KCSAN: data-race in dst_cache_set_ip6 / fib6_clean_node (2)
12 views
Skip to first unread message
syzbot
Dec 11, 2020, 5:33:13 AM12/11/20
to syzkaller-upst...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: c84e1efa Merge tag 'asm-generic-fixes-5.10-2' of git://git..
git tree: upstream
console output: https://syzkaller.appspot.com/x/log.txt?x=13138bf1500000
kernel config: https://syzkaller.appspot.com/x/.config?x=9b9b19d1bde60f8d
dashboard link: https://syzkaller.appspot.com/bug?extid=c3051d12e7037c8dd4d3
compiler: clang version 12.0.0 (https://github.com/llvm/llvm-project.git 913f6005669cfb590c99865a90bc51ed0983d09d)
CC: [and...@kernel.org a...@kernel.org b...@vger.kernel.org dan...@iogearbox.net da...@davemloft.net john.fa...@gmail.com ka...@fb.com kps...@chromium.org ku...@kernel.org kuz...@ms2.inr.ac.ru linux-...@vger.kernel.org net...@vger.kernel.org songliu...@fb.com y...@fb.com yosh...@linux-ipv6.org]
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+c3051d...@syzkaller.appspotmail.com
==================================================================
BUG: KCSAN: data-race in dst_cache_set_ip6 / fib6_clean_node
write to 0xffff8880119a68ac of 4 bytes by task 7 on cpu 0:
fib6_clean_node+0xc0/0x260 net/ipv6/ip6_fib.c:2177
fib6_walk_continue+0x38e/0x430 net/ipv6/ip6_fib.c:2111
fib6_walk net/ipv6/ip6_fib.c:2159 [inline]
fib6_clean_tree net/ipv6/ip6_fib.c:2239 [inline]
__fib6_clean_all+0x188/0x2b0 net/ipv6/ip6_fib.c:2255
fib6_flush_trees+0x6c/0x80 net/ipv6/ip6_fib.c:2280
rt_genid_bump_ipv6 include/net/net_namespace.h:458 [inline]
addrconf_dad_completed+0x57f/0x860 net/ipv6/addrconf.c:4205
addrconf_dad_work+0x8dd/0x1150 net/ipv6/addrconf.c:3958
process_one_work+0x3e1/0x950 kernel/workqueue.c:2272
worker_thread+0x635/0xb90 kernel/workqueue.c:2418
kthread+0x1fd/0x220 kernel/kthread.c:292
ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296
read to 0xffff8880119a68ac of 4 bytes by task 3130 on cpu 1:
fib6_get_cookie_safe include/net/ip6_fib.h:283 [inline]
rt6_get_cookie include/net/ip6_fib.h:304 [inline]
dst_cache_set_ip6+0xab/0x1b0 net/core/dst_cache.c:115
send6+0x256/0x3a0 drivers/net/wireguard/socket.c:148
wg_socket_send_skb_to_peer+0xbb/0x120 drivers/net/wireguard/socket.c:177
wg_packet_create_data_done drivers/net/wireguard/send.c:252 [inline]
wg_packet_tx_worker+0x1e3/0x4c0 drivers/net/wireguard/send.c:280
process_one_work+0x3e1/0x950 kernel/workqueue.c:2272
worker_thread+0x635/0xb90 kernel/workqueue.c:2418
kthread+0x1fd/0x220 kernel/kthread.c:292
ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296
Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 3130 Comm: kworker/1:2 Not tainted 5.10.0-rc5-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: wg-crypt-wg0 wg_packet_tx_worker
==================================================================
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot found the following issue on:
HEAD commit: c84e1efa Merge tag 'asm-generic-fixes-5.10-2' of git://git..
git tree: upstream
console output: https://syzkaller.appspot.com/x/log.txt?x=13138bf1500000
kernel config: https://syzkaller.appspot.com/x/.config?x=9b9b19d1bde60f8d
dashboard link: https://syzkaller.appspot.com/bug?extid=c3051d12e7037c8dd4d3
compiler: clang version 12.0.0 (https://github.com/llvm/llvm-project.git 913f6005669cfb590c99865a90bc51ed0983d09d)
CC: [and...@kernel.org a...@kernel.org b...@vger.kernel.org dan...@iogearbox.net da...@davemloft.net john.fa...@gmail.com ka...@fb.com kps...@chromium.org ku...@kernel.org kuz...@ms2.inr.ac.ru linux-...@vger.kernel.org net...@vger.kernel.org songliu...@fb.com y...@fb.com yosh...@linux-ipv6.org]
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+c3051d...@syzkaller.appspotmail.com
==================================================================
BUG: KCSAN: data-race in dst_cache_set_ip6 / fib6_clean_node
write to 0xffff8880119a68ac of 4 bytes by task 7 on cpu 0:
fib6_clean_node+0xc0/0x260 net/ipv6/ip6_fib.c:2177
fib6_walk_continue+0x38e/0x430 net/ipv6/ip6_fib.c:2111
fib6_walk net/ipv6/ip6_fib.c:2159 [inline]
fib6_clean_tree net/ipv6/ip6_fib.c:2239 [inline]
__fib6_clean_all+0x188/0x2b0 net/ipv6/ip6_fib.c:2255
fib6_flush_trees+0x6c/0x80 net/ipv6/ip6_fib.c:2280
rt_genid_bump_ipv6 include/net/net_namespace.h:458 [inline]
addrconf_dad_completed+0x57f/0x860 net/ipv6/addrconf.c:4205
addrconf_dad_work+0x8dd/0x1150 net/ipv6/addrconf.c:3958
process_one_work+0x3e1/0x950 kernel/workqueue.c:2272
worker_thread+0x635/0xb90 kernel/workqueue.c:2418
kthread+0x1fd/0x220 kernel/kthread.c:292
ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296
read to 0xffff8880119a68ac of 4 bytes by task 3130 on cpu 1:
fib6_get_cookie_safe include/net/ip6_fib.h:283 [inline]
rt6_get_cookie include/net/ip6_fib.h:304 [inline]
dst_cache_set_ip6+0xab/0x1b0 net/core/dst_cache.c:115
send6+0x256/0x3a0 drivers/net/wireguard/socket.c:148
wg_socket_send_skb_to_peer+0xbb/0x120 drivers/net/wireguard/socket.c:177
wg_packet_create_data_done drivers/net/wireguard/send.c:252 [inline]
wg_packet_tx_worker+0x1e3/0x4c0 drivers/net/wireguard/send.c:280
process_one_work+0x3e1/0x950 kernel/workqueue.c:2272
worker_thread+0x635/0xb90 kernel/workqueue.c:2418
kthread+0x1fd/0x220 kernel/kthread.c:292
ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296
Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 3130 Comm: kworker/1:2 Not tainted 5.10.0-rc5-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: wg-crypt-wg0 wg_packet_tx_worker
==================================================================
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot
Jan 1, 2021, 9:50:09 PM1/1/21
to syzkaller-upst...@googlegroups.com
Auto-closing this bug as obsolete.
Crashes did not happen for a while, no reproducer and no activity.
Crashes did not happen for a while, no reproducer and no activity.
Reply all
Reply to author
Forward
0 new messages