==================================================================
BUG: KCSAN: data-race in selinux_cred_prepare / selinux_inode_permission

write to 0xffff8881138be2a0 of 4 bytes by task 18578 on cpu 0:
 task_avdcache_search security/selinux/hooks.c:3146 [inline]
 selinux_inode_permission+0x3ac/0x740 security/selinux/hooks.c:3221
 security_inode_permission+0x6d/0xb0 security/security.c:2324
 inode_permission+0x106/0x310 fs/namei.c:601
 may_lookup fs/namei.c:1836 [inline]
 link_path_walk+0x162/0x900 fs/namei.c:2445
 path_openat+0x1de/0x2170 fs/namei.c:4042
 do_filp_open+0x109/0x230 fs/namei.c:4073
 io_openat2+0x272/0x390 io_uring/openclose.c:142
 io_openat+0x1b/0x30 io_uring/openclose.c:179
 __io_issue_sqe+0xfb/0x2e0 io_uring/io_uring.c:1773
 io_issue_sqe+0x53/0x970 io_uring/io_uring.c:1796
 io_queue_sqe io_uring/io_uring.c:2025 [inline]
 io_submit_sqe io_uring/io_uring.c:2284 [inline]
 io_submit_sqes+0x664/0x1050 io_uring/io_uring.c:2397
 __do_sys_io_uring_enter io_uring/io_uring.c:3464 [inline]
 __se_sys_io_uring_enter+0x1c1/0x1b70 io_uring/io_uring.c:3398
 __x64_sys_io_uring_enter+0x78/0x90 io_uring/io_uring.c:3398
 x64_sys_call+0x2de1/0x2ff0 arch/x86/include/generated/asm/syscalls_64.h:427
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xd2/0x200 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

read to 0xffff8881138be280 of 104 bytes by task 18587 on cpu 1:
 selinux_cred_prepare+0x60/0x70 security/selinux/hooks.c:4163
 security_prepare_creds+0xbb/0x120 security/security.c:3276
 prepare_creds+0x34a/0x4c0 kernel/cred.c:242
 copy_creds+0x8f/0x3f0 kernel/cred.c:312
 copy_process+0x658/0x2000 kernel/fork.c:2037
 kernel_clone+0x16c/0x5c0 kernel/fork.c:2602
 __do_sys_clone kernel/fork.c:2745 [inline]
 __se_sys_clone kernel/fork.c:2729 [inline]
 __x64_sys_clone+0xe6/0x120 kernel/fork.c:2729
 x64_sys_call+0x119c/0x2ff0 arch/x86/include/generated/asm/syscalls_64.h:57
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xd2/0x200 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 UID: 0 PID: 18587 Comm: syz.9.10202 Not tainted 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(voluntary) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
==================================================================