syzbot

EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
==================================================================
BUG: KCSAN: data-race in __xa_set_mark / xas_find_marked

write to 0xffff888106dea624 of 4 bytes by task 6442 on cpu 0:
 xa_mark_set lib/xarray.c:71 [inline]
 xas_set_mark lib/xarray.c:900 [inline]
 __xa_set_mark+0x172/0x1a0 lib/xarray.c:2076
 __folio_mark_dirty+0x3af/0x4c0 mm/page-writeback.c:2767
 mark_buffer_dirty+0x11e/0x210 fs/buffer.c:1209
 block_commit_write fs/buffer.c:2224 [inline]
 block_write_end+0x12e/0x210 fs/buffer.c:2301
 ext4_write_end+0x13a/0x730 fs/ext4/inode.c:1309
 generic_perform_write+0x30f/0x490 mm/filemap.c:4124
 ext4_buffered_write_iter+0x1ee/0x3c0 fs/ext4/file.c:299
 ext4_file_write_iter+0x383/0xf00 fs/ext4/file.c:-1
 iter_file_splice_write+0x5ef/0x970 fs/splice.c:738
 do_splice_from fs/splice.c:935 [inline]
 direct_splice_actor+0x153/0x2a0 fs/splice.c:1158
 splice_direct_to_actor+0x30f/0x680 fs/splice.c:1102
 do_splice_direct_actor fs/splice.c:1201 [inline]
 do_splice_direct+0xda/0x150 fs/splice.c:1227
 do_sendfile+0x380/0x640 fs/read_write.c:1368
 __do_sys_sendfile64 fs/read_write.c:1429 [inline]
 __se_sys_sendfile64 fs/read_write.c:1415 [inline]
 __x64_sys_sendfile64+0x105/0x150 fs/read_write.c:1415
 x64_sys_call+0xb39/0x2fb0 arch/x86/include/generated/asm/syscalls_64.h:41
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xd0/0x1a0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

read to 0xffff888106dea624 of 4 bytes by task 6426 on cpu 1:
 xa_marked include/linux/xarray.h:424 [inline]
 xas_find_marked+0x5dc/0x620 lib/xarray.c:1483
 find_get_entry+0x5d/0x380 mm/filemap.c:2027
 filemap_get_folios_tag+0x92/0x210 mm/filemap.c:2295
 __filemap_fdatawait_range mm/filemap.c:530 [inline]
 filemap_fdatawait_range+0x88/0x1d0 mm/filemap.c:565
 filemap_fdatawait include/linux/pagemap.h:50 [inline]
 __writeback_single_inode+0xdb/0x7c0 fs/fs-writeback.c:1690
 writeback_single_inode+0x167/0x3e0 fs/fs-writeback.c:1801
 sync_inode_metadata+0x5b/0x90 fs/fs-writeback.c:2883
 generic_buffers_fsync_noflush+0xd9/0x120 fs/buffer.c:621
 ext4_fsync_nojournal fs/ext4/fsync.c:88 [inline]
 ext4_sync_file+0x1ab/0x690 fs/ext4/fsync.c:147
 vfs_fsync_range+0x10a/0x130 fs/sync.c:187
 generic_write_sync include/linux/fs.h:2976 [inline]
 ext4_buffered_write_iter+0x34f/0x3c0 fs/ext4/file.c:305
 ext4_file_write_iter+0x383/0xf00 fs/ext4/file.c:-1
 iter_file_splice_write+0x5ef/0x970 fs/splice.c:738
 do_splice_from fs/splice.c:935 [inline]
 direct_splice_actor+0x153/0x2a0 fs/splice.c:1158
 splice_direct_to_actor+0x30f/0x680 fs/splice.c:1102
 do_splice_direct_actor fs/splice.c:1201 [inline]
 do_splice_direct+0xda/0x150 fs/splice.c:1227
 do_sendfile+0x380/0x640 fs/read_write.c:1368
 __do_sys_sendfile64 fs/read_write.c:1429 [inline]
 __se_sys_sendfile64 fs/read_write.c:1415 [inline]
 __x64_sys_sendfile64+0x105/0x150 fs/read_write.c:1415
 x64_sys_call+0xb39/0x2fb0 arch/x86/include/generated/asm/syscalls_64.h:41
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xd0/0x1a0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0x00000021 -> 0x0a000021

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 UID: 0 PID: 6426 Comm: syz.5.1137 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(voluntary) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
==================================================================