syzbot


KCSAN: data-race in delete_from_page_cache_batch / folio_mapping (2)

Status: moderation: reported on 2023/12/07 10:15
Subsystems: ext4
[Documentation on labels]
Reported-by: syzbot+1da3e64037786c0f857e@syzkaller.appspotmail.com
First crash: 560d, last: 6h19m
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in delete_from_page_cache_batch / folio_mapping ext4 75 776d 829d 0/26 auto-closed as invalid on 2022/04/26 14:38

Sample crash report:
==================================================================
BUG: KCSAN: data-race in delete_from_page_cache_batch / folio_mapping

write to 0xffffea0004af4958 of 8 bytes by task 3889 on cpu 0:
 page_cache_delete_batch mm/filemap.c:317 [inline]
 delete_from_page_cache_batch+0x309/0x710 mm/filemap.c:343
 truncate_inode_pages_range+0x1c5/0x6b0 mm/truncate.c:359
 truncate_pagecache_range+0x84/0xa0 mm/truncate.c:846
 ext4_punch_hole+0x354/0x7e0 fs/ext4/inode.c:3960
 ext4_fallocate+0x209/0x1190 fs/ext4/extents.c:4741
 vfs_fallocate+0x380/0x3e0 fs/open.c:330
 madvise_remove mm/madvise.c:989 [inline]
 madvise_vma_behavior mm/madvise.c:1013 [inline]
 madvise_walk_vmas mm/madvise.c:1248 [inline]
 do_madvise+0x783/0x2570 mm/madvise.c:1428
 __do_sys_madvise mm/madvise.c:1441 [inline]
 __se_sys_madvise mm/madvise.c:1439 [inline]
 __x64_sys_madvise+0x61/0x70 mm/madvise.c:1439
 x64_sys_call+0x2825/0x2d30 arch/x86/include/generated/asm/syscalls_64.h:29
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1d0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

read to 0xffffea0004af4958 of 8 bytes by task 3854 on cpu 1:
 folio_mapping+0x96/0x110 mm/util.c:799
 folio_evictable mm/internal.h:256 [inline]
 shrink_active_list+0x249/0x770 mm/vmscan.c:2036
 shrink_list mm/vmscan.c:2157 [inline]
 shrink_lruvec+0x8b8/0x1640 mm/vmscan.c:5687
 shrink_node_memcgs mm/vmscan.c:5873 [inline]
 shrink_node+0xa78/0x15a0 mm/vmscan.c:5908
 shrink_zones mm/vmscan.c:6152 [inline]
 do_try_to_free_pages+0x3cc/0xca0 mm/vmscan.c:6214
 try_to_free_mem_cgroup_pages+0x1eb/0x4e0 mm/vmscan.c:6529
 try_charge_memcg+0x279/0xd10 mm/memcontrol.c:2783
 obj_cgroup_charge_pages+0xbd/0x1d0 mm/memcontrol.c:3302
 __memcg_kmem_charge_page+0x9d/0x170 mm/memcontrol.c:3328
 __alloc_pages+0x1bc/0x360 mm/page_alloc.c:4592
 alloc_pages_mpol+0xb1/0x1e0 mm/mempolicy.c:2264
 alloc_pages+0xe1/0x100 mm/mempolicy.c:2335
 vm_area_alloc_pages mm/vmalloc.c:3561 [inline]
 __vmalloc_area_node mm/vmalloc.c:3637 [inline]
 __vmalloc_node_range+0x6f2/0xee0 mm/vmalloc.c:3818
 kvmalloc_node+0x121/0x170 mm/util.c:659
 kvmalloc include/linux/slab.h:766 [inline]
 kvzalloc include/linux/slab.h:774 [inline]
 ip_set_alloc+0x1f/0x30 net/netfilter/ipset/ip_set_core.c:255
 hash_netiface_create+0x277/0x740 net/netfilter/ipset/ip_set_hash_gen.h:1568
 ip_set_create+0x359/0x8a0 net/netfilter/ipset/ip_set_core.c:1103
 nfnetlink_rcv_msg+0x4a9/0x570 net/netfilter/nfnetlink.c:302
 netlink_rcv_skb+0x12c/0x230 net/netlink/af_netlink.c:2559
 nfnetlink_rcv+0x170/0x13e0 net/netfilter/nfnetlink.c:659
 netlink_unicast_kernel net/netlink/af_netlink.c:1335 [inline]
 netlink_unicast+0x58d/0x660 net/netlink/af_netlink.c:1361
 netlink_sendmsg+0x5d3/0x6e0 net/netlink/af_netlink.c:1905
 sock_sendmsg_nosec net/socket.c:730 [inline]
 __sock_sendmsg+0x140/0x180 net/socket.c:745
 ____sys_sendmsg+0x312/0x410 net/socket.c:2584
 ___sys_sendmsg net/socket.c:2638 [inline]
 __sys_sendmsg+0x1e9/0x280 net/socket.c:2667
 __do_sys_sendmsg net/socket.c:2676 [inline]
 __se_sys_sendmsg net/socket.c:2674 [inline]
 __x64_sys_sendmsg+0x46/0x50 net/socket.c:2674
 x64_sys_call+0xae9/0x2d30 arch/x86/include/generated/asm/syscalls_64.h:47
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1d0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0xffff8881085cbdf0 -> 0x0000000000000000

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 3854 Comm: syz-executor.1 Not tainted 6.9.0-rc7-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
==================================================================

Crashes (89):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/05/06 17:38 upstream dd5a440a31fa d884b519 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/05/02 01:04 upstream 0106679839f7 3ba885bc .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/04/30 02:48 upstream b947cc5bf6d7 f10afd69 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/04/17 23:23 upstream 4b6b51322118 acc528cb .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/04/17 00:09 upstream 96fca68c4fbf 18f6e127 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/04/05 03:05 upstream c88b9b4cde17 0ee3535e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/04/01 23:53 upstream 026e680b0a08 6baf5069 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/03/31 00:58 upstream 486291a0e624 6baf5069 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/03/25 13:52 upstream 4cece7649650 0ea90952 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/03/16 13:11 upstream 82affc97affb d615901c .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/03/12 17:39 upstream 855684c7d938 c35c26ec .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/03/01 10:48 upstream 87adedeba51a 352ab904 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/02/26 14:40 upstream d206a76d7d27 da36a36b .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/02/22 03:09 upstream 39133352cbed 345111b5 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/02/21 05:39 upstream fca7526b7d89 3af7dd65 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/02/18 20:48 upstream c02197fc9076 578f7538 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/02/01 17:24 upstream 6764c317b6bb 81024119 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/01/30 01:21 upstream 41bccc98fb79 991a98f4 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/01/27 02:06 upstream 3a5879d495b2 cc4a4020 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/01/26 11:07 upstream ecb1b8288dc7 cc4a4020 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/01/16 15:59 upstream 052d534373b7 2a7bcc7f .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/01/11 14:08 upstream de927f6c0b07 00f3cc59 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/01/05 11:48 upstream 1f874787ed9a 28c42cff .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/01/05 01:49 upstream 5eff55d725a4 28c42cff .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2024/01/03 19:22 upstream 610a9b8f49fb 28c42cff .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/12/26 08:48 upstream fbafc3e621c3 fb427a07 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/12/23 08:10 upstream 5254c0cbc92d fb427a07 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/12/20 07:24 upstream 55cb5f43689d 3ad490ea .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/11/26 19:22 upstream 090472ed9c92 5b429f39 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/11/07 21:26 upstream 13d88ac54ddd 83211397 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/11/04 18:00 upstream 90b0c2b2edd1 500bfdc4 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/10/31 03:23 upstream 14ab6d425e80 b5729d82 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/10/30 09:57 upstream ffc253263a13 3c418d72 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/10/25 04:23 upstream d88520ad73b7 17e6d526 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/10/22 22:19 upstream 1acfd2bd3f0d 361b23dc .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/10/21 06:44 upstream c8045b4a33a5 361b23dc .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/10/20 14:05 upstream ce55c22ec8b2 a42250d2 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/10/14 17:17 upstream 8cb1f10d8c4b f757a323 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/10/12 10:32 upstream 401644852d0b 1b231e3c .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/10/10 05:22 upstream 94f6f0550c62 c9be5398 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/09/30 06:12 upstream 9f3ebbef746f 8e26a358 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/09/25 01:34 upstream 8a511e7efc5a 0b6a67ac .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/09/22 08:39 upstream 27bbf45eae9c 0b6a67ac .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/09/21 06:37 upstream 42dc814987c1 0b6a67ac .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/09/16 01:31 upstream e42bebf6db29 0b6a67ac .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/09/10 21:12 upstream 1548b060d6f3 6654cf89 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/09/09 06:09 upstream 32bf43e4efdb 6654cf89 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/09/04 11:06 upstream 708283abf896 696ea0d2 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/08/29 23:40 upstream f97e18a3f2fb ce731e62 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/08/25 14:24 upstream 4f9e7fabf864 03d9c195 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/08/21 00:01 upstream 706a74159504 d216d8a0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/03/27 07:48 upstream 0ec57cfa721f fbf0499a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/03/26 05:07 upstream 4bdec23f971b fbf0499a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/03/21 06:14 upstream 7d31677bb7b1 7939252e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/02/11 16:14 upstream 420b2d431d18 93e26d60 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/02/08 03:44 upstream 513c1a3d3f19 15c3d445 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/02/01 15:47 upstream c0b67534c95c 9a6f477c .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/01/28 23:04 upstream 5af6ce704936 9dfcf09c .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/01/27 17:16 upstream 7c46948a6e9c 9dfcf09c .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2023/01/14 07:01 upstream d9fc1511728c 529798b0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2022/12/29 06:50 upstream 1b929c02afd3 44712fbc .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2022/12/01 00:00 upstream 04aa64375f48 4c2a66e8 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2022/11/09 21:56 upstream f141df371335 bebca8b7 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2022/11/08 19:37 upstream 59f2f4b8a757 060f945e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2022/11/02 10:18 upstream f526d6a82242 08977f5d .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2022/10/31 19:22 upstream 30a0b95b1335 2a71366b .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2022/10/27 18:33 upstream b229b6ca5abb 5c716ff6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2022/10/24 20:19 upstream 247f34f7b803 faae2fda .config console log report info [disk image] [vmlinux] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
2022/10/24 01:06 upstream d47136c28015 23bf86af .config console log report info [disk image] [vmlinux] ci2-upstream-kcsan-gce KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
* Struck through repros no longer work on HEAD.