KCSAN: data-race in xas_clear_mark / xas_find

KCSAN: data-race in xas_clear_mark / xas_find_marked (2)
Status: moderation: reported on 2019/12/10 21:55
Reported-by: syzbot+6b653cb0a28eee8c400a@syzkaller.appspotmail.com
First crash: 767d, last: 7h45m

similar bugs (1):
Kernel	Title	Repro	Cause bisect	Fix bisect	Count	Last	Reported	Patched	Status
upstream	KCSAN: data-race in xas_clear_mark / xas_find_marked				3	772d	778d	0/22	closed as invalid on 2019/10/18 14:11

Sample crash report:

==================================================================
BUG: KCSAN: data-race in xas_clear_mark / xas_find_marked

read-write to 0xffff88813b6b7468 of 8 bytes by task 3072 on cpu 0:
 instrument_read_write include/linux/instrumented.h:57 [inline]
 __instrument_read_write_bitop include/asm-generic/bitops/instrumented-non-atomic.h:81 [inline]
 __test_and_clear_bit include/asm-generic/bitops/instrumented-non-atomic.h:109 [inline]
 node_clear_mark lib/xarray.c:100 [inline]
 xas_clear_mark+0x8f/0x170 lib/xarray.c:911
 __folio_start_writeback+0x30e/0x490 mm/page-writeback.c:2886
 set_page_writeback+0x39/0x50 mm/folio-compat.c:77
 ext4_bio_write_page+0x132/0xaa0 fs/ext4/page-io.c:455
 mpage_submit_page fs/ext4/inode.c:2095 [inline]
 mpage_map_and_submit_buffers fs/ext4/inode.c:2343 [inline]
 mpage_map_and_submit_extent fs/ext4/inode.c:2482 [inline]
 ext4_writepages+0x10fe/0x1e80 fs/ext4/inode.c:2795
 do_writepages+0x1cb/0x330 mm/page-writeback.c:2364
 filemap_fdatawrite_wbc mm/filemap.c:407 [inline]
 __filemap_fdatawrite_range mm/filemap.c:440 [inline]
 __filemap_fdatawrite mm/filemap.c:446 [inline]
 filemap_flush+0xd7/0x100 mm/filemap.c:473
 ext4_alloc_da_blocks+0x47/0x100 fs/ext4/inode.c:3103
 ext4_release_file+0x5b/0x1d0 fs/ext4/file.c:141
 __fput+0x295/0x520 fs/file_table.c:280
 ____fput+0x11/0x20 fs/file_table.c:313
 task_work_run+0x8e/0x110 kernel/task_work.c:164
 get_signal+0x1506/0x1550 kernel/signal.c:2624
 arch_do_signal_or_restart+0x8c/0x2e0 arch/x86/kernel/signal.c:868
 handle_signal_work kernel/entry/common.c:148 [inline]
 exit_to_user_mode_loop kernel/entry/common.c:172 [inline]
 exit_to_user_mode_prepare+0x113/0x190 kernel/entry/common.c:207
 __syscall_exit_to_user_mode_work kernel/entry/common.c:289 [inline]
 syscall_exit_to_user_mode+0x20/0x40 kernel/entry/common.c:300
 do_syscall_64+0x50/0xd0 arch/x86/entry/common.c:86
 entry_SYSCALL_64_after_hwframe+0x44/0xae

read to 0xffff88813b6b7468 of 8 bytes by task 3071 on cpu 1:
 xas_find_chunk include/linux/xarray.h:1662 [inline]
 xas_find_marked+0x195/0x5f0 lib/xarray.c:1349
 find_get_entry mm/filemap.c:1991 [inline]
 find_get_pages_range_tag+0x102/0x3a0 mm/filemap.c:2281
 pagevec_lookup_range_tag+0x37/0x50 mm/swap.c:1133
 mpage_prepare_extent_to_map+0x1a3/0x650 fs/ext4/inode.c:2572
 ext4_writepages+0xa78/0x1e80 fs/ext4/inode.c:2793
 do_writepages+0x1cb/0x330 mm/page-writeback.c:2364
 filemap_fdatawrite_wbc mm/filemap.c:407 [inline]
 __filemap_fdatawrite_range mm/filemap.c:440 [inline]
 __filemap_fdatawrite mm/filemap.c:446 [inline]
 filemap_flush+0xd7/0x100 mm/filemap.c:473
 ext4_alloc_da_blocks+0x47/0x100 fs/ext4/inode.c:3103
 ext4_release_file+0x5b/0x1d0 fs/ext4/file.c:141
 __fput+0x295/0x520 fs/file_table.c:280
 ____fput+0x11/0x20 fs/file_table.c:313
 task_work_run+0x8e/0x110 kernel/task_work.c:164
 tracehook_notify_resume include/linux/tracehook.h:189 [inline]
 exit_to_user_mode_loop kernel/entry/common.c:175 [inline]
 exit_to_user_mode_prepare+0x160/0x190 kernel/entry/common.c:207
 __syscall_exit_to_user_mode_work kernel/entry/common.c:289 [inline]
 syscall_exit_to_user_mode+0x20/0x40 kernel/entry/common.c:300
 do_syscall_64+0x50/0xd0 arch/x86/entry/common.c:86
 entry_SYSCALL_64_after_hwframe+0x44/0xae

value changed: 0xfffffffc00000000 -> 0xfffffff000000000

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 3071 Comm: syz-executor.4 Tainted: G        W         5.16.0-rc2-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================

Crashes (1394):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	VM info	Title
ci2-upstream-kcsan-gce	2021/11/27 19:57	upstream	741392771338	63eeac02	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/26 22:56	upstream	c5c17547b778	63eeac02	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/26 09:12	upstream	a4849f6000e2	63eeac02	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/25 19:13	upstream	b501b85957de	63eeac02	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/24 19:21	upstream	5f53fa508db0	545ab074	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/23 23:25	upstream	5d9f4cf36721	545ab074	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/22 11:41	upstream	136057256686	4eb20a4e	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/21 23:03	upstream	40c93d7fff6f	4eb20a4e	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/21 09:34	upstream	923dcc5eb0c1	4eb20a4e	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/20 20:11	upstream	61564e7b3abc	4eb20a4e	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/20 02:53	upstream	a90af8f15bdc	4eb20a4e	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/19 14:33	upstream	4c388a8e740d	3a9d0024	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/19 11:14	upstream	4c388a8e740d	31a30fc0	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/18 22:11	upstream	6fdf886424cf	31a30fc0	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/18 15:00	upstream	42eb8fdac2fc	31a30fc0	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/18 06:45	upstream	42eb8fdac2fc	cafff8b6	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/17 18:23	upstream	ee1703cda8dc	cafff8b6	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/16 22:03	upstream	8ab774587903	cafff8b6	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/16 10:06	upstream	8ab774587903	600426bd	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/14 22:57	upstream	ce49bfc8d037	75b04091	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/14 10:29	upstream	c8c109546a19	75b04091	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/13 19:49	upstream	a9b9669d9822	75b04091	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/13 06:12	upstream	66f4beaa6c1d	75b04091	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/12 13:03	upstream	5833291ab6de	75b04091	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/12 00:14	upstream	ca2ef2d9f2aa	75b04091	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/11 07:24	upstream	debe436e77c7	75b04091	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/10 18:07	upstream	89d714ab6043	75b04091	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/10 12:36	upstream	cb690f5238d7	75b04091	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/10 01:16	upstream	cb690f5238d7	55fa030c	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/09 14:17	upstream	d2f38a3c6507	59bcaf9a	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/08 23:50	upstream	e851dfae4371	8ab17e57	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/08 18:48	upstream	e851dfae4371	d29682f1	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/08 12:05	upstream	6b75d88fa81b	d29682f1	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/08 00:02	upstream	6b75d88fa81b	4c1be0be	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/07 12:28	upstream	b5013d084e03	4c1be0be	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/06 23:55	upstream	512b7931ad05	4c1be0be	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/05 22:16	upstream	fe91c4725aee	4c1be0be	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/05 06:04	upstream	d4439a1189f9	4c1be0be	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/04 16:21	upstream	7ddb58cb0eca	4c1be0be	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/04 03:23	upstream	ce840177930f	4c1be0be	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/03 14:19	upstream	dcd68326d29b	4c1be0be	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/03 07:27	upstream	56d33754481f	17f3edd2	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/02 12:06	upstream	bfc484fe6abb	098b5d53	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/01 22:17	upstream	e66435936756	098b5d53	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/11/01 04:48	upstream	8bb7eca972ad	098b5d53	.config	log	report	info	KCSAN: data-race in xas_clear_mark / xas_find_marked
ci2-upstream-kcsan-gce	2021/01/17 10:22	upstream	0da0a8a0a0e1	813be542	.config	log	report	info
ci2-upstream-kcsan-gce	2019/10/22 14:09	https://github.com/google/ktsan.git kcsan	05f2236801fe	4ee855e7	.config	log	report