Received: by 2002:a25:31c3:0:0:0:0:0 with SMTP id x186csp3825925ybx; Mon, 4 Nov 2019 03:32:15 -0800 (PST) X-Google-Smtp-Source: APXvYqydaxj5rcELZuN7aAC1wpzA4ZzR5nUqY849M3UrJaKgDDMNai5YcJ4hp4R8xL6sTwk0+lbZ X-Received: by 2002:a17:907:36e:: with SMTP id rs14mr18667281ejb.330.1572867135571; Mon, 04 Nov 2019 03:32:15 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1572867135; cv=none; d=google.com; s=arc-20160816; b=ReYUF3HRIlK0zk7dw7ghxI0dKHavWqUhQezZdBfuNRO8Kxmefb3Py4cD4ZR7z8mcDG N/E637ZSzjgagWj+gnii+pt1p1zBAjZGS+GD3v2t5Fg7YmTlbIG+PU/ttdwHVgF4PmPy 4V4HAAKkyApzMlwVPQvAVj2PMLL7B7RuG/FXqGxPIk7W8v3nZMvEMXzfxDudli71duVi QCvQYE2VUNyWQx875sOKtchPICVv9xB9xoiH4oUDE6XAa0IdUVNaTo2XFJOzXa8A2mzD bJMARJVJjrfMf1uerlmgGKZMvFs941WDFP0L5nUJEMHJhj4JRvCXy837NbgkQwuN8fxY wJtQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:to:from:subject:message-id:date :mime-version; bh=PGnkPBzgn5LmUkN96S1poOO8RfhEZz6HijmQ5U4KxFw=; b=sO8gq6Vf7tQKI8K3ddWapdL4ak/f87JqGpxrRou6k7xEAVD3R+mXt+CNGm0cJtERB5 SdHXuihAU9X8Dc8Z2M+uw8FcN04wailvY7rpo0u4ASJoOzpUGy0aXVnQgBQs2MYmjH1p bFpfLO0SzQ4FlVw1PDvilQ56tumypwURx7oAWgFPKvMswtXs4nSMr9rY7aeO2mf6yTrN jkVVcJukcOMrIASSzNomlMhG20/adN328amYgIJ40DOzwqxRGkm0gkDA5chhrwyvx0bq ZrG3GWsZW9mEEmvoJjfXXAKqHvI5KFR7zgnDIcrI9LkhXgwEKStN4moasDx22PCjisXC LiNA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=appspotmail.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id f26si6858238ejr.92.2019.11.04.03.31.51; Mon, 04 Nov 2019 03:32:15 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=appspotmail.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1728810AbfKDLaK (ORCPT + 99 others); Mon, 4 Nov 2019 06:30:10 -0500 Received: from mail-il1-f199.google.com ([209.85.166.199]:42742 "EHLO mail-il1-f199.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1727236AbfKDLaK (ORCPT ); Mon, 4 Nov 2019 06:30:10 -0500 Received: by mail-il1-f199.google.com with SMTP id n16so1499972ilm.9 for ; Mon, 04 Nov 2019 03:30:08 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:date:message-id:subject:from:to; bh=PGnkPBzgn5LmUkN96S1poOO8RfhEZz6HijmQ5U4KxFw=; b=Th1qMoVvPkD9A3OEL0IONwkj5hxsT5iejIow9i/HWSz7gHhYEQnLtu7CkjZ7zLgorq xTukRAmYun80XgUvD7Up6qg6zXIOW4ttfFHxObAU2WmIkz8HhuY3C7vbSfhE+nieleQ+ n5HkMeqUieYPeatFl83FFCPISMa2Cuz1peW/qyh+hNmsbthlZe3Bltvk5sb1bwHYea6F aPXefnsi3Yeo/sbIuDnzvsKEy4jx8Y3uqe2+m8r/EC32nI0kFlZYwxRd4Ktxk+GksB6w iEBv3Lln06cDA5oWq6Juk3nqS2A28Bn8DtR+OZiDd3hTOxXof99j+Qx2LIMBGO+YeIxN 7VkQ== X-Gm-Message-State: APjAAAVKnkoec2nPGetD9fLfl7uO8IWoe4cfjU97wB92pkYawCLWLX6/ 7Qn6dd1uQfspjLtzH1qKtY5iJ8+0W53hBfby1Yl81mx9AvvK MIME-Version: 1.0 X-Received: by 2002:a92:d80e:: with SMTP id y14mr888463ilm.267.1572867007375; Mon, 04 Nov 2019 03:30:07 -0800 (PST) Date: Mon, 04 Nov 2019 03:30:07 -0800 X-Google-Appengine-App-Id: s~syzkaller X-Google-Appengine-App-Id-Alias: syzkaller Message-ID: <000000000000411e4b059683a39c@google.com> Subject: KCSAN: data-race in __rcu_read_unlock / sync_rcu_exp_select_cpus From: syzbot To: akpm@linux-foundation.org, amir73il@gmail.com, darrick.wong@oracle.com, elver@google.com, hannes@cmpxchg.org, jack@suse.cz, josef@toxicpanda.com, linux-kernel@vger.kernel.org, linux-mm@kvack.org, songliubraving@fb.com, syzkaller-bugs@googlegroups.com, willy@infradead.org Content-Type: text/plain; charset="UTF-8"; format=flowed; delsp=yes Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Hello, syzbot found the following crash on: HEAD commit: 05f22368 x86, kcsan: Enable KCSAN for x86 git tree: https://github.com/google/ktsan.git kcsan console output: https://syzkaller.appspot.com/x/log.txt?x=1296ff50e00000 kernel config: https://syzkaller.appspot.com/x/.config?x=87d111955f40591f dashboard link: https://syzkaller.appspot.com/bug?extid=99f4ddade3c22ab0cf23 compiler: gcc (GCC) 9.0.0 20181231 (experimental) Unfortunately, I don't have any reproducer for this crash yet. IMPORTANT: if you fix the bug, please add the following tag to the commit: Reported-by: syzbot+99f4ddade3c22ab0cf23@syzkaller.appspotmail.com ================================================================== BUG: KCSAN: data-race in __rcu_read_unlock / sync_rcu_exp_select_cpus read to 0xffffffff85a7d440 of 8 bytes by task 7624 on cpu 0: rcu_read_unlock_special kernel/rcu/tree_plugin.h:615 [inline] __rcu_read_unlock+0x381/0x3c0 kernel/rcu/tree_plugin.h:383 rcu_read_unlock include/linux/rcupdate.h:652 [inline] filemap_map_pages+0x5b3/0x990 mm/filemap.c:2687 do_fault_around mm/memory.c:3450 [inline] do_read_fault mm/memory.c:3484 [inline] do_fault mm/memory.c:3618 [inline] handle_pte_fault mm/memory.c:3849 [inline] __handle_mm_fault+0x2554/0x2cb0 mm/memory.c:3973 handle_mm_fault+0x21b/0x530 mm/memory.c:4010 do_user_addr_fault arch/x86/mm/fault.c:1441 [inline] __do_page_fault+0x3fb/0x9e0 arch/x86/mm/fault.c:1506 do_page_fault+0x54/0x233 arch/x86/mm/fault.c:1530 page_fault+0x34/0x40 arch/x86/entry/entry_64.S:1202 write to 0xffffffff85a7d440 of 8 bytes by task 7353 on cpu 1: sync_exp_reset_tree kernel/rcu/tree_exp.h:137 [inline] sync_rcu_exp_select_cpus+0xd5/0x590 kernel/rcu/tree_exp.h:427 rcu_exp_sel_wait_wake kernel/rcu/tree_exp.h:575 [inline] wait_rcu_exp_gp+0x25/0x40 kernel/rcu/tree_exp.h:589 process_one_work+0x3d4/0x890 kernel/workqueue.c:2269 worker_thread+0xa0/0x800 kernel/workqueue.c:2415 kthread+0x1d4/0x200 drivers/block/aoe/aoecmd.c:1253 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:352 Reported by Kernel Concurrency Sanitizer on: CPU: 1 PID: 7353 Comm: kworker/1:0 Not tainted 5.4.0-rc3+ #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Workqueue: rcu_gp wait_rcu_exp_gp ================================================================== Kernel panic - not syncing: panic_on_warn set ... CPU: 1 PID: 7353 Comm: kworker/1:0 Not tainted 5.4.0-rc3+ #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Workqueue: rcu_gp wait_rcu_exp_gp Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0xf5/0x159 lib/dump_stack.c:113 panic+0x210/0x640 kernel/panic.c:221 kcsan_report.cold+0xc/0x10 kernel/kcsan/report.c:302 __kcsan_setup_watchpoint+0x32e/0x4a0 kernel/kcsan/core.c:411 __tsan_write8 kernel/kcsan/kcsan.c:36 [inline] __tsan_write8+0x32/0x40 kernel/kcsan/kcsan.c:36 sync_exp_reset_tree kernel/rcu/tree_exp.h:137 [inline] sync_rcu_exp_select_cpus+0xd5/0x590 kernel/rcu/tree_exp.h:427 rcu_exp_sel_wait_wake kernel/rcu/tree_exp.h:575 [inline] wait_rcu_exp_gp+0x25/0x40 kernel/rcu/tree_exp.h:589 process_one_work+0x3d4/0x890 kernel/workqueue.c:2269 worker_thread+0xa0/0x800 kernel/workqueue.c:2415 kthread+0x1d4/0x200 drivers/block/aoe/aoecmd.c:1253 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:352 Shutting down cpus with NMI Kernel Offset: disabled Rebooting in 86400 seconds.. --- This bug is generated by a bot. It may contain errors. See https://goo.gl/tpsmEJ for more information about syzbot. syzbot engineers can be reached at syzkaller@googlegroups.com. syzbot will keep track of this bug report. See: https://goo.gl/tpsmEJ#status for how to communicate with syzbot.