==================================================================
BUG: KCSAN: data-race in sg_ioctl / sg_rq_end_io

write to 0xffff88814418c11c of 4 bytes by interrupt on cpu 1:
 sg_rq_end_io+0x14f/0x760 drivers/scsi/sg.c:1352
 __blk_mq_end_request+0x294/0x2b0 block/blk-mq.c:812
 scsi_end_request+0x285/0x440 drivers/scsi/scsi_lib.c:577
 scsi_io_completion+0xd0/0x10c0 drivers/scsi/scsi_lib.c:939
 scsi_finish_command+0x1c0/0x1d0 drivers/scsi/scsi.c:199
 scsi_complete+0x1a5/0x1e0 drivers/scsi/scsi_lib.c:1441
 blk_complete_reqs block/blk-mq.c:892 [inline]
 blk_done_softirq+0x92/0xc0 block/blk-mq.c:897
 __do_softirq+0x158/0x2de kernel/softirq.c:558
 __irq_exit_rcu kernel/softirq.c:637 [inline]
 irq_exit_rcu+0x37/0x70 kernel/softirq.c:649
 common_interrupt+0x9f/0xc0 arch/x86/kernel/irq.c:240
 asm_common_interrupt+0x1e/0x40
 kcsan_setup_watchpoint+0x94/0x420 kernel/kcsan/core.c:443
 __tlb_remove_page_size+0x24/0x180 mm/mmu_gather.c:76
 __tlb_remove_page include/asm-generic/tlb.h:440 [inline]
 zap_pte_range+0x7ad/0x10e0 mm/memory.c:1360
 zap_pmd_range mm/memory.c:1467 [inline]
 zap_pud_range mm/memory.c:1496 [inline]
 zap_p4d_range mm/memory.c:1517 [inline]
 unmap_page_range+0x2dc/0x3d0 mm/memory.c:1538
 unmap_single_vma+0x157/0x210 mm/memory.c:1583
 unmap_vmas+0xd0/0x180 mm/memory.c:1615
 exit_mmap+0x23d/0x470 mm/mmap.c:3170
 __mmput+0x27/0x1b0 kernel/fork.c:1113
 mmput+0x3d/0x50 kernel/fork.c:1134
 exit_mm+0xdb/0x170 kernel/exit.c:507
 do_exit+0x608/0x17a0 kernel/exit.c:819
 do_group_exit+0xa4/0x180 kernel/exit.c:929
 __do_sys_exit_group+0xb/0x10 kernel/exit.c:940
 __se_sys_exit_group+0x5/0x10 kernel/exit.c:938
 __x64_sys_exit_group+0x16/0x20 kernel/exit.c:938
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae

read to 0xffff88814418c11c of 4 bytes by task 12969 on cpu 0:
 sg_fill_request_table drivers/scsi/sg.c:882 [inline]
 sg_ioctl_common drivers/scsi/sg.c:1092 [inline]
 sg_ioctl+0x84f/0x18e0 drivers/scsi/sg.c:1165
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:874 [inline]
 __se_sys_ioctl+0xcb/0x140 fs/ioctl.c:860
 __x64_sys_ioctl+0x3f/0x50 fs/ioctl.c:860
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae

value changed: 0xfffe804a -> 0x00000000

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 12969 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================