syzbot

 sign-in | mailing list | source | docs
🐞 Open [1653]
Subsystems
🐞 Fixed [6097]
🐞 Invalid [15238]
Missing Backports [163]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KCSAN: data-race in key_reject_and_link / keyring_gc_check_iterator

Status: auto-obsoleted due to no activity on 2023/10/27 16:50
Subsystems: keyrings lsm
[Documentation on labels]
First crash: 544d, last: 544d

Sample crash report:
==================================================================
BUG: KCSAN: data-race in key_reject_and_link / keyring_gc_check_iterator

write to 0xffff888103d08e58 of 8 bytes by task 8172 on cpu 0:
 key_reject_and_link+0x18b/0x350 security/keys/key.c:609
 key_negate_and_link include/linux/key-type.h:187 [inline]
 complete_request_key security/keys/request_key.c:67 [inline]
 call_sbin_request_key+0x6a0/0x700 security/keys/request_key.c:216
 construct_key security/keys/request_key.c:247 [inline]
 construct_key_and_link security/keys/request_key.c:519 [inline]
 request_key_and_link+0x878/0xcc0 security/keys/request_key.c:653
 __do_sys_request_key security/keys/keyctl.c:222 [inline]
 __se_sys_request_key+0x1d7/0x290 security/keys/keyctl.c:167
 __x64_sys_request_key+0x55/0x60 security/keys/keyctl.c:167
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

read to 0xffff888103d08e58 of 8 bytes by task 28 on cpu 1:
 key_is_dead security/keys/internal.h:228 [inline]
 keyring_gc_check_iterator+0x64/0xd0 security/keys/keyring.c:1707
 assoc_array_subtree_iterate lib/assoc_array.c:59 [inline]
 assoc_array_iterate+0xa9/0x210 lib/assoc_array.c:142
 keyring_gc+0x7e/0xf0 security/keys/keyring.c:1728
 key_garbage_collector+0x3c7/0x8e0 security/keys/gc.c:353
 process_one_work kernel/workqueue.c:2630 [inline]
 process_scheduled_works+0x5b8/0xa30 kernel/workqueue.c:2703
 worker_thread+0x525/0x730 kernel/workqueue.c:2784
 kthread+0x1d7/0x210 kernel/kthread.c:388
 ret_from_fork+0x48/0x60 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:304

value changed: 0x0000000000000000 -> 0x00000000650dc5a9

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 28 Comm: kworker/1:1 Not tainted 6.6.0-rc2-syzkaller-00244-g27bbf45eae9c #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
Workqueue: events key_garbage_collector
==================================================================

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/09/22 16:48 upstream 27bbf45eae9c 0b6a67ac .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in key_reject_and_link / keyring_gc_check_iterator
* Struck through repros no longer work on HEAD.