syzbot

 sign-in | mailing list | source | docs
🐞 Open [1282]
Subsystems
🐞 Fixed [5729]
🐞 Invalid [13965]
Missing Backports [95]
Kernel Health Bugs/Month Bug Lifetimes Fuzzing Crashes
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KCSAN: data-race in fsnotify_detach_mark / inotify_handle_inode_event (2)

Status: moderation: reported on 2024/10/13 04:50
Subsystems: fs
[Documentation on labels]
Reported-by: syzbot+b843bae81ed3042a49b9@syzkaller.appspotmail.com
First crash: 2d19h, last: 2d19h
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in fsnotify_detach_mark / inotify_handle_inode_event fs 242 49d 313d 0/28 auto-obsoleted due to no activity on 2024/10/01 14:35

Sample crash report:
loop1: detected capacity change from 0 to 512
EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
loop1: detected capacity change from 0 to 512
==================================================================
BUG: KCSAN: data-race in fsnotify_detach_mark / inotify_handle_inode_event

write to 0xffff888103fe2b34 of 4 bytes by task 6326 on cpu 1:
 fsnotify_detach_mark+0xba/0x160 fs/notify/mark.c:541
 fsnotify_destroy_mark+0x6e/0x140 fs/notify/mark.c:583
 __do_sys_inotify_rm_watch fs/notify/inotify/inotify_user.c:816 [inline]
 __se_sys_inotify_rm_watch+0xf1/0x170 fs/notify/inotify/inotify_user.c:793
 __x64_sys_inotify_rm_watch+0x31/0x40 fs/notify/inotify/inotify_user.c:793
 x64_sys_call+0x1ae0/0x2d60 arch/x86/include/generated/asm/syscalls_64.h:256
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

read to 0xffff888103fe2b34 of 4 bytes by task 13559 on cpu 0:
 inotify_handle_inode_event+0x2c2/0x310 fs/notify/inotify/inotify_fsnotify.c:132
 fsnotify_handle_inode_event+0x18e/0x1f0 fs/notify/fsnotify.c:298
 fsnotify_handle_event fs/notify/fsnotify.c:350 [inline]
 send_to_group fs/notify/fsnotify.c:398 [inline]
 fsnotify+0x10b0/0x11a0 fs/notify/fsnotify.c:607
 __fsnotify_parent+0x285/0x380 fs/notify/fsnotify.c:264
 fsnotify_parent include/linux/fsnotify.h:96 [inline]
 fsnotify_file include/linux/fsnotify.h:131 [inline]
 fsnotify_close include/linux/fsnotify.h:412 [inline]
 __fput+0x5a6/0x6d0 fs/file_table.c:417
 __fput_sync+0x43/0x60 fs/file_table.c:516
 __do_sys_close fs/open.c:1565 [inline]
 __se_sys_close+0xf9/0x1a0 fs/open.c:1550
 __x64_sys_close+0x1f/0x30 fs/open.c:1550
 x64_sys_call+0x25cb/0x2d60 arch/x86/include/generated/asm/syscalls_64.h:4
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0x00000003 -> 0x00000000

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 UID: 0 PID: 13559 Comm: syz.1.2944 Not tainted 6.12.0-rc2-syzkaller-00305-g7234e2ea0edd #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
==================================================================
netlink: 60 bytes leftover after parsing attributes in process `syz.1.2944'.

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/10/13 04:49 upstream 7234e2ea0edd 084d8178 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in fsnotify_detach_mark / inotify_handle_inode_event
* Struck through repros no longer work on HEAD.