KCSAN: data-race in __xa_set_mark / xas_find

KCSAN: data-race in __xa_set_mark / xas_find_marked
Status: moderation: reported on 2020/09/25 08:57
Reported-by: syzbot+f512479ce46e8f0a9370@syzkaller.appspotmail.com
First crash: 526d, last: 3d19h

Sample crash report:

==================================================================
BUG: KCSAN: data-race in __xa_set_mark / xas_find_marked

read-write to 0xffff88813bf33228 of 8 bytes by task 12180 on cpu 1:
 instrument_read_write include/linux/instrumented.h:57 [inline]
 __instrument_read_write_bitop include/asm-generic/bitops/instrumented-non-atomic.h:81 [inline]
 __test_and_set_bit include/asm-generic/bitops/instrumented-non-atomic.h:95 [inline]
 node_set_mark lib/xarray.c:93 [inline]
 xas_set_mark lib/xarray.c:882 [inline]
 __xa_set_mark+0x1b3/0x2b0 lib/xarray.c:1899
 __folio_mark_dirty+0xfb/0x130 mm/page-writeback.c:2510
 __set_page_dirty include/linux/pagemap.h:883 [inline]
 mark_buffer_dirty+0x14f/0x260 fs/buffer.c:1108
 __block_commit_write fs/buffer.c:2083 [inline]
 block_write_end+0x13d/0x260 fs/buffer.c:2162
 generic_write_end+0x5e/0x180 fs/buffer.c:2176
 ext4_da_write_end+0x4de/0x630 fs/ext4/inode.c:3059
 generic_perform_write+0x261/0x400 mm/filemap.c:3767
 ext4_buffered_write_iter+0x25b/0x380 fs/ext4/file.c:269
 ext4_file_write_iter+0x2e7/0x1200
 call_write_iter include/linux/fs.h:2162 [inline]
 do_iter_readv_writev+0x2de/0x380 fs/read_write.c:725
 do_iter_write+0x192/0x5c0 fs/read_write.c:851
 vfs_iter_write+0x4c/0x70 fs/read_write.c:892
 iter_file_splice_write+0x43a/0x790 fs/splice.c:689
 do_splice_from fs/splice.c:767 [inline]
 direct_splice_actor+0x80/0xa0 fs/splice.c:936
 splice_direct_to_actor+0x345/0x650 fs/splice.c:891
 do_splice_direct+0x106/0x190 fs/splice.c:979
 do_sendfile+0x675/0xc40 fs/read_write.c:1245
 __do_sys_sendfile64 fs/read_write.c:1310 [inline]
 __se_sys_sendfile64 fs/read_write.c:1296 [inline]
 __x64_sys_sendfile64+0x102/0x140 fs/read_write.c:1296
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae

read to 0xffff88813bf33228 of 8 bytes by task 12179 on cpu 0:
 xas_find_chunk include/linux/xarray.h:1662 [inline]
 xas_find_marked+0x195/0x5f0 lib/xarray.c:1349
 find_get_entry mm/filemap.c:1991 [inline]
 find_get_pages_range_tag+0x102/0x3a0 mm/filemap.c:2281
 pagevec_lookup_range_tag+0x37/0x50 mm/swap.c:1133
 mpage_prepare_extent_to_map+0x1a3/0x650 fs/ext4/inode.c:2572
 ext4_writepages+0xa78/0x1e80 fs/ext4/inode.c:2793
 do_writepages+0x1cb/0x330 mm/page-writeback.c:2364
 filemap_fdatawrite_wbc mm/filemap.c:407 [inline]
 __filemap_fdatawrite_range mm/filemap.c:440 [inline]
 __filemap_fdatawrite mm/filemap.c:446 [inline]
 filemap_flush+0xd7/0x100 mm/filemap.c:473
 ext4_alloc_da_blocks+0x47/0x100 fs/ext4/inode.c:3103
 ext4_release_file+0x5b/0x1d0 fs/ext4/file.c:141
 __fput+0x295/0x520 fs/file_table.c:280
 ____fput+0x11/0x20 fs/file_table.c:313
 task_work_run+0x8e/0x110 kernel/task_work.c:164
 tracehook_notify_resume include/linux/tracehook.h:189 [inline]
 exit_to_user_mode_loop kernel/entry/common.c:175 [inline]
 exit_to_user_mode_prepare+0x160/0x190 kernel/entry/common.c:207
 __syscall_exit_to_user_mode_work kernel/entry/common.c:289 [inline]
 syscall_exit_to_user_mode+0x20/0x40 kernel/entry/common.c:300
 do_syscall_64+0x50/0xd0 arch/x86/entry/common.c:86
 entry_SYSCALL_64_after_hwframe+0x44/0xae

value changed: 0x000000000fffffff -> 0x000000003fffffff

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 12179 Comm: syz-executor.3 Not tainted 5.16.0-rc2-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================

Crashes (320):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	VM info	Title
ci2-upstream-kcsan-gce	2021/11/26 09:00	upstream	a4849f6000e2	63eeac02	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/26 00:47	upstream	b501b85957de	63eeac02	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/22 05:28	upstream	40c93d7fff6f	4eb20a4e	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/20 11:50	upstream	a90af8f15bdc	4eb20a4e	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/19 15:57	upstream	4c388a8e740d	3a9d0024	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/15 04:28	upstream	ce49bfc8d037	75b04091	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/14 04:13	upstream	a9b9669d9822	75b04091	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/13 15:28	upstream	66f4beaa6c1d	75b04091	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/12 18:19	upstream	5833291ab6de	75b04091	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/10 23:05	upstream	89d714ab6043	75b04091	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/10 02:26	upstream	cb690f5238d7	55fa030c	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/09 07:42	upstream	e851dfae4371	8ab17e57	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/08 19:34	upstream	e851dfae4371	d29682f1	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/08 14:03	upstream	6b75d88fa81b	d29682f1	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/08 00:40	upstream	6b75d88fa81b	4c1be0be	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/06 22:17	upstream	512b7931ad05	4c1be0be	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/06 07:54	upstream	fe91c4725aee	4c1be0be	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/04 23:22	upstream	7ddb58cb0eca	4c1be0be	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/04 05:59	upstream	ce840177930f	4c1be0be	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/03 17:13	upstream	dcd68326d29b	4c1be0be	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/03 17:11	upstream	dcd68326d29b	4c1be0be	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/01 05:06	upstream	8bb7eca972ad	098b5d53	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/31 20:38	upstream	180eca540ae0	098b5d53	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/30 11:40	upstream	a379fbbcb88b	098b5d53	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/27 04:44	upstream	d25f27432f80	d50eb50a	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/23 09:47	upstream	9c0c4d24ac00	282f03fb	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/22 14:10	upstream	64222515138e	55f90bc6	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/20 11:53	upstream	d9abdee5fd5a	418a00eb	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/19 17:22	upstream	d9abdee5fd5a	466b7db1	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/15 09:48	upstream	ec681c53f8d2	aab7690b	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/13 21:20	upstream	348949d9a444	5462d470	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/13 12:47	upstream	f4d0cc426f77	9d56e7dd	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/10 18:21	upstream	efb52a7d9511	838e7e2c	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/10 01:28	upstream	7fd2bf83d59a	838e7e2c	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/08 21:02	upstream	741668ef7832	efe0f24d	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/07 19:56	upstream	4a16df549d23	efe0f24d	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/07 02:17	upstream	5af4055fa813	62ee0987	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/06 19:26	upstream	60a9483534ed	62ee0987	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/05 14:20	upstream	f6274b06e326	8a6b1a8d	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/03 21:08	upstream	6761a0ae9895	db0f5787	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/02 21:48	upstream	ab2a7a35c4e7	db0f5787	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/10/01 19:18	upstream	24f67d82c43c	cc80db95	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/09/30 12:57	upstream	02d5e016800d	0f01403d	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/09/29 23:29	upstream	02d5e016800d	be530f6c	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/09/29 10:45	upstream	a4e6f95a891a	d82cb927	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/09/28 00:32	upstream	0513e464f900	78494d16	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/09/26 08:29	upstream	a3b397b4fffb	8cac236e	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/09/25 19:54	upstream	85736168463d	8cac236e	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/09/24 17:26	upstream	f9e36107ec70	8cac236e	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/09/23 22:34	upstream	f10f0481a5b5	8cac236e	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/09/22 18:22	upstream	cf1d2c3e7e2f	8cac236e	.config	log	report	info	KCSAN: data-race in __xa_set_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/01/17 11:08	upstream	0da0a8a0a0e1	813be542	.config	log	report	info
ci2-upstream-kcsan-gce	2020/09/24 17:40	upstream	171d4ff79f96	54289b08	.config	log	report	info
ci2-upstream-kcsan-gce	2020/06/21 17:45	upstream	64677779e896	4f2acff9	.config	log	report