syzbot

 sign-in | mailing list | source | docs
🐞 Open [1454]
Subsystems
🐞 Fixed [6864]
🐞 Invalid [17811]
Missing Backports [226]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KCSAN: data-race in kernfs_iop_getattr / kernfs_iop_permission

Status: moderation: reported on 2026/01/11 21:46
Subsystems: kernfs
[Documentation on labels]
Reported-by: syzbot+d00c45ee11ee2214b468@syzkaller.appspotmail.com
First crash: 5d00h, last: 5d00h

Sample crash report:
==================================================================
BUG: KCSAN: data-race in kernfs_iop_getattr / kernfs_iop_permission

write to 0xffff888100428c78 of 4 bytes by task 13723 on cpu 0:
 inode_set_atime_to_ts include/linux/fs.h:1624 [inline]
 set_inode_attr fs/kernfs/inode.c:163 [inline]
 kernfs_refresh_inode fs/kernfs/inode.c:179 [inline]
 kernfs_iop_getattr+0x12f/0x220 fs/kernfs/inode.c:194
 vfs_getattr_nosec+0x146/0x1e0 fs/stat.c:213
 vfs_getattr fs/stat.c:262 [inline]
 vfs_fstat fs/stat.c:281 [inline]
 vfs_fstatat+0xd8/0x170 fs/stat.c:373
 __do_sys_newfstatat fs/stat.c:542 [inline]
 __se_sys_newfstatat+0x55/0x260 fs/stat.c:536
 __x64_sys_newfstatat+0x55/0x70 fs/stat.c:536
 x64_sys_call+0x111f/0x3000 arch/x86/include/generated/asm/syscalls_64.h:263
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xca/0x2b0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

write to 0xffff888100428c78 of 4 bytes by task 12274 on cpu 1:
 inode_set_atime_to_ts include/linux/fs.h:1624 [inline]
 set_inode_attr fs/kernfs/inode.c:163 [inline]
 kernfs_refresh_inode fs/kernfs/inode.c:179 [inline]
 kernfs_iop_permission+0x12b/0x220 fs/kernfs/inode.c:290
 do_inode_permission fs/namei.c:526 [inline]
 inode_permission+0x2de/0x3c0 fs/namei.c:596
 lookup_inode_permission_may_exec fs/namei.c:636 [inline]
 may_lookup fs/namei.c:1923 [inline]
 link_path_walk+0xaf6/0xe30 fs/namei.c:2545
 path_parentat fs/namei.c:2801 [inline]
 __filename_parentat+0x15c/0x3f0 fs/namei.c:2825
 filename_parentat fs/namei.c:2843 [inline]
 do_unlinkat+0x94/0x4b0 fs/namei.c:5417
 __do_sys_unlink fs/namei.c:5483 [inline]
 __se_sys_unlink fs/namei.c:5481 [inline]
 __x64_sys_unlink+0x2e/0x40 fs/namei.c:5481
 x64_sys_call+0x2f48/0x3000 arch/x86/include/generated/asm/syscalls_64.h:88
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xca/0x2b0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0x1899495d -> 0x2354621a

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 UID: 0 PID: 12274 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
==================================================================

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2026/01/11 21:45 upstream 755bc1335e3b d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in kernfs_iop_getattr / kernfs_iop_permission
* Struck through repros no longer work on HEAD.