syzbot

==================================================================
BUG: KCSAN: data-race in file_write_and_wait_range / xas_set_mark

write to 0xffff8881005ec7f4 of 4 bytes by task 4407 on cpu 0:
 xa_mark_set lib/xarray.c:71 [inline]
 xas_set_mark+0x12b/0x140 lib/xarray.c:900
 tag_pages_for_writeback+0xe3/0x2e0 mm/page-writeback.c:2365
 writeback_iter+0x332/0x7c0 mm/page-writeback.c:2502
 __mpage_writepages+0x8a/0x1370 fs/mpage.c:675
 mpage_writepages include/linux/mpage.h:27 [inline]
 fat_writepages+0x26/0x30 fs/fat/inode.c:200
 do_writepages+0x1b9/0x300 mm/page-writeback.c:2571
 filemap_writeback mm/filemap.c:388 [inline]
 filemap_fdatawrite_range mm/filemap.c:413 [inline]
 file_write_and_wait_range+0x178/0x2f0 mm/filemap.c:787
 mmb_fsync_noflush+0x48/0x140 fs/buffer.c:652
 fat_file_fsync+0x98/0x110 fs/fat/file.c:193
 vfs_fsync_range+0xc5/0xe0 fs/sync.c:186
 generic_write_sync include/linux/fs.h:2666 [inline]
 generic_file_write_iter+0x1a3/0x1f0 mm/filemap.c:4483
 iter_file_splice_write+0x6a0/0xa60 fs/splice.c:736
 do_splice_from fs/splice.c:936 [inline]
 direct_splice_actor+0x156/0x280 fs/splice.c:1159
 splice_direct_to_actor+0x2f9/0x680 fs/splice.c:1103
 do_splice_direct_actor fs/splice.c:1202 [inline]
 do_splice_direct+0x119/0x1a0 fs/splice.c:1228
 do_sendfile+0x37d/0x640 fs/read_write.c:1371
 __do_sys_sendfile64 fs/read_write.c:1432 [inline]
 __se_sys_sendfile64 fs/read_write.c:1418 [inline]
 __x64_sys_sendfile64+0x105/0x150 fs/read_write.c:1418
 x64_sys_call+0x2dc4/0x3020 arch/x86/include/generated/asm/syscalls_64.h:41
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x136/0x3c0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

read to 0xffff8881005ec7f4 of 4 bytes by task 4413 on cpu 1:
 xa_marked include/linux/xarray.h:424 [inline]
 mapping_tagged include/linux/fs.h:508 [inline]
 filemap_writeback mm/filemap.c:384 [inline]
 filemap_fdatawrite_range mm/filemap.c:413 [inline]
 file_write_and_wait_range+0x130/0x2f0 mm/filemap.c:787
 mmb_fsync_noflush+0x48/0x140 fs/buffer.c:652
 fat_file_fsync+0x98/0x110 fs/fat/file.c:193
 vfs_fsync_range+0xc5/0xe0 fs/sync.c:186
 generic_write_sync include/linux/fs.h:2666 [inline]
 generic_file_write_iter+0x1a3/0x1f0 mm/filemap.c:4483
 iter_file_splice_write+0x6a0/0xa60 fs/splice.c:736
 do_splice_from fs/splice.c:936 [inline]
 direct_splice_actor+0x156/0x280 fs/splice.c:1159
 splice_direct_to_actor+0x2f9/0x680 fs/splice.c:1103
 do_splice_direct_actor fs/splice.c:1202 [inline]
 do_splice_direct+0x119/0x1a0 fs/splice.c:1228
 do_sendfile+0x37d/0x640 fs/read_write.c:1371
 __do_sys_sendfile64 fs/read_write.c:1432 [inline]
 __se_sys_sendfile64 fs/read_write.c:1418 [inline]
 __x64_sys_sendfile64+0x105/0x150 fs/read_write.c:1418
 x64_sys_call+0x2dc4/0x3020 arch/x86/include/generated/asm/syscalls_64.h:41
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x136/0x3c0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0x02000021 -> 0x04000021

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 UID: 0 PID: 4413 Comm: syz.2.204 Not tainted syzkaller #0 PREEMPT(lazy) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
==================================================================