait_for_more_packets / inet_shutdown (4) 1 643d 643d 0/24 auto-closed as invalid on 2021/06/10 09:09
upstream KCSAN: data-race in __skb_wait_for_more_packets / inet_shutdown (3) 4 734d 793d 0/24 auto-closed as invalid on 2021/03/10 20:35
upstream KCSAN: data-race in __skb_wait_for_more_packets / inet_shutdown (2) 3 854d 889d 0/24 auto-closed as invalid on 2020/11/11 11:35

Sample crash report:
==================================================================
BUG: KCSAN: data-race in __skb_wait_for_more_packets / inet_shutdown

write to 0xffff888094a07cea of 1 bytes by task 11871 on cpu 1:
 inet_shutdown+0xf3/0x240 net/ipv4/af_inet.c:877
 __sys_shutdown+0x91/0x110 net/socket.c:2206
 __do_sys_shutdown net/socket.c:2214 [inline]
 __se_sys_shutdown net/socket.c:2212 [inline]
 __x64_sys_shutdown+0x35/0x50 net/socket.c:2212
 do_syscall_64+0xc7/0x390 arch/x86/entry/common.c:294
 entry_SYSCALL_64_after_hwframe+0x44/0xa9

read to 0xffff888094a07cea of 1 bytes by task 11866 on cpu 0:
 __skb_wait_for_more_packets+0x193/0x340 net/core/datagram.c:105
 __skb_recv_udp+0x3d7/0x580 net/ipv4/udp.c:1712
 udpv6_recvmsg+0x2a1/0xf00 net/ipv6/udp.c:288
 inet6_recvmsg+0xc1/0x250 net/ipv6/af_inet6.c:592
 sock_recvmsg_nosec net/socket.c:886 [inline]
 sock_recvmsg net/socket.c:904 [inline]
 sock_recvmsg+0x8e/0xb0 net/socket.c:900
 ____sys_recvmsg+0x144/0x350 net/socket.c:2566
 ___sys_recvmsg+0xb2/0x100 net/socket.c:2608
 do_recvmmsg+0x17a/0x540 net/socket.c:2706
 __sys_recvmmsg+0x1f1/0x200 net/socket.c:2785
 __do_sys_recvmmsg net/socket.c:2808 [inline]
 __se_sys_recvmmsg net/socket.c:2801 [inline]
 __x64_sys_recvmmsg+0x82/0xb0 net/socket.c:2801
 do_syscall_64+0xc7/0x390 arch/x86/entry/common.c:294
 entry_SYSCALL_64_after_hwframe+0x44/0xa9

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 11866 Comm: syz-executor.5 Not tainted 5.6.0-rc1-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================

Crashes (8):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets Title
ci2-upstream-kcsan-gce 2020/03/29 18:22 https://github.com/google/ktsan.git kcsan 40959e34d670 05736b29 .config console log report
ci2-upstream-kcsan-gce 2020/03/07 02:36 https://github.com/google/ktsan.git kcsan 941e0d917bbf fd2a5f28 .config console log report
ci2-upstream-kcsan-gce 2019/12/29 06:40 https://github.com/google/ktsan.git kcsan 245a43005292 af6b8ef8 .config console log report
ci2-upstream-kcsan-gce 2019/12/08 04:20 https://github.com/google/ktsan.git kcsan ef798c30ba4e 1508f453 .config console log report
ci2-upstream-kcsan-gce 2019/12/02 04:52 https://github.com/google/ktsan.git kcsan ef798c30ba4e f879db37 .config console log report
ci2-upstream-kcsan-gce 2019/11/25 14:18 https://github.com/google/ktsan.git kcsan 5863cc791e4c 598ca6c8 .config console log report
ci2-upstream-kcsan-gce 2019/11/22 06:21 https://github.com/google/ktsan.git kcsan 5863cc791e4c 8098ea0f .config console log report
ci2-upstream-kcsan-gce 2019/11/13 10:27 https://github.com/google/ktsan.git kcsan 7f2955e0d056 048f2d49 .config console log report
* Struck through repros no longer work on HEAD.