syzbot

 sign-in | mailing list | source | docs
🐞 Open [1442]
Subsystems
🐞 Fixed [6935]
🐞 Invalid [18077]
Missing Backports [223]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
✨ AI
💬 Send us feedback

KCSAN: data-race in audit_log_start / audit_receive (3)

Status: moderation: reported on 2025/07/13 12:27
Subsystems: audit
[Documentation on labels]
Reported-by: syzbot+6d907adde6b34c3139e0@syzkaller.appspotmail.com
First crash: 225d, last: 8d13h
✨ AI Jobs (1)
ID Workflow Result Correct Bug Created Started Finished Revision Error
005f8ab2-f649-4095-8b62-560bbff59df7 assessment-kcsan 💥 KCSAN: data-race in audit_log_start / audit_receive (3) 2026/01/09 15:29 2026/01/09 15:29 2026/01/09 15:34 5247f1bb7f42cc4ee413d2d21a785c2c14392258 kernel/sys_ni.c: exit status 1 In file included from <built-in>:2: /usr/local/google/home/dvyukov/syzkaller/agent/workdir/cache/src/9d394ddcb9f4743ae961a5ff64f45d820f05cc70/include/linux/kconfig.h:5:10: fatal error: 'generated/autoconf.h' file not found 5 | #include <generated/autoconf.h> | ^~~~~~~~~~~~~~~~~~~~~~ 1 error generated. Error while processing /usr/local/google/home/dvyukov/syzkaller/agent/workdir/cache/src/9d394ddcb9f4743ae961a5ff64f45d820f05cc70/kernel/sys_ni.c.
Similar bugs (2)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in audit_log_start / audit_receive (2) audit 6 8 282d 482d 0/29 auto-obsoleted due to no activity on 2025/07/12 01:35
upstream KCSAN: data-race in audit_log_start / audit_receive kernel 6 1 1540d 1540d 0/29 auto-closed as invalid on 2022/01/10 10:36

Sample crash report:
==================================================================
BUG: KCSAN: data-race in audit_log_start / audit_receive

write to 0xffffffff893bf500 of 8 bytes by task 21677 on cpu 0:
 audit_ctl_lock kernel/audit.c:249 [inline]
 audit_receive+0x77/0x2270 kernel/audit.c:1609
 netlink_unicast_kernel net/netlink/af_netlink.c:1318 [inline]
 netlink_unicast+0x5c0/0x690 net/netlink/af_netlink.c:1344
 netlink_sendmsg+0x5c8/0x6f0 net/netlink/af_netlink.c:1894
 sock_sendmsg_nosec net/socket.c:727 [inline]
 __sock_sendmsg net/socket.c:742 [inline]
 sock_sendmsg+0x254/0x280 net/socket.c:765
 splice_to_socket+0x6e2/0xa80 fs/splice.c:886
 do_splice_from fs/splice.c:938 [inline]
 direct_splice_actor+0x156/0x2a0 fs/splice.c:1161
 splice_direct_to_actor+0x311/0x670 fs/splice.c:1105
 do_splice_direct_actor fs/splice.c:1204 [inline]
 do_splice_direct+0x119/0x1a0 fs/splice.c:1230
 do_sendfile+0x382/0x650 fs/read_write.c:1372
 __do_sys_sendfile64 fs/read_write.c:1433 [inline]
 __se_sys_sendfile64 fs/read_write.c:1419 [inline]
 __x64_sys_sendfile64+0x105/0x150 fs/read_write.c:1419
 x64_sys_call+0x2dc4/0x3020 arch/x86/include/generated/asm/syscalls_64.h:41
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x12c/0x370 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

read to 0xffffffff893bf500 of 8 bytes by task 3040 on cpu 1:
 audit_ctl_owner_current kernel/audit.c:270 [inline]
 audit_log_start+0x103/0x730 kernel/audit.c:1927
 common_lsm_audit+0x65/0x230 security/lsm_audit.c:442
 slow_avc_audit+0x14c/0x190 security/selinux/avc.c:779
 avc_audit security/selinux/include/avc.h:131 [inline]
 avc_has_perm+0x144/0x190 security/selinux/avc.c:1198
 sock_has_perm security/selinux/hooks.c:4820 [inline]
 selinux_socket_recvmsg+0x192/0x1c0 security/selinux/hooks.c:5167
 security_socket_recvmsg+0x4c/0x90 security/security.c:4227
 sock_recvmsg+0x38/0x160 net/socket.c:1098
 ____sys_recvmsg+0xf5/0x280 net/socket.c:2812
 ___sys_recvmsg+0x11f/0x3b0 net/socket.c:2854
 __sys_recvmsg net/socket.c:2887 [inline]
 __do_sys_recvmsg net/socket.c:2893 [inline]
 __se_sys_recvmsg net/socket.c:2890 [inline]
 __x64_sys_recvmsg+0xd1/0x160 net/socket.c:2890
 x64_sys_call+0x2b1a/0x3020 arch/x86/include/generated/asm/syscalls_64.h:48
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x12c/0x370 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0x0000000000000000 -> 0xffff88811d7a5280

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 UID: 0 PID: 3040 Comm: dhcpcd Tainted: G        W           syzkaller #0 PREEMPT(full) 
Tainted: [W]=WARN
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
==================================================================
audit: audit_backlog=65 > audit_backlog_limit=64
audit: audit_lost=167 audit_rate_limit=0 audit_backlog_limit=64
audit: backlog limit exceeded
audit: audit_backlog=65 > audit_backlog_limit=64
audit: audit_lost=168 audit_rate_limit=0 audit_backlog_limit=64
audit: audit_backlog=65 > audit_backlog_limit=64
audit: audit_lost=265 audit_rate_limit=0 audit_backlog_limit=64
audit: backlog limit exceeded
audit: audit_backlog=65 > audit_backlog_limit=64
audit: audit_lost=266 audit_rate_limit=0 audit_backlog_limit=64

Crashes (20):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2026/02/15 03:50 upstream 3e48a11675c5 1e62d198 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2026/02/12 03:14 upstream c22e26bd0906 76a109e2 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2026/01/02 13:37 upstream b69053dd3ffb d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/12/26 13:39 upstream ccd1cdca5cd4 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/12/11 11:46 upstream d358e5254674 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/12/03 05:02 upstream d61f1cc5db79 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/11/27 02:39 upstream 4941a17751c9 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/11/14 03:10 upstream 2ccec5944606 07e030de .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/10/29 05:52 upstream 8eefed8f65cc fd2207e7 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/10/18 10:21 upstream cf1ea8854e4f 1c8c8cd8 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/10/02 10:34 upstream 080ffb4bec4d 267f56c6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/09/30 00:10 upstream e5f0a698b34e 86341da6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/09/13 13:08 upstream 320475fbd590 e2beed91 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/09/04 00:34 upstream ec299e4dc21e 96a211bc .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/08/25 06:05 upstream 69fd6b99b8f8 bf27483f .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/08/11 20:04 upstream 8f5ae30d69d7 c06e8995 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/08/08 23:22 upstream 37816488247d 32a0e5ed .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/07/18 13:31 upstream 6832a9317eee 88248e14 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/07/15 14:59 upstream 155a3c003e55 03fcfc4b .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
2025/07/13 12:26 upstream 3f31a806a62e 3cda49cf .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in audit_log_start / audit_receive
* Struck through repros no longer work on HEAD.