================================================================== BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter write to 0xffff8881079ad4c8 of 8 bytes by interrupt on cpu 0: deliver net/can/af_can.c:575 [inline] can_rcv_filter+0x402/0x520 net/can/af_can.c:635 can_receive+0x1a2/0x220 net/can/af_can.c:665 can_rcv+0x9e/0x170 net/can/af_can.c:696 __netif_receive_skb_one_core net/core/dev.c:5351 [inline] __netif_receive_skb+0x8b/0x1b0 net/core/dev.c:5465 process_backlog+0x23f/0x3e0 net/core/dev.c:5797 __napi_poll+0x65/0x3f0 net/core/dev.c:6365 napi_poll net/core/dev.c:6432 [inline] net_rx_action+0x29e/0x650 net/core/dev.c:6519 __do_softirq+0x158/0x2de kernel/softirq.c:558 run_ksoftirqd+0x1f/0x30 kernel/softirq.c:921 smpboot_thread_fn+0x308/0x4a0 kernel/smpboot.c:164 kthread+0x1bf/0x1e0 kernel/kthread.c:377 ret_from_fork+0x1f/0x30 read to 0xffff8881079ad4c8 of 8 bytes by interrupt on cpu 1: deliver net/can/af_can.c:575 [inline] can_rcv_filter+0x3f3/0x520 net/can/af_can.c:635 can_receive+0x1a2/0x220 net/can/af_can.c:665 can_rcv+0x9e/0x170 net/can/af_can.c:696 __netif_receive_skb_one_core net/core/dev.c:5351 [inline] __netif_receive_skb+0x8b/0x1b0 net/core/dev.c:5465 process_backlog+0x23f/0x3e0 net/core/dev.c:5797 __napi_poll+0x65/0x3f0 net/core/dev.c:6365 napi_poll net/core/dev.c:6432 [inline] net_rx_action+0x29e/0x650 net/core/dev.c:6519 __do_softirq+0x158/0x2de kernel/softirq.c:558 do_softirq+0xb1/0xf0 kernel/softirq.c:459 netif_rx_ni+0x52/0x1e0 net/core/dev.c:4858 can_send+0x46d/0x530 net/can/af_can.c:287 isotp_sendmsg+0xe6f/0x1140 net/can/isotp.c:974 sock_sendmsg_nosec net/socket.c:705 [inline] sock_sendmsg net/socket.c:725 [inline] kernel_sendmsg+0x97/0xd0 net/socket.c:745 sock_no_sendpage+0x84/0xb0 net/core/sock.c:3091 kernel_sendpage net/socket.c:3492 [inline] sock_sendpage+0x1bb/0x230 net/socket.c:1007 pipe_to_sendpage+0x128/0x160 fs/splice.c:364 splice_from_pipe_feed fs/splice.c:418 [inline] __splice_from_pipe+0x207/0x500 fs/splice.c:562 splice_from_pipe fs/splice.c:597 [inline] generic_splice_sendpage+0x94/0xd0 fs/splice.c:746 do_splice_from fs/splice.c:767 [inline] direct_splice_actor+0x80/0xa0 fs/splice.c:936 splice_direct_to_actor+0x345/0x650 fs/splice.c:891 do_splice_direct+0x106/0x190 fs/splice.c:979 do_sendfile+0x675/0xc40 fs/read_write.c:1245 __do_sys_sendfile64 fs/read_write.c:1310 [inline] __se_sys_sendfile64 fs/read_write.c:1296 [inline] __x64_sys_sendfile64+0x102/0x140 fs/read_write.c:1296 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae value changed: 0x000000000000396b -> 0x0000000000003970 Reported by Kernel Concurrency Sanitizer on: CPU: 1 PID: 5913 Comm: syz-executor.5 Not tainted 5.17.0-rc6-syzkaller-dirty #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 ================================================================== scsi_io_completion_action: 3 callbacks suppressed sd 0:0:1:0: [sda] tag#5081 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s sd 0:0:1:0: [sda] tag#5081 CDB: opcode=0xe5 (vendor) sd 0:0:1:0: [sda] tag#5081 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c sd 0:0:1:0: [sda] tag#5081 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d sd 0:0:1:0: [sda] tag#5081 CDB[20]: ba GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog sd 0:0:1:0: [sda] tag#5082 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s sd 0:0:1:0: [sda] tag#5082 CDB: opcode=0xe5 (vendor) sd 0:0:1:0: [sda] tag#5082 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c sd 0:0:1:0: [sda] tag#5082 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d sd 0:0:1:0: [sda] tag#5082 CDB[20]: ba sd 0:0:1:0: [sda] tag#5087 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s sd 0:0:1:0: [sda] tag#5087 CDB: opcode=0xe5 (vendor) sd 0:0:1:0: [sda] tag#5087 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c sd 0:0:1:0: [sda] tag#5087 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d sd 0:0:1:0: [sda] tag#5087 CDB[20]: ba sd 0:0:1:0: [sda] tag#5094 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s sd 0:0:1:0: [sda] tag#5094 CDB: opcode=0xe5 (vendor) sd 0:0:1:0: [sda] tag#5094 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c sd 0:0:1:0: [sda] tag#5094 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d sd 0:0:1:0: [sda] tag#5094 CDB[20]: ba