==================================================================
BUG: KCSAN: data-race in __xa_clear_mark / xas_find_marked

read-write to 0xffff888105694b50 of 8 bytes by interrupt on cpu 1:
 instrument_read_write include/linux/instrumented.h:55 [inline]
 __instrument_read_write_bitop include/asm-generic/bitops/instrumented-non-atomic.h:84 [inline]
 ___test_and_clear_bit include/asm-generic/bitops/instrumented-non-atomic.h:114 [inline]
 node_clear_mark lib/xarray.c:102 [inline]
 xas_clear_mark lib/xarray.c:914 [inline]
 __xa_clear_mark+0xf8/0x1f0 lib/xarray.c:1928
 __folio_end_writeback+0x18f/0x4a0 mm/page-writeback.c:3011
 folio_end_writeback+0x74/0x1f0 mm/filemap.c:1608
 ext4_finish_bio+0x47b/0x8f0 fs/ext4/page-io.c:145
 ext4_end_bio+0x18c/0x2c0
 bio_endio+0x369/0x410 block/bio.c:1603
 req_bio_endio block/blk-mq.c:786 [inline]
 blk_update_request+0x41c/0x950 block/blk-mq.c:931
 scsi_end_request+0x52/0x4f0 drivers/scsi/scsi_lib.c:631
 scsi_io_completion+0x9f/0x200 drivers/scsi/scsi_lib.c:1069
 scsi_finish_command+0x1be/0x1d0 drivers/scsi/scsi.c:198
 scsi_complete+0x19a/0x1d0 drivers/scsi/scsi_lib.c:1531
 blk_complete_reqs block/blk-mq.c:1129 [inline]
 blk_done_softirq+0x74/0xb0 block/blk-mq.c:1134
 __do_softirq+0xc8/0x285 kernel/softirq.c:554
 invoke_softirq kernel/softirq.c:428 [inline]
 __irq_exit_rcu kernel/softirq.c:633 [inline]
 irq_exit_rcu+0x3c/0x90 kernel/softirq.c:645
 common_interrupt+0x81/0x90 arch/x86/kernel/irq.c:247
 asm_common_interrupt+0x26/0x40 arch/x86/include/asm/idtentry.h:693
 selinux_mmap_file+0x0/0x1e0 security/selinux/hooks.c:3768
 security_mmap_file+0x113/0x150 security/security.c:2833
 vm_mmap_pgoff+0x91/0x250 mm/util.c:569
 vm_mmap+0x90/0xc0 mm/util.c:592
 elf_map fs/binfmt_elf.c:381 [inline]
 elf_load+0x105/0x520 fs/binfmt_elf.c:408
 load_elf_binary+0xb22/0x1800 fs/binfmt_elf.c:1132
 search_binary_handler fs/exec.c:1778 [inline]
 exec_binprm fs/exec.c:1820 [inline]
 bprm_execve+0x4e6/0xc60 fs/exec.c:1872
 do_execveat_common+0x768/0x7d0 fs/exec.c:1979
 do_execve fs/exec.c:2053 [inline]
 __do_sys_execve fs/exec.c:2129 [inline]
 __se_sys_execve fs/exec.c:2124 [inline]
 __x64_sys_execve+0x5a/0x70 fs/exec.c:2124
 x64_sys_call+0x1354/0x2d30 arch/x86/include/generated/asm/syscalls_64.h:60
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1d0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

read to 0xffff888105694b50 of 8 bytes by task 7656 on cpu 0:
 xas_find_chunk include/linux/xarray.h:1723 [inline]
 xas_find_marked+0x216/0x660 lib/xarray.c:1354
 find_get_entry+0x5d/0x290 mm/filemap.c:1968
 filemap_get_folios_tag+0x136/0x210 mm/filemap.c:2218
 __filemap_fdatawait_range+0x82/0x140 mm/filemap.c:523
 filemap_write_and_wait_range+0xf0/0x1f0 mm/filemap.c:694
 filemap_write_and_wait include/linux/pagemap.h:64 [inline]
 ext4_bmap+0x14e/0x180 fs/ext4/inode.c:3109
 bmap+0x5d/0x90 fs/inode.c:1792
 ioctl_fibmap fs/ioctl.c:77 [inline]
 file_ioctl fs/ioctl.c:328 [inline]
 do_vfs_ioctl+0x1353/0x1560 fs/ioctl.c:883
 __do_sys_ioctl fs/ioctl.c:902 [inline]
 __se_sys_ioctl+0x81/0x150 fs/ioctl.c:890
 __x64_sys_ioctl+0x43/0x50 fs/ioctl.c:890
 x64_sys_call+0x155d/0x2d30 arch/x86/include/generated/asm/syscalls_64.h:17
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1d0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0xfffffffffffff800 -> 0xffffffffff000000

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 7656 Comm: syz-executor.2 Not tainted 6.9.0-rc4-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
==================================================================