syzbot

 sign-in | mailing list | source | docs
🐞 Open [1499]
Subsystems
🐞 Fixed [6510]
🐞 Invalid [16542]
Missing Backports [204]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KCSAN: data-race in page_cache_sync_ra / page_cache_sync_ra (3)

Status: moderation: reported on 2025/08/10 06:19
Subsystems: fs mm
[Documentation on labels]
Reported-by: syzbot+304b197a7d8f4ed89c75@syzkaller.appspotmail.com
First crash: 4d00h, last: 4d00h
Similar bugs (2)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KCSAN: data-race in page_cache_sync_ra / page_cache_sync_ra (2) ext4 6 1 137d 137d 0/29 auto-obsoleted due to no activity on 2025/05/24 13:53
upstream KCSAN: data-race in page_cache_sync_ra / page_cache_sync_ra fs mm 6 3 343d 372d 0/29 auto-obsoleted due to no activity on 2024/10/09 07:18

Sample crash report:
EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
EXT4-fs (loop5): 1 truncate cleaned up
EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
==================================================================
BUG: KCSAN: data-race in page_cache_sync_ra / page_cache_sync_ra

write to 0xffff8881227add50 of 8 bytes by task 5685 on cpu 0:
 page_cache_sync_ra+0x434/0x6c0 mm/readahead.c:584
 filemap_get_pages+0x2d0/0x1150 mm/filemap.c:2603
 filemap_splice_read+0x3a9/0x740 mm/filemap.c:2991
 ext4_file_splice_read+0x8f/0xb0 fs/ext4/file.c:158
 do_splice_read fs/splice.c:979 [inline]
 splice_direct_to_actor+0x26f/0x680 fs/splice.c:1083
 do_splice_direct_actor fs/splice.c:1201 [inline]
 do_splice_direct+0xda/0x150 fs/splice.c:1227
 do_sendfile+0x380/0x650 fs/read_write.c:1370
 __do_sys_sendfile64 fs/read_write.c:1431 [inline]
 __se_sys_sendfile64 fs/read_write.c:1417 [inline]
 __x64_sys_sendfile64+0x105/0x150 fs/read_write.c:1417
 x64_sys_call+0x2bb0/0x2ff0 arch/x86/include/generated/asm/syscalls_64.h:41
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xd2/0x200 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

write to 0xffff8881227add50 of 8 bytes by task 5682 on cpu 1:
 page_cache_sync_ra+0x434/0x6c0 mm/readahead.c:584
 filemap_get_pages+0x2d0/0x1150 mm/filemap.c:2603
 filemap_splice_read+0x3a9/0x740 mm/filemap.c:2991
 ext4_file_splice_read+0x8f/0xb0 fs/ext4/file.c:158
 do_splice_read fs/splice.c:979 [inline]
 splice_direct_to_actor+0x26f/0x680 fs/splice.c:1083
 do_splice_direct_actor fs/splice.c:1201 [inline]
 do_splice_direct+0xda/0x150 fs/splice.c:1227
 do_sendfile+0x380/0x650 fs/read_write.c:1370
 __do_sys_sendfile64 fs/read_write.c:1431 [inline]
 __se_sys_sendfile64 fs/read_write.c:1417 [inline]
 __x64_sys_sendfile64+0x105/0x150 fs/read_write.c:1417
 x64_sys_call+0x2bb0/0x2ff0 arch/x86/include/generated/asm/syscalls_64.h:41
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xd2/0x200 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0x0000000000000000 -> 0x0000000000000001

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 UID: 0 PID: 5682 Comm: syz.5.738 Not tainted 6.16.0-syzkaller-12256-g561c80369df0 #0 PREEMPT(voluntary) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
==================================================================

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/08/10 06:18 upstream 561c80369df0 32a0e5ed .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in page_cache_sync_ra / page_cache_sync_ra
* Struck through repros no longer work on HEAD.