syzbot


KCSAN: data-race in find_get_pages_range_tag / xas_init_marks

Status: auto-closed as invalid on 2021/03/28 21:39
Subsystems: ext4
[Documentation on labels]
Reported-by: syzbot+f09a20952c7010d93bea@syzkaller.appspotmail.com
First crash: 1360d, last: 1121d

Sample crash report:
==================================================================
BUG: KCSAN: data-race in find_get_pages_range_tag / xas_init_marks

write to 0xffff888027829478 of 8 bytes by task 25710 on cpu 1:
 instrument_write include/linux/instrumented.h:42 [inline]
 __instrument_read_write_bitop include/asm-generic/bitops/instrumented-non-atomic.h:79 [inline]
 __test_and_clear_bit include/asm-generic/bitops/instrumented-non-atomic.h:109 [inline]
 node_clear_mark lib/xarray.c:100 [inline]
 xas_clear_mark lib/xarray.c:911 [inline]
 xas_init_marks+0x1b0/0x340 lib/xarray.c:944
 xas_store+0x201/0xcf0 lib/xarray.c:806
 page_cache_delete_batch mm/filemap.c:337 [inline]
 delete_from_page_cache_batch+0x3f4/0x820 mm/filemap.c:358
 truncate_inode_pages_range+0x482/0x10e0 mm/truncate.c:366
 truncate_inode_pages mm/truncate.c:476 [inline]
 truncate_pagecache+0x4f/0x70 mm/truncate.c:845
 ext4_setattr+0xae3/0xf60 fs/ext4/inode.c:5500
 notify_change+0x86d/0xa60 fs/attr.c:336
 do_truncate+0xe0/0x120 fs/open.c:64
 handle_truncate fs/namei.c:2912 [inline]
 do_open fs/namei.c:3258 [inline]
 path_openat+0x1a30/0x20a0 fs/namei.c:3371
 do_filp_open+0xbd/0x1d0 fs/namei.c:3398
 do_sys_openat2+0xa3/0x250 fs/open.c:1172
 do_sys_open fs/open.c:1188 [inline]
 __do_sys_creat fs/open.c:1262 [inline]
 __se_sys_creat fs/open.c:1256 [inline]
 __x64_sys_creat+0x62/0x80 fs/open.c:1256
 do_syscall_64+0x39/0x80 arch/x86/entry/common.c:46
 entry_SYSCALL_64_after_hwframe+0x44/0xae

read to 0xffff888027829478 of 8 bytes by task 25689 on cpu 0:
 xas_find_chunk include/linux/xarray.h:1660 [inline]
 xas_next_marked include/linux/xarray.h:1691 [inline]
 find_get_pages_range_tag+0x35c/0x600 mm/filemap.c:2107
 pagevec_lookup_range_tag+0x37/0x50 mm/swap.c:1122
 mpage_prepare_extent_to_map+0x195/0x640 fs/ext4/inode.c:2578
 ext4_writepages+0x674/0x1e70 fs/ext4/inode.c:2755
 do_writepages+0x7b/0x150 mm/page-writeback.c:2352
 __filemap_fdatawrite_range+0x19d/0x1d0 mm/filemap.c:422
 file_write_and_wait_range+0x9f/0x120 mm/filemap.c:761
 ext4_sync_file+0x105/0x6e0 fs/ext4/fsync.c:151
 vfs_fsync_range+0x107/0x120 fs/sync.c:200
 generic_write_sync include/linux/fs.h:2737 [inline]
 ext4_buffered_write_iter+0x38f/0x3e0 fs/ext4/file.c:278
 ext4_file_write_iter+0x47a/0x1060 fs/ext4/file.c:503
 call_write_iter include/linux/fs.h:1901 [inline]
 new_sync_write fs/read_write.c:518 [inline]
 vfs_write+0x6f0/0x7e0 fs/read_write.c:605
 ksys_write+0xce/0x180 fs/read_write.c:658
 __do_sys_write fs/read_write.c:670 [inline]
 __se_sys_write fs/read_write.c:667 [inline]
 __x64_sys_write+0x3e/0x50 fs/read_write.c:667
 do_syscall_64+0x39/0x80 arch/x86/entry/common.c:46
 entry_SYSCALL_64_after_hwframe+0x44/0xae

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 25689 Comm: syz-executor.2 Not tainted 5.11.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================

Crashes (42):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2021/02/21 21:38 upstream 55f62bc87347 a659b3f1 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in find_get_pages_range_tag / xas_init_marks
2021/02/14 13:06 upstream 358feceebbf6 98682e5e .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in find_get_pages_range_tag / xas_init_marks
2021/02/13 09:02 upstream c6d8570e4d64 98682e5e .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in find_get_pages_range_tag / xas_init_marks
2021/02/06 03:25 upstream 1e0d27fce010 23a562df .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in find_get_pages_range_tag / xas_init_marks
2021/02/02 09:09 upstream 88bb507a74ea 19e09687 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in find_get_pages_range_tag / xas_init_marks
2021/02/01 21:00 upstream 88bb507a74ea e6b95f32 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in find_get_pages_range_tag / xas_init_marks
2021/01/30 08:49 upstream 0e9bcda5d286 fc9fd31e .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in find_get_pages_range_tag / xas_init_marks
2021/01/21 14:31 upstream 9791581c049c d4f4eca5 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in find_get_pages_range_tag / xas_init_marks
2021/01/18 14:31 upstream 19c329f68089 63631df1 .config console log report info ci2-upstream-kcsan-gce KCSAN: data-race in find_get_pages_range_tag / xas_init_marks
2021/01/09 10:40 upstream 996e435fd401 a6c52263 .config console log report info ci2-upstream-kcsan-gce
2021/01/02 21:44 upstream 3516bd729358 79264ae3 .config console log report info ci2-upstream-kcsan-gce
2020/12/29 08:34 upstream dea8dcf2a9fa 8259d56c .config console log report info ci2-upstream-kcsan-gce
2020/12/28 23:56 upstream c76e02c59e13 8259d56c .config console log report info ci2-upstream-kcsan-gce
2020/12/12 22:13 upstream 7b1b868e1d91 bca53db9 .config console log report info ci2-upstream-kcsan-gce
2020/12/12 00:52 upstream 7f376f1917d7 bca53db9 .config console log report info ci2-upstream-kcsan-gce
2020/11/21 07:07 upstream 27bba9c532a8 68068804 .config console log report info ci2-upstream-kcsan-gce
2020/11/19 20:31 upstream 131ad0b6f529 0767f13f .config console log report info ci2-upstream-kcsan-gce
2020/11/12 00:09 upstream 3d5e28bff7ad cca87986 .config console log report info ci2-upstream-kcsan-gce
2020/11/11 23:47 upstream 3d5e28bff7ad cca87986 .config console log report info ci2-upstream-kcsan-gce
2020/10/30 23:44 upstream f5d808567a51 18e33098 .config console log report info ci2-upstream-kcsan-gce
2020/10/28 17:46 upstream ed8780e3f2ec f24824d3 .config console log report info ci2-upstream-kcsan-gce
2020/10/27 23:33 upstream ed8780e3f2ec 96e03c1c .config console log report info ci2-upstream-kcsan-gce
2020/10/23 20:29 upstream 0adc313c4f20 2bb6666c .config console log report info ci2-upstream-kcsan-gce
2020/10/10 23:58 upstream da690031a5d6 4a77ae0b .config console log report info ci2-upstream-kcsan-gce
2020/10/10 21:31 upstream 6f2f486d57c4 4a77ae0b .config console log report info ci2-upstream-kcsan-gce
2020/09/30 05:49 upstream 02de58b24d2e 5abc3f1a .config console log report info ci2-upstream-kcsan-gce
2020/09/23 07:14 upstream 805c6d3c1921 287cd75a .config console log report info ci2-upstream-kcsan-gce
2020/09/22 08:37 upstream 98477740630f 3e8f6c27 .config console log report info ci2-upstream-kcsan-gce
2020/09/20 00:46 upstream eb5f95f1593f 53ce8104 .config console log report info ci2-upstream-kcsan-gce
2020/09/18 12:14 upstream 10b82d517648 38962c8b .config console log report info ci2-upstream-kcsan-gce
2020/09/16 15:26 upstream fc4f28bb3daf 77507d02 .config console log report info ci2-upstream-kcsan-gce
2020/09/16 08:34 upstream fc4f28bb3daf 18d7d030 .config console log report info ci2-upstream-kcsan-gce
2020/09/15 11:50 upstream fc4f28bb3daf 9e681632 .config console log report info ci2-upstream-kcsan-gce
2020/09/03 19:10 upstream e28f0104343d abf9ba4f .config console log report ci2-upstream-kcsan-gce
2020/08/31 02:29 upstream dcc5c6f013d8 d5a3ae1f .config console log report ci2-upstream-kcsan-gce
2020/08/26 09:34 upstream 2ac69819ba9e 344da168 .config console log report ci2-upstream-kcsan-gce
2020/08/13 20:48 upstream 990f227371a4 ee7cb8b6 .config console log report ci2-upstream-kcsan-gce
2020/08/05 10:26 upstream c0842fbc1b18 b7129355 .config console log report ci2-upstream-kcsan-gce
2020/07/17 16:14 upstream 8882572675c1 9c812472 .config console log report ci2-upstream-kcsan-gce
2020/06/29 10:28 upstream 9ebcfadb0610 3ff434cc .config console log report ci2-upstream-kcsan-gce
2020/06/28 05:52 upstream 916a3b0fc120 a2cdad9d .config console log report ci2-upstream-kcsan-gce
2020/06/27 11:07 upstream 1590a2e1c681 032b4239 .config console log report ci2-upstream-kcsan-gce
* Struck through repros no longer work on HEAD.