==================================================================
BUG: KCSAN: data-race in detach_buf_split / virtqueue_add

read to 0xffff888101a0aa48 of 4 bytes by task 18270 on cpu 0:
 virtqueue_add_split drivers/virtio/virtio_ring.c:553 [inline]
 virtqueue_add+0x4b3/0x20e0 drivers/virtio/virtio_ring.c:2133
 virtqueue_add_inbuf+0x53/0x80 drivers/virtio/virtio_ring.c:2212
 request_entropy drivers/char/hw_random/virtio-rng.c:61 [inline]
 copy_data drivers/char/hw_random/virtio-rng.c:74 [inline]
 virtio_read+0x1c5/0x3f0 drivers/char/hw_random/virtio-rng.c:92
 rng_get_data drivers/char/hw_random/core.c:197 [inline]
 rng_dev_read+0x1a7/0x5e0 drivers/char/hw_random/core.c:234
 vfs_read+0x19f/0x5c0 fs/read_write.c:468
 ksys_read+0xeb/0x1a0 fs/read_write.c:613
 __do_sys_read fs/read_write.c:623 [inline]
 __se_sys_read fs/read_write.c:621 [inline]
 __x64_sys_read+0x42/0x50 fs/read_write.c:621
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

read-write to 0xffff888101a0aa48 of 4 bytes by interrupt on cpu 1:
 detach_buf_split+0x2fc/0x570 drivers/virtio/virtio_ring.c:757
 virtqueue_get_buf_ctx_split drivers/virtio/virtio_ring.c:835 [inline]
 virtqueue_get_buf_ctx+0x3c2/0x5b0 drivers/virtio/virtio_ring.c:2327
 virtqueue_get_buf+0x1f/0x30 drivers/virtio/virtio_ring.c:2333
 random_recv_done+0x4c/0x90 drivers/char/hw_random/virtio-rng.c:42
 vring_interrupt+0x150/0x170 drivers/virtio/virtio_ring.c:2501
 __handle_irq_event_percpu+0x91/0x490 kernel/irq/handle.c:158
 handle_irq_event_percpu kernel/irq/handle.c:193 [inline]
 handle_irq_event+0x64/0xf0 kernel/irq/handle.c:210
 handle_edge_irq+0x167/0x590 kernel/irq/chip.c:834
 generic_handle_irq_desc include/linux/irqdesc.h:161 [inline]
 handle_irq arch/x86/kernel/irq.c:238 [inline]
 __common_interrupt+0x3c/0xb0 arch/x86/kernel/irq.c:257
 common_interrupt+0x7a/0x90 arch/x86/kernel/irq.c:247
 asm_common_interrupt+0x26/0x40 arch/x86/include/asm/idtentry.h:636
 avc_search_node security/selinux/avc.c:532 [inline]
 avc_lookup security/selinux/avc.c:560 [inline]
 avc_has_perm_noaudit+0xa5/0x210 security/selinux/avc.c:1153
 selinux_inode_permission+0x2cf/0x410 security/selinux/hooks.c:3064
 security_inode_permission+0x6a/0xa0 security/security.c:2072
 inode_permission+0xbf/0x300 fs/namei.c:536
 may_lookup fs/namei.c:1720 [inline]
 link_path_walk+0x19e/0x7e0 fs/namei.c:2267
 path_openat+0x1a1/0x1d10 fs/namei.c:3789
 do_filp_open+0xf6/0x200 fs/namei.c:3820
 do_sys_openat2+0xb5/0x2e0 fs/open.c:1402
 do_sys_open fs/open.c:1418 [inline]
 __do_sys_openat fs/open.c:1434 [inline]
 __se_sys_openat fs/open.c:1429 [inline]
 __x64_sys_openat+0xf3/0x120 fs/open.c:1429
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

value changed: 0x00000001 -> 0x00000002

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 18279 Comm: syz-executor.4 Tainted: G        W          6.4.0-syzkaller-01761-g6aeadf7896bf #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
==================================================================