vxcan0: j1939_xtp_rx_abort_one: 0xffff88812dfaa800: 0x00000: (2) System resources were needed for another task so this connection managed session was terminated. ================================================================== BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter read-write to 0xffff888104449568 of 8 bytes by interrupt on cpu 0: deliver net/can/af_can.c:573 [inline] can_rcv_filter+0x237/0x4c0 net/can/af_can.c:606 can_receive+0x182/0x1f0 net/can/af_can.c:663 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 run_ksoftirqd+0x17/0x30 kernel/softirq.c:924 smpboot_thread_fn+0x31c/0x4c0 kernel/smpboot.c:164 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 read-write to 0xffff888104449568 of 8 bytes by interrupt on cpu 1: deliver net/can/af_can.c:573 [inline] can_rcv_filter+0x237/0x4c0 net/can/af_can.c:606 can_receive+0x182/0x1f0 net/can/af_can.c:663 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 __raw_read_unlock_bh include/linux/rwlock_api_smp.h:257 [inline] _raw_read_unlock_bh+0x1b/0x20 kernel/locking/spinlock.c:284 inet6_fill_ifla6_attrs+0xcc6/0xdd0 net/ipv6/addrconf.c:5828 inet6_fill_link_af+0x41/0x70 net/ipv6/addrconf.c:5861 rtnl_fill_link_af+0x147/0x290 net/core/rtnetlink.c:1677 rtnl_fill_ifinfo+0xf67/0x1160 net/core/rtnetlink.c:1927 rtmsg_ifinfo_build_skb+0x129/0x1b0 net/core/rtnetlink.c:4057 rtmsg_ifinfo_event net/core/rtnetlink.c:4091 [inline] rtnetlink_event+0x180/0x200 net/core/rtnetlink.c:6646 notifier_call_chain kernel/notifier.c:93 [inline] raw_notifier_call_chain+0x6f/0x1d0 kernel/notifier.c:461 call_netdevice_notifiers_info+0xae/0x100 net/core/dev.c:1950 call_netdevice_notifiers_extack net/core/dev.c:1988 [inline] call_netdevice_notifiers net/core/dev.c:2002 [inline] dev_set_mac_address+0x1ff/0x260 net/core/dev.c:8949 dev_set_mac_address_user+0x31/0x50 net/core/dev.c:8963 do_setlink+0x510/0x2480 net/core/rtnetlink.c:2839 __rtnl_newlink net/core/rtnetlink.c:3680 [inline] rtnl_newlink+0x11a1/0x1690 net/core/rtnetlink.c:3727 rtnetlink_rcv_msg+0x82e/0x8e0 net/core/rtnetlink.c:6595 netlink_rcv_skb+0x12c/0x230 net/netlink/af_netlink.c:2559 rtnetlink_rcv+0x1c/0x30 net/core/rtnetlink.c:6613 netlink_unicast_kernel net/netlink/af_netlink.c:1335 [inline] netlink_unicast+0x58d/0x660 net/netlink/af_netlink.c:1361 netlink_sendmsg+0x5d3/0x6e0 net/netlink/af_netlink.c:1905 sock_sendmsg_nosec net/socket.c:730 [inline] __sock_sendmsg+0x140/0x180 net/socket.c:745 __sys_sendto+0x1e5/0x260 net/socket.c:2191 __do_sys_sendto net/socket.c:2203 [inline] __se_sys_sendto net/socket.c:2199 [inline] __x64_sys_sendto+0x78/0x90 net/socket.c:2199 do_syscall_64+0xd3/0x1d0 entry_SYSCALL_64_after_hwframe+0x72/0x7a value changed: 0x00000000000004d8 -> 0x00000000000004d9 Reported by Kernel Concurrency Sanitizer on: CPU: 1 PID: 26966 Comm: syz-executor.3 Tainted: G W 6.9.0-rc3-syzkaller-00011-g20cb38a7af88 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 ================================================================== ================================================================== BUG: KCSAN: data-race in can_receive / can_receive read-write to 0xffff88812d926278 of 8 bytes by interrupt on cpu 0: can_receive+0x1ca/0x1f0 net/can/af_can.c:672 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline] _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210 spin_unlock_bh include/linux/spinlock.h:396 [inline] nsim_dev_trap_report drivers/net/netdevsim/dev.c:820 [inline] nsim_dev_trap_report_work+0x4d5/0x5b0 drivers/net/netdevsim/dev.c:850 process_one_work kernel/workqueue.c:3254 [inline] process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335 worker_thread+0x526/0x730 kernel/workqueue.c:3416 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 read-write to 0xffff88812d926278 of 8 bytes by interrupt on cpu 1: can_receive+0x1ca/0x1f0 net/can/af_can.c:672 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline] _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210 spin_unlock_bh include/linux/spinlock.h:396 [inline] batadv_nc_purge_paths+0x21d/0x270 net/batman-adv/network-coding.c:471 batadv_nc_worker+0x3db/0xac0 net/batman-adv/network-coding.c:720 process_one_work kernel/workqueue.c:3254 [inline] process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335 worker_thread+0x526/0x730 kernel/workqueue.c:3416 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 value changed: 0x000000000000b8da -> 0x000000000000b8dc Reported by Kernel Concurrency Sanitizer on: CPU: 1 PID: 27 Comm: kworker/u8:1 Tainted: G W 6.9.0-rc3-syzkaller-00011-g20cb38a7af88 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 Workqueue: bat_events batadv_nc_worker ================================================================== ================================================================== BUG: KCSAN: data-race in can_receive / can_receive read-write to 0xffff88812d926218 of 8 bytes by interrupt on cpu 0: can_receive+0x1b6/0x1f0 net/can/af_can.c:671 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline] _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210 spin_unlock_bh include/linux/spinlock.h:396 [inline] nsim_dev_trap_report drivers/net/netdevsim/dev.c:820 [inline] nsim_dev_trap_report_work+0x4d5/0x5b0 drivers/net/netdevsim/dev.c:850 process_one_work kernel/workqueue.c:3254 [inline] process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335 worker_thread+0x526/0x730 kernel/workqueue.c:3416 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 read-write to 0xffff88812d926218 of 8 bytes by interrupt on cpu 1: can_receive+0x1b6/0x1f0 net/can/af_can.c:671 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline] _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210 spin_unlock_bh include/linux/spinlock.h:396 [inline] batadv_nc_purge_paths+0x21d/0x270 net/batman-adv/network-coding.c:471 batadv_nc_worker+0x3db/0xac0 net/batman-adv/network-coding.c:720 process_one_work kernel/workqueue.c:3254 [inline] process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335 worker_thread+0x526/0x730 kernel/workqueue.c:3416 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 value changed: 0x0000000000021dc7 -> 0x0000000000021dc8 Reported by Kernel Concurrency Sanitizer on: CPU: 1 PID: 27 Comm: kworker/u8:1 Tainted: G W 6.9.0-rc3-syzkaller-00011-g20cb38a7af88 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 Workqueue: bat_events batadv_nc_worker ================================================================== ================================================================== BUG: KCSAN: data-race in can_receive / can_receive read-write to 0xffff88812d926268 of 8 bytes by interrupt on cpu 0: can_receive+0x62/0x1f0 net/can/af_can.c:650 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline] _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210 spin_unlock_bh include/linux/spinlock.h:396 [inline] nsim_dev_trap_report drivers/net/netdevsim/dev.c:820 [inline] nsim_dev_trap_report_work+0x4d5/0x5b0 drivers/net/netdevsim/dev.c:850 process_one_work kernel/workqueue.c:3254 [inline] process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335 worker_thread+0x526/0x730 kernel/workqueue.c:3416 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 read-write to 0xffff88812d926268 of 8 bytes by interrupt on cpu 1: can_receive+0x62/0x1f0 net/can/af_can.c:650 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline] _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210 spin_unlock_bh include/linux/spinlock.h:396 [inline] lock_sock_nested+0x10f/0x140 net/core/sock.c:3542 lock_sock include/net/sock.h:1671 [inline] tcp_sendmsg+0x22/0x50 net/ipv4/tcp.c:1341 inet_sendmsg+0x77/0xd0 net/ipv4/af_inet.c:851 sock_sendmsg_nosec net/socket.c:730 [inline] __sock_sendmsg+0x102/0x180 net/socket.c:745 sock_write_iter+0x164/0x1b0 net/socket.c:1160 call_write_iter include/linux/fs.h:2110 [inline] new_sync_write fs/read_write.c:497 [inline] vfs_write+0x771/0x8e0 fs/read_write.c:590 ksys_write+0xeb/0x1b0 fs/read_write.c:643 __do_sys_write fs/read_write.c:655 [inline] __se_sys_write fs/read_write.c:652 [inline] __x64_sys_write+0x42/0x50 fs/read_write.c:652 do_syscall_64+0xd3/0x1d0 entry_SYSCALL_64_after_hwframe+0x72/0x7a value changed: 0x0000000000008039 -> 0x000000000000803a Reported by Kernel Concurrency Sanitizer on: CPU: 1 PID: 3071 Comm: syz-fuzzer Tainted: G W 6.9.0-rc3-syzkaller-00011-g20cb38a7af88 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 ================================================================== ================================================================== BUG: KCSAN: data-race in can_receive / can_receive read-write to 0xffff88812d926278 of 8 bytes by interrupt on cpu 0: can_receive+0x1ca/0x1f0 net/can/af_can.c:672 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline] _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210 spin_unlock_bh include/linux/spinlock.h:396 [inline] nsim_dev_trap_report drivers/net/netdevsim/dev.c:820 [inline] nsim_dev_trap_report_work+0x4d5/0x5b0 drivers/net/netdevsim/dev.c:850 process_one_work kernel/workqueue.c:3254 [inline] process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335 worker_thread+0x526/0x730 kernel/workqueue.c:3416 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 read-write to 0xffff88812d926278 of 8 bytes by interrupt on cpu 1: can_receive+0x1ca/0x1f0 net/can/af_can.c:672 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline] _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210 spin_unlock_bh include/linux/spinlock.h:396 [inline] sel_netif_sid_slow+0x252/0x300 security/selinux/netif.c:169 sel_netif_sid+0xb3/0x100 security/selinux/netif.c:204 selinux_ip_postroute+0x993/0xb20 security/selinux/hooks.c:5920 nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline] nf_hook_slow+0x86/0x1b0 net/netfilter/core.c:626 nf_hook include/linux/netfilter.h:269 [inline] NF_HOOK_COND include/linux/netfilter.h:302 [inline] ip6_output+0x1de/0x220 net/ipv6/ip6_output.c:243 dst_output include/net/dst.h:450 [inline] NF_HOOK include/linux/netfilter.h:314 [inline] mld_sendpack+0x41f/0x6d0 net/ipv6/mcast.c:1818 mld_send_cr net/ipv6/mcast.c:2119 [inline] mld_ifc_work+0x517/0x7e0 net/ipv6/mcast.c:2650 process_one_work kernel/workqueue.c:3254 [inline] process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335 worker_thread+0x526/0x730 kernel/workqueue.c:3416 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 value changed: 0x0000000000017961 -> 0x0000000000017962 Reported by Kernel Concurrency Sanitizer on: CPU: 1 PID: 19213 Comm: kworker/1:17 Tainted: G W 6.9.0-rc3-syzkaller-00011-g20cb38a7af88 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 Workqueue: mld mld_ifc_work ================================================================== ================================================================== BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter read-write to 0xffff8881044495b8 of 8 bytes by interrupt on cpu 0: deliver net/can/af_can.c:573 [inline] can_rcv_filter+0xd1/0x4c0 net/can/af_can.c:599 can_receive+0x182/0x1f0 net/can/af_can.c:663 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 run_ksoftirqd+0x17/0x30 kernel/softirq.c:924 smpboot_thread_fn+0x31c/0x4c0 kernel/smpboot.c:164 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 read-write to 0xffff8881044495b8 of 8 bytes by interrupt on cpu 1: deliver net/can/af_can.c:573 [inline] can_rcv_filter+0xd1/0x4c0 net/can/af_can.c:599 can_receive+0x182/0x1f0 net/can/af_can.c:663 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 __raw_write_unlock_bh include/linux/rwlock_api_smp.h:281 [inline] _raw_write_unlock_bh+0x1f/0x30 kernel/locking/spinlock.c:366 neigh_managed_work+0x145/0x160 net/core/neighbour.c:1618 process_one_work kernel/workqueue.c:3254 [inline] process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335 worker_thread+0x526/0x730 kernel/workqueue.c:3416 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 value changed: 0x000000000008baeb -> 0x000000000008baed Reported by Kernel Concurrency Sanitizer on: CPU: 1 PID: 19205 Comm: kworker/1:9 Tainted: G W 6.9.0-rc3-syzkaller-00011-g20cb38a7af88 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 Workqueue: events_power_efficient neigh_managed_work ================================================================== ================================================================== BUG: KCSAN: data-race in can_send / can_send read-write to 0xffff88812d926210 of 8 bytes by interrupt on cpu 0: can_send+0x55c/0x5d0 net/can/af_can.c:289 can_can_gw_rcv+0x77b/0x7e0 net/can/gw.c:561 deliver net/can/af_can.c:572 [inline] can_rcv_filter+0xbf/0x4c0 net/can/af_can.c:599 can_receive+0x182/0x1f0 net/can/af_can.c:663 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline] _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210 spin_unlock_bh include/linux/spinlock.h:396 [inline] nsim_dev_trap_report drivers/net/netdevsim/dev.c:820 [inline] nsim_dev_trap_report_work+0x4d5/0x5b0 drivers/net/netdevsim/dev.c:850 process_one_work kernel/workqueue.c:3254 [inline] process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335 worker_thread+0x526/0x730 kernel/workqueue.c:3416 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 read-write to 0xffff88812d926210 of 8 bytes by interrupt on cpu 1: can_send+0x55c/0x5d0 net/can/af_can.c:289 can_can_gw_rcv+0x77b/0x7e0 net/can/gw.c:561 deliver net/can/af_can.c:572 [inline] can_rcv_filter+0xbf/0x4c0 net/can/af_can.c:599 can_receive+0x182/0x1f0 net/can/af_can.c:663 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline] _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210 spin_unlock_bh include/linux/spinlock.h:396 [inline] nsim_dev_trap_report drivers/net/netdevsim/dev.c:820 [inline] nsim_dev_trap_report_work+0x4d5/0x5b0 drivers/net/netdevsim/dev.c:850 process_one_work kernel/workqueue.c:3254 [inline] process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335 worker_thread+0x526/0x730 kernel/workqueue.c:3416 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 value changed: 0x00000000000cb914 -> 0x00000000000cb915 Reported by Kernel Concurrency Sanitizer on: CPU: 1 PID: 19213 Comm: kworker/1:17 Tainted: G W 6.9.0-rc3-syzkaller-00011-g20cb38a7af88 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 Workqueue: events nsim_dev_trap_report_work ================================================================== ================================================================== BUG: KCSAN: data-race in can_send / can_send read-write to 0xffff88812d926270 of 8 bytes by interrupt on cpu 0: can_send+0x570/0x5d0 net/can/af_can.c:290 can_can_gw_rcv+0x77b/0x7e0 net/can/gw.c:561 deliver net/can/af_can.c:572 [inline] can_rcv_filter+0xbf/0x4c0 net/can/af_can.c:599 can_receive+0x182/0x1f0 net/can/af_can.c:663 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 run_ksoftirqd+0x17/0x30 kernel/softirq.c:924 smpboot_thread_fn+0x31c/0x4c0 kernel/smpboot.c:164 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 read-write to 0xffff88812d926270 of 8 bytes by interrupt on cpu 1: can_send+0x570/0x5d0 net/can/af_can.c:290 can_can_gw_rcv+0x77b/0x7e0 net/can/gw.c:561 deliver net/can/af_can.c:572 [inline] can_rcv_filter+0xbf/0x4c0 net/can/af_can.c:599 can_receive+0x182/0x1f0 net/can/af_can.c:663 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 run_ksoftirqd+0x17/0x30 kernel/softirq.c:924 smpboot_thread_fn+0x31c/0x4c0 kernel/smpboot.c:164 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 value changed: 0x0000000000009390 -> 0x0000000000009391 Reported by Kernel Concurrency Sanitizer on: CPU: 1 PID: 22 Comm: ksoftirqd/1 Tainted: G W 6.9.0-rc3-syzkaller-00011-g20cb38a7af88 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 ================================================================== ================================================================== BUG: KCSAN: data-race in can_receive / can_receive read-write to 0xffff88812d926268 of 8 bytes by interrupt on cpu 0: can_receive+0x62/0x1f0 net/can/af_can.c:650 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 __raw_read_unlock_bh include/linux/rwlock_api_smp.h:257 [inline] _raw_read_unlock_bh+0x1b/0x20 kernel/locking/spinlock.c:284 ipv6_get_lladdr+0x116/0x150 net/ipv6/addrconf.c:1934 mld_newpack+0x1eb/0x480 net/ipv6/mcast.c:1754 add_grhead net/ipv6/mcast.c:1849 [inline] add_grec+0xa07/0xbd0 net/ipv6/mcast.c:1987 mld_send_cr net/ipv6/mcast.c:2113 [inline] mld_ifc_work+0x4c9/0x7e0 net/ipv6/mcast.c:2650 process_one_work kernel/workqueue.c:3254 [inline] process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335 worker_thread+0x526/0x730 kernel/workqueue.c:3416 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 read-write to 0xffff88812d926268 of 8 bytes by interrupt on cpu 1: can_receive+0x62/0x1f0 net/can/af_can.c:650 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 local_bh_enable include/linux/bottom_half.h:33 [inline] update_defense_level+0x5d5/0x610 net/netfilter/ipvs/ip_vs_ctl.c:210 defense_work_handler+0x1f/0x80 net/netfilter/ipvs/ip_vs_ctl.c:235 process_one_work kernel/workqueue.c:3254 [inline] process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335 worker_thread+0x526/0x730 kernel/workqueue.c:3416 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 value changed: 0x0000000000013888 -> 0x0000000000013889 Reported by Kernel Concurrency Sanitizer on: CPU: 1 PID: 19205 Comm: kworker/1:9 Tainted: G W 6.9.0-rc3-syzkaller-00011-g20cb38a7af88 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 Workqueue: events_long defense_work_handler ================================================================== ================================================================== BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter read-write to 0xffff8881044495b8 of 8 bytes by interrupt on cpu 0: deliver net/can/af_can.c:573 [inline] can_rcv_filter+0xd1/0x4c0 net/can/af_can.c:599 can_receive+0x182/0x1f0 net/can/af_can.c:663 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline] _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210 spin_unlock_bh include/linux/spinlock.h:396 [inline] nf_nat_cleanup_conntrack+0xb9/0xd0 net/netfilter/nf_nat_core.c:898 nf_conntrack_free+0xae/0x150 net/netfilter/nf_conntrack_core.c:1686 nf_ct_destroy+0xfa/0x190 net/netfilter/nf_conntrack_core.c:598 nf_ct_put include/net/netfilter/nf_conntrack.h:186 [inline] nf_ct_gc_expired+0x194/0x200 net/netfilter/nf_conntrack_core.c:726 gc_worker+0x42f/0xa50 net/netfilter/nf_conntrack_core.c:1524 process_one_work kernel/workqueue.c:3254 [inline] process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335 worker_thread+0x526/0x730 kernel/workqueue.c:3416 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 read-write to 0xffff8881044495b8 of 8 bytes by interrupt on cpu 1: deliver net/can/af_can.c:573 [inline] can_rcv_filter+0xd1/0x4c0 net/can/af_can.c:599 can_receive+0x182/0x1f0 net/can/af_can.c:663 can_rcv+0xe7/0x180 net/can/af_can.c:687 __netif_receive_skb_one_core net/core/dev.c:5538 [inline] __netif_receive_skb+0x123/0x280 net/core/dev.c:5652 process_backlog+0x21f/0x380 net/core/dev.c:5981 __napi_poll+0x63/0x3c0 net/core/dev.c:6632 napi_poll net/core/dev.c:6701 [inline] net_rx_action+0x324/0x720 net/core/dev.c:6816 __do_softirq+0xc8/0x285 kernel/softirq.c:554 do_softirq+0x5e/0x90 kernel/softirq.c:455 __local_bh_enable_ip+0x6e/0x70 kernel/softirq.c:382 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline] _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210 spin_unlock_bh include/linux/spinlock.h:396 [inline] lock_sock_nested+0x10f/0x140 net/core/sock.c:3542 lock_sock include/net/sock.h:1671 [inline] tcp_sendmsg+0x22/0x50 net/ipv4/tcp.c:1341 inet_sendmsg+0x77/0xd0 net/ipv4/af_inet.c:851 sock_sendmsg_nosec net/socket.c:730 [inline] __sock_sendmsg+0x102/0x180 net/socket.c:745 sock_write_iter+0x164/0x1b0 net/socket.c:1160 call_write_iter include/linux/fs.h:2110 [inline] new_sync_write fs/read_write.c:497 [inline] vfs_write+0x771/0x8e0 fs/read_write.c:590 ksys_write+0xeb/0x1b0 fs/read_write.c:643 __do_sys_write fs/read_write.c:655 [inline] __se_sys_write fs/read_write.c:652 [inline] __x64_sys_write+0x42/0x50 fs/read_write.c:652 do_syscall_64+0xd3/0x1d0 entry_SYSCALL_64_after_hwframe+0x72/0x7a value changed: 0x00000000000f0af0 -> 0x00000000000f0af1 Reported by Kernel Concurrency Sanitizer on: CPU: 1 PID: 3071 Comm: syz-fuzzer Tainted: G W 6.9.0-rc3-syzkaller-00011-g20cb38a7af88 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 ==================================================================