================================================================== BUG: KCSAN: data-race in do_select / pollwake read to 0xffffc9000cadf9d0 of 4 bytes by task 16676 on cpu 1: poll_schedule_timeout fs/select.c:240 [inline] do_select+0xeba/0xfc0 fs/select.c:603 core_sys_select+0x4c3/0x6d0 fs/select.c:677 do_pselect fs/select.c:759 [inline] __do_sys_pselect6 fs/select.c:802 [inline] __se_sys_pselect6+0x212/0x270 fs/select.c:793 __x64_sys_pselect6+0x78/0x90 fs/select.c:793 x64_sys_call+0x1c26/0x2e10 arch/x86/include/generated/asm/syscalls_64.h:271 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0xc9/0x1a0 arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x77/0x7f write to 0xffffc9000cadf9d0 of 4 bytes by interrupt on cpu 0: __pollwake fs/select.c:195 [inline] pollwake+0xc1/0x110 fs/select.c:215 __wake_up_common kernel/sched/wait.c:89 [inline] __wake_up_common_lock kernel/sched/wait.c:106 [inline] __wake_up+0x65/0xb0 kernel/sched/wait.c:127 bpf_ringbuf_notify+0x22/0x30 kernel/bpf/ringbuf.c:155 irq_work_single kernel/irq_work.c:221 [inline] irq_work_run_list kernel/irq_work.c:252 [inline] irq_work_run+0xe1/0x2d0 kernel/irq_work.c:261 __sysvec_irq_work+0x23/0x1a0 arch/x86/kernel/irq_work.c:22 instr_sysvec_irq_work arch/x86/kernel/irq_work.c:17 [inline] sysvec_irq_work+0x66/0x80 arch/x86/kernel/irq_work.c:17 asm_sysvec_irq_work+0x1a/0x20 arch/x86/include/asm/idtentry.h:738 native_apic_mem_write arch/x86/include/asm/apic.h:101 [inline] __default_send_IPI_shortcut arch/x86/kernel/apic/ipi.c:167 [inline] default_send_IPI_self+0x38/0x80 arch/x86/kernel/apic/ipi.c:248 __apic_send_IPI_self arch/x86/include/asm/apic.h:455 [inline] arch_irq_work_raise+0x48/0x50 arch/x86/kernel/irq_work.c:31 irq_work_raise kernel/irq_work.c:84 [inline] __irq_work_queue_local+0x82/0x1d0 kernel/irq_work.c:112 irq_work_queue+0x85/0x120 kernel/irq_work.c:124 bpf_ringbuf_commit kernel/bpf/ringbuf.c:-1 [inline] ____bpf_ringbuf_discard kernel/bpf/ringbuf.c:525 [inline] bpf_ringbuf_discard+0xcd/0xf0 kernel/bpf/ringbuf.c:523 bpf_prog_fe0ed97373b08409+0x47/0x4b bpf_dispatcher_nop_func include/linux/bpf.h:1316 [inline] __bpf_prog_run include/linux/filter.h:718 [inline] bpf_prog_run include/linux/filter.h:725 [inline] __bpf_trace_run kernel/trace/bpf_trace.c:2363 [inline] bpf_trace_run3+0x10e/0x1d0 kernel/trace/bpf_trace.c:2405 __do_trace_kmem_cache_free include/trace/events/kmem.h:114 [inline] trace_kmem_cache_free include/trace/events/kmem.h:114 [inline] kmem_cache_free+0x243/0x2e0 mm/slub.c:4757 sctp_chunk_destroy net/sctp/sm_make_chunk.c:1507 [inline] sctp_chunk_put+0x103/0x130 net/sctp/sm_make_chunk.c:1530 sctp_datamsg_destroy net/sctp/chunk.c:-1 [inline] sctp_datamsg_put+0x2a6/0x310 net/sctp/chunk.c:128 sctp_chunk_free+0x34/0x50 net/sctp/sm_make_chunk.c:1515 __sctp_outq_teardown+0x40c/0x510 net/sctp/outqueue.c:257 sctp_outq_free+0x15/0x20 net/sctp/outqueue.c:277 sctp_association_free+0x15c/0x590 net/sctp/associola.c:340 sctp_cmd_delete_tcb net/sctp/sm_sideeffect.c:944 [inline] sctp_cmd_interpreter net/sctp/sm_sideeffect.c:1330 [inline] sctp_side_effects net/sctp/sm_sideeffect.c:1198 [inline] sctp_do_sm+0x2b1a/0x31c0 net/sctp/sm_sideeffect.c:1169 sctp_primitive_SHUTDOWN+0x75/0x90 net/sctp/primitive.c:89 sctp_close+0x270/0x550 net/sctp/socket.c:1529 inet_release+0xce/0xf0 net/ipv4/af_inet.c:435 inet6_release+0x3e/0x60 net/ipv6/af_inet6.c:487 __sock_release net/socket.c:647 [inline] sock_close+0x68/0x150 net/socket.c:1391 __fput+0x2ac/0x640 fs/file_table.c:465 fput_close_sync+0xc0/0x110 fs/file_table.c:570 __do_sys_close fs/open.c:1581 [inline] __se_sys_close fs/open.c:1566 [inline] __x64_sys_close+0x55/0xe0 fs/open.c:1566 x64_sys_call+0x262b/0x2e10 arch/x86/include/generated/asm/syscalls_64.h:4 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0xc9/0x1a0 arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x77/0x7f value changed: 0x00000001 -> 0x00000000 Reported by Kernel Concurrency Sanitizer on: CPU: 0 UID: 0 PID: 16682 Comm: syz.9.5557 Tainted: G W 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(voluntary) Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 ==================================================================