From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mail-il1-f198.google.com (mail-il1-f198.google.com [209.85.166.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id CFEA713C3F2 for ; Mon, 14 Oct 2024 06:07:28 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=209.85.166.198 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1728886050; cv=none; b=SMhvf661JLULagBHGlyUJ9bAkiPOntOh3l0FE7SbAFCN756VRujd2rdoGjp0JTfpevW/jV/VF0qRV6fPeh3P6W1R+6Gf/qgiFn5Qv0oYkEpS+7KiheoI8yGZGd87SXT0xTpgWX0zU/3x8lw2wEL0wLDeyjLIkmcPuC64LEUpSVk= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1728886050; c=relaxed/simple; bh=rVM3f+e8DUAY/SAHTBIRHsqYfhj23ZEGnIPV6EVppA4=; h=MIME-Version:Date:Message-ID:Subject:From:To:Content-Type; b=qWREtITm2kNzwPkimdBgTLGzF5jys5Eb2hqy5Rxfdn04BUMlM/TgGz9FldXGvloRoD2yZDsCakBWRJsjXdt5gc83Tb3+TkZSaLygbpNDklrNXdQXnS8szNSjw6n/bVhZXqo/ze7vfjGWA5PH+76vKyBAfomfaVsrwzupPQRVTjc= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=fail (p=none dis=none) header.from=syzkaller.appspotmail.com; spf=pass smtp.mailfrom=M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com; arc=none smtp.client-ip=209.85.166.198 Authentication-Results: smtp.subspace.kernel.org; dmarc=fail (p=none dis=none) header.from=syzkaller.appspotmail.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com Received: by mail-il1-f198.google.com with SMTP id e9e14a558f8ab-3a3b7d1e8a0so17365025ab.0 for ; Sun, 13 Oct 2024 23:07:28 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1728886048; x=1729490848; h=to:from:subject:message-id:date:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=La2ZS7cTpq8ZFy5JLjmB577+h4tJu+TdVzV6UaYHKP4=; b=i4uo23Hc1DX+CuocG9HozZMPO6phagc6PdFQ5OKuJMeClcdr/Z/PjIKo82gEGOP/UO RsUUF/8YovabC2HymG3pJJkYC762NskHLUlwdyh81pg+CIbWZars6txpqtbgNHyNCK5L rZPx7Itd30+FWQQeLwxSnhMjXxnanAb5z80r62shmf8ZfxHwYd+aiPCqa4zTqZpiNa1D Fovn6SUB3UkDRbwcSG23xg+ciQrFnOMJZMgFAxUbGHuVFiRyT56LywAlF4dR25hOHaZU D/AXHESBqQ+Oh8nhT1W5/jAxNJ80V2ZlThV1M3KpK1qUE8NyvDTGy3vr9FPfIgvgzCwJ GXnw== X-Forwarded-Encrypted: i=1; AJvYcCX68vBrZ3v/b2BNEaVml9qkeO5nhf/qTAG2dOYtTjTqCi1/UbmIsZLmLxCw1OCrU0x29SUTaECzFmhVgI0=@vger.kernel.org X-Gm-Message-State: AOJu0YyhUX1jl3y1mq5rXfrDJBE5n+g+RQ6lB3O2S4Cnj8DlLeW15ySI vUdU658nOytnDgGVWG0btE6SU5TavD7kiD2Z5NSOYCzK18YSuoD1tlGSOvqfAuImX/ylEGjAzU+ 8Rl8GPnEvkGfpCFaxn1+gM4eJU5DBdEIYF+lyFvu1jaMAxSmyKW+AHQs= X-Google-Smtp-Source: AGHT+IHKBuQFlMiLYh11Hx/Rf7z8ZA3zD9cUDj0yeQ6Gq3rhH2SyoLWZ1w9INhjy81LWJEmDls/KmisD0xs5R7bwGXY+8JyFf2RW Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 X-Received: by 2002:a92:c265:0:b0:3a3:76c3:fcb0 with SMTP id e9e14a558f8ab-3a3bce16c4fmr39353735ab.26.1728886048035; Sun, 13 Oct 2024 23:07:28 -0700 (PDT) Date: Sun, 13 Oct 2024 23:07:28 -0700 X-Google-Appengine-App-Id: s~syzkaller X-Google-Appengine-App-Id-Alias: syzkaller Message-ID: <670cb520.050a0220.4cbc0.0041.GAE@google.com> Subject: [syzbot] [bpf?] KCSAN: data-race in __mod_timer / kvfree_call_rcu From: syzbot To: andrii@kernel.org, ast@kernel.org, bpf@vger.kernel.org, daniel@iogearbox.net, eddyz87@gmail.com, haoluo@google.com, john.fastabend@gmail.com, jolsa@kernel.org, kpsingh@kernel.org, linux-kernel@vger.kernel.org, martin.lau@linux.dev, sdf@fomichev.me, song@kernel.org, syzkaller-bugs@googlegroups.com, yonghong.song@linux.dev Content-Type: text/plain; charset="UTF-8" Hello, syzbot found the following issue on: HEAD commit: 5b7c893ed5ed Merge tag 'ntfs3_for_6.12' of https://github... git tree: upstream console output: https://syzkaller.appspot.com/x/log.txt?x=148ae327980000 kernel config: https://syzkaller.appspot.com/x/.config?x=a2f7ae2f221e9eae dashboard link: https://syzkaller.appspot.com/bug?extid=061d370693bdd99f9d34 compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 Unfortunately, I don't have any reproducer for this issue yet. Downloadable assets: disk image: https://storage.googleapis.com/syzbot-assets/79bb9e82835a/disk-5b7c893e.raw.xz vmlinux: https://storage.googleapis.com/syzbot-assets/5931997fd31c/vmlinux-5b7c893e.xz kernel image: https://storage.googleapis.com/syzbot-assets/fc8cc3d97b18/bzImage-5b7c893e.xz IMPORTANT: if you fix the issue, please add the following tag to the commit: Reported-by: syzbot+061d370693bdd99f9d34@syzkaller.appspotmail.com ================================================================== BUG: KCSAN: data-race in __mod_timer / kvfree_call_rcu read to 0xffff888237d1cce8 of 8 bytes by task 10149 on cpu 1: schedule_delayed_monitor_work kernel/rcu/tree.c:3520 [inline] kvfree_call_rcu+0x3b8/0x510 kernel/rcu/tree.c:3839 trie_update_elem+0x47c/0x620 kernel/bpf/lpm_trie.c:441 bpf_map_update_value+0x324/0x350 kernel/bpf/syscall.c:203 generic_map_update_batch+0x401/0x520 kernel/bpf/syscall.c:1849 bpf_map_do_batch+0x28c/0x3f0 kernel/bpf/syscall.c:5143 __sys_bpf+0x2e5/0x7a0 __do_sys_bpf kernel/bpf/syscall.c:5741 [inline] __se_sys_bpf kernel/bpf/syscall.c:5739 [inline] __x64_sys_bpf+0x43/0x50 kernel/bpf/syscall.c:5739 x64_sys_call+0x2625/0x2d60 arch/x86/include/generated/asm/syscalls_64.h:322 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x77/0x7f write to 0xffff888237d1cce8 of 8 bytes by task 56 on cpu 0: __mod_timer+0x578/0x7f0 kernel/time/timer.c:1173 add_timer_global+0x51/0x70 kernel/time/timer.c:1330 __queue_delayed_work+0x127/0x1a0 kernel/workqueue.c:2523 queue_delayed_work_on+0xdf/0x190 kernel/workqueue.c:2552 queue_delayed_work include/linux/workqueue.h:677 [inline] schedule_delayed_monitor_work kernel/rcu/tree.c:3525 [inline] kfree_rcu_monitor+0x5e8/0x660 kernel/rcu/tree.c:3643 process_one_work kernel/workqueue.c:3229 [inline] process_scheduled_works+0x483/0x9a0 kernel/workqueue.c:3310 worker_thread+0x51d/0x6f0 kernel/workqueue.c:3391 kthread+0x1d1/0x210 kernel/kthread.c:389 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244 Reported by Kernel Concurrency Sanitizer on: CPU: 0 UID: 0 PID: 56 Comm: kworker/u8:4 Not tainted 6.12.0-rc2-syzkaller-00050-g5b7c893ed5ed #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 Workqueue: events_unbound kfree_rcu_monitor ================================================================== bridge0: port 2(bridge_slave_1) entered blocking state bridge0: port 2(bridge_slave_1) entered forwarding state --- This report is generated by a bot. It may contain errors. See https://goo.gl/tpsmEJ for more information about syzbot. syzbot engineers can be reached at syzkaller@googlegroups.com. syzbot will keep track of this issue. See: https://goo.gl/tpsmEJ#status for how to communicate with syzbot. If the report is already addressed, let syzbot know by replying with: #syz fix: exact-commit-title If you want to overwrite report's subsystems, reply with: #syz set subsystems: new-subsystem (See the list of subsystem names on the web dashboard) If the report is a duplicate of another one, reply with: #syz dup: exact-subject-of-another-report If you want to undo deduplication, reply with: #syz undup