syzbot

 sign-in | mailing list | source | docs | 🏰
🐞 Open [1335]
Subsystems
🐞 Fixed [7117]
🐞 Invalid [18797]
Missing Backports [220]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
✨ AI
💬 Send us feedback

KCSAN: data-race in xas_find_marked / xas_set_mark

Status: moderation: reported on 2019/12/05 04:45
Subsystems: mm fs
Labels: prio:high
[Documentation on labels]
Reported-by: syzbot+238e9bb046564c2c4d4a@syzkaller.appspotmail.com
First crash: 2406d, last: 1d12h
✨ AI Jobs (3)
ID Workflow Result Correct Bug Created Started Finished Revision Error
b98fef11-9ef5-47c9-a142-3601ceea2de5 assessment-security DenialOfService: ❌ Exploitable: ❌ FilesystemTrigger: ❌ NetworkTrigger: ❌ PeripheralTrigger: ❌ RemoteTrigger: ❌ Unprivileged: ✅ UserNamespace: ✅ VMGuestTrigger: ❌ VMHostTrigger: ❌ KCSAN: data-race in xas_find_marked / xas_set_mark 2026/05/20 09:04 2026/05/20 09:04 2026/05/20 09:07 0909d65fc692e54fa1900b68b476e89207bc7f34
3e104a62-55fc-417d-ba3c-b8f229096109 repro 💥 KCSAN: data-race in xas_find_marked / xas_set_mark 2026/03/10 12:18 2026/03/10 12:18 2026/03/10 12:18 5c03941b7fba0fd3b0326afc981322c89fe9ba52+ unexpected git log output: "warning: unable to access '/root/.config/git/attributes': Permission denied\nwarning: unable to access '/root/.config/git/attributes': Permission denied\n1f318b96cc84d7c2ab792fcc0bfd42a7ca890681\nLinux 7.0-rc3\ntorvalds@linux-foundation.org\nLinus Torvalds\nSun Mar 8 16:56:54 2026 -0700\nfc9f248d8c591454e257edd54ac4085d84f11e6a\nSun Mar 8 16:56:54 2026 -0700\n"
c3a63bcc-2629-402a-9c5c-93976384a243 assessment-kcsan Benign: ❌ KCSAN: data-race in xas_find_marked / xas_set_mark 2026/01/12 18:32 2026/01/12 18:32 2026/01/12 18:38 dc57dbf3ee402bd8ad9c3037d56ee9d9940a9bc6

Sample crash report:
==================================================================
BUG: KCSAN: data-race in xas_find_marked / xas_set_mark

read-write to 0xffff88811ad586c0 of 8 bytes by task 30026 on cpu 1:
 instrument_read_write include/linux/instrumented.h:56 [inline]
 __instrument_read_write_bitop include/asm-generic/bitops/instrumented-non-atomic.h:84 [inline]
 ___test_and_set_bit include/asm-generic/bitops/instrumented-non-atomic.h:99 [inline]
 node_set_mark lib/xarray.c:95 [inline]
 xas_set_mark+0x82/0x140 lib/xarray.c:893
 __folio_start_writeback+0x17b/0x370 mm/page-writeback.c:3011
 ext4_bio_write_folio+0x5a6/0xa20 fs/ext4/page-io.c:603
 mpage_submit_folio fs/ext4/inode.c:2103 [inline]
 mpage_process_page_bufs+0x4a1/0x620 fs/ext4/inode.c:2214
 mpage_prepare_extent_to_map+0x7d4/0xc50 fs/ext4/inode.c:2753
 ext4_do_writepages+0x6fe/0x2770 fs/ext4/inode.c:2894
 ext4_writepages+0x18f/0x320 fs/ext4/inode.c:3042
 do_writepages+0x1c6/0x310 mm/page-writeback.c:2571
 filemap_writeback mm/filemap.c:388 [inline]
 filemap_fdatawrite_range mm/filemap.c:413 [inline]
 file_write_and_wait_range+0x178/0x2f0 mm/filemap.c:787
 mmb_fsync_noflush+0x48/0x140 fs/buffer.c:645
 ext4_fsync_nojournal fs/ext4/fsync.c:92 [inline]
 ext4_sync_file+0x1f1/0x6b0 fs/ext4/fsync.c:160
 vfs_fsync_range+0xc5/0xe0 fs/sync.c:186
 generic_write_sync include/linux/fs.h:2654 [inline]
 ext4_buffered_write_iter+0x447/0x4c0 fs/ext4/file.c:322
 ext4_dio_write_iter fs/ext4/file.c:625 [inline]
 ext4_file_write_iter+0xbff/0xfa0 fs/ext4/file.c:733
 iter_file_splice_write+0x6c4/0xa80 fs/splice.c:736
 do_splice_from fs/splice.c:936 [inline]
 direct_splice_actor+0x156/0x2a0 fs/splice.c:1159
 splice_direct_to_actor+0x311/0x670 fs/splice.c:1103
 do_splice_direct_actor fs/splice.c:1202 [inline]
 do_splice_direct+0x119/0x1a0 fs/splice.c:1228
 do_sendfile+0x382/0x650 fs/read_write.c:1372
 __do_sys_sendfile64 fs/read_write.c:1433 [inline]
 __se_sys_sendfile64 fs/read_write.c:1419 [inline]
 __x64_sys_sendfile64+0x105/0x150 fs/read_write.c:1419
 x64_sys_call+0x2dc4/0x3020 arch/x86/include/generated/asm/syscalls_64.h:41
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x12c/0x3b0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

read to 0xffff88811ad586c0 of 8 bytes by task 30040 on cpu 0:
 xas_find_chunk include/linux/xarray.h:1752 [inline]
 xas_find_marked+0x213/0x620 lib/xarray.c:1510
 find_get_entry mm/filemap.c:2070 [inline]
 filemap_get_folios_tag+0xfa/0x430 mm/filemap.c:2338
 __filemap_fdatawait_range mm/filemap.c:524 [inline]
 filemap_fdatawait_range+0x88/0x1e0 mm/filemap.c:559
 filemap_fdatawait include/linux/pagemap.h:51 [inline]
 __writeback_single_inode+0xda/0x650 fs/fs-writeback.c:1774
 writeback_single_inode+0x16d/0x3f0 fs/fs-writeback.c:1883
 sync_inode_metadata+0x6e/0xa0 fs/fs-writeback.c:2994
 mmb_fsync_noflush+0xfa/0x140 fs/buffer.c:656
 ext4_fsync_nojournal fs/ext4/fsync.c:92 [inline]
 ext4_sync_file+0x1f1/0x6b0 fs/ext4/fsync.c:160
 vfs_fsync_range+0xc5/0xe0 fs/sync.c:186
 generic_write_sync include/linux/fs.h:2654 [inline]
 ext4_buffered_write_iter+0x447/0x4c0 fs/ext4/file.c:322
 ext4_dio_write_iter fs/ext4/file.c:625 [inline]
 ext4_file_write_iter+0xbff/0xfa0 fs/ext4/file.c:733
 iter_file_splice_write+0x6c4/0xa80 fs/splice.c:736
 do_splice_from fs/splice.c:936 [inline]
 direct_splice_actor+0x156/0x2a0 fs/splice.c:1159
 splice_direct_to_actor+0x311/0x670 fs/splice.c:1103
 do_splice_direct_actor fs/splice.c:1202 [inline]
 do_splice_direct+0x119/0x1a0 fs/splice.c:1228
 do_sendfile+0x382/0x650 fs/read_write.c:1372
 __do_sys_sendfile64 fs/read_write.c:1433 [inline]
 __se_sys_sendfile64 fs/read_write.c:1419 [inline]
 __x64_sys_sendfile64+0x105/0x150 fs/read_write.c:1419
 x64_sys_call+0x2dc4/0x3020 arch/x86/include/generated/asm/syscalls_64.h:41
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x12c/0x3b0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0x00000000000f0000 -> 0x00000000003f0000

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 UID: 0 PID: 30040 Comm: syz.8.7616 Tainted: G        W           syzkaller #0 PREEMPT(full) 
Tainted: [W]=WARN
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
==================================================================

Crashes (2545):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2026/05/24 05:58 upstream eed108edc117 c69befb3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/05/23 10:23 upstream 79bd2dded182 c69befb3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/05/22 04:40 upstream 6779b50faa56 70ae9b03 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/05/21 18:02 upstream 758c807bb943 e195359d .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/05/21 14:00 upstream 8bc67e4db64a e195359d .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/05/21 08:55 upstream 8bc67e4db64a 41b8c833 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/05/20 02:14 upstream 27fa82620cba 0909d65f .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/05/18 04:42 upstream e5d505e3664b de5aae85 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/05/17 15:32 upstream 6916d5703ddf de5aae85 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/05/16 18:20 upstream d458a240344c a15a64a6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/05/15 10:31 upstream 70eda68668d1 9cd3beaa .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/05/13 09:59 upstream 1d5dcaa3bd65 fec2a7ee .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/05/11 17:46 upstream 5d6919055dec 845acb1c .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/05/08 16:23 upstream 917719c412c4 b2988c17 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/04/19 05:22 upstream eb5249b12507 303e2802 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/04/17 10:57 upstream 3cd8b194bf34 de0a551d .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/04/15 13:23 upstream 1f5ffc672165 c441f497 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/04/10 19:32 upstream 7c6c4ed80b87 38c8e246 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/04/09 10:12 upstream 7f87a5ea75f0 38c8e246 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/04/05 20:45 upstream 1791c390149f 4440e7c2 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/04/03 16:06 upstream d8a9a4b11a13 4440e7c2 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/04/02 18:36 upstream 5619b098e2fb 91bc79b0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/04/02 10:32 upstream 9147566d8016 91bc79b0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/04/01 22:29 upstream 9147566d8016 0cb124d5 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/04/01 11:15 upstream dbf00d8d23b4 9a1f7828 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/31 00:09 upstream d0c3bcd5b897 d0af506e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/29 06:26 upstream cbfffcca2bf0 b5ceaad2 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/28 12:27 upstream 7df48e363130 356bdfc9 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/27 21:30 upstream 7df48e363130 74a13a23 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/27 18:08 upstream 46b513250491 74a13a23 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/26 06:21 upstream d2a43e7f89da c6143aac .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/25 11:39 upstream bbeb83d3182a 8ee77f7d .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/24 22:22 upstream 24f9515de877 74e70d19 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/18 16:28 upstream a989fde763f4 0199f9a1 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/11 02:22 upstream b4f0dd314b39 86914af9 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/10 18:31 upstream 1f318b96cc84 4683d576 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/09 20:07 upstream 1f318b96cc84 176bead5 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/09 10:35 upstream 1f318b96cc84 5cb44a80 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/07 01:47 upstream 651690480a96 5cb44a80 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/04 09:19 upstream 0031c06807cf 4180d919 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/03/03 18:19 upstream af4e9ef3d784 4180d919 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/02/25 15:57 upstream 7dff99b35460 94a9671e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/02/25 00:40 upstream 7dff99b35460 787dfb7c .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/02/25 00:40 upstream 7dff99b35460 787dfb7c .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/02/23 16:51 upstream 6de23f81a5e0 6beca497 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/02/23 02:34 upstream 32a92f8c8932 6e7b5511 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/02/22 04:42 upstream fa5c82f4d2bb 6e7b5511 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/02/18 16:15 upstream 2961f841b025 77d4d919 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2026/01/12 01:17 upstream 9c7ef209cd0f d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in xas_find_marked / xas_set_mark
2021/01/16 09:14 upstream 1d94330a437a 65a7a854 .config console log report info ci2-upstream-kcsan-gce
2019/10/23 02:27 https://github.com/google/ktsan.git kcsan 05f2236801fe d0686497 .config console log report ci2-upstream-kcsan-gce
* Struck through repros no longer work on HEAD.