syzbot

 sign-in | mailing list | source | docs
🐞 Open [1646]
Subsystems
🐞 Fixed [6009]
🐞 Invalid [14804]
Missing Backports [135]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KCSAN: data-race in kernfs_refresh_inode / privileged_wrt_inode_uidgid

Status: closed as invalid on 2019/11/19 13:24
Subsystems: kernfs
[Documentation on labels]
First crash: 1918d, last: 1913d
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in kernfs_refresh_inode / privileged_wrt_inode_uidgid (2) lsm 1 1846d 1846d 0/28 auto-closed as invalid on 2020/03/19 22:06

Sample crash report:
==================================================================
BUG: KCSAN: data-race in kernfs_refresh_inode / privileged_wrt_inode_uidgid

write to 0xffff88812a700004 of 4 bytes by task 7134 on cpu 1:
 set_inode_attr fs/kernfs/inode.c:161 [inline]
 kernfs_refresh_inode+0x5f/0x140 fs/kernfs/inode.c:178
 kernfs_iop_permission+0x66/0xa0 fs/kernfs/inode.c:283
 do_inode_permission fs/namei.c:384 [inline]
 inode_permission+0x241/0x3c0 fs/namei.c:449
 may_lookup fs/namei.c:1694 [inline]
 link_path_walk.part.0+0x622/0xa90 fs/namei.c:2074
 link_path_walk fs/namei.c:2259 [inline]
 path_lookupat.isra.0+0x77/0x5a0 fs/namei.c:2307
 filename_lookup+0x145/0x2b0 fs/namei.c:2338
 user_path_at_empty+0x4c/0x70 fs/namei.c:2598
 do_readlinkat+0x84/0x220 fs/stat.c:399
 __do_sys_readlink fs/stat.c:432 [inline]
 __se_sys_readlink fs/stat.c:429 [inline]
 __x64_sys_readlink+0x51/0x70 fs/stat.c:429
 do_syscall_64+0xcc/0x370 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x44/0xa9

read to 0xffff88812a700004 of 4 bytes by task 3889 on cpu 0:
 privileged_wrt_inode_uidgid+0x2b/0x90 kernel/capability.c:489
 capable_wrt_inode_uidgid+0x93/0xa0 kernel/capability.c:506
 generic_permission fs/namei.c:346 [inline]
 generic_permission+0x2b0/0x3d0 fs/namei.c:332
 kernfs_iop_permission+0x7d/0xa0 fs/kernfs/inode.c:286
 do_inode_permission fs/namei.c:384 [inline]
 inode_permission+0x241/0x3c0 fs/namei.c:449
 may_lookup fs/namei.c:1694 [inline]
 link_path_walk.part.0+0x622/0xa90 fs/namei.c:2074
 link_path_walk fs/namei.c:2259 [inline]
 path_lookupat.isra.0+0x77/0x5a0 fs/namei.c:2307
 filename_lookup+0x145/0x2b0 fs/namei.c:2338
 user_path_at_empty+0x4c/0x70 fs/namei.c:2598
 do_readlinkat+0x84/0x220 fs/stat.c:399
 __do_sys_readlink fs/stat.c:432 [inline]
 __se_sys_readlink fs/stat.c:429 [inline]
 __x64_sys_readlink+0x51/0x70 fs/stat.c:429
 do_syscall_64+0xcc/0x370 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x44/0xa9

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 3889 Comm: udevd Not tainted 5.4.0-rc3+ #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================

Crashes (2):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2019/11/03 03:35 https://github.com/google/ktsan.git kcsan 05f2236801fe d603afc9 .config console log report ci2-upstream-kcsan-gce
2019/10/29 08:29 https://github.com/google/ktsan.git kcsan 05f2236801fe 5ea87a66 .config console log report ci2-upstream-kcsan-gce
* Struck through repros no longer work on HEAD.