==================================================================
BUG: KCSAN: data-race in relay_switch_subbuf / relay_switch_subbuf

write to 0xffff88811397b438 of 8 bytes by task 13863 on cpu 0:
 relay_switch_subbuf+0x39e/0x3b0 kernel/relay.c:708
 relay_reserve include/linux/relay.h:248 [inline]
 __blk_add_trace+0x66a/0x730 kernel/trace/blktrace.c:276
 blk_add_trace_unplug+0x76/0xb0 kernel/trace/blktrace.c:969
 trace_block_unplug include/trace/events/block.h:452 [inline]
 blk_mq_dispatch_plug_list block/blk-mq.c:2739 [inline]
 blk_mq_flush_plug_list+0xd17/0xde0 block/blk-mq.c:2799
 __blk_flush_plug+0x216/0x290 block/blk-core.c:1194
 blk_finish_plug+0x48/0x70 block/blk-core.c:1221
 shrink_lruvec+0x12a3/0x15f0 mm/vmscan.c:5762
 shrink_node_memcgs mm/vmscan.c:5889 [inline]
 shrink_node+0x9d1/0x13c0 mm/vmscan.c:5924
 shrink_zones mm/vmscan.c:6168 [inline]
 do_try_to_free_pages+0x3c6/0xc50 mm/vmscan.c:6230
 try_to_free_mem_cgroup_pages+0x1eb/0x4e0 mm/vmscan.c:6545
 try_charge_memcg+0x27a/0xcd0 mm/memcontrol.c:2944
 obj_cgroup_charge_pages+0xbd/0x1d0 mm/memcontrol.c:3418
 __memcg_kmem_charge_page+0x9d/0x170 mm/memcontrol.c:3444
 __alloc_pages_noprof+0x1bc/0x360 mm/page_alloc.c:4677
 alloc_pages_mpol_noprof+0xb1/0x1e0 mm/mempolicy.c:2265
 alloc_pages_noprof+0xe1/0x100 mm/mempolicy.c:2336
 vm_area_alloc_pages mm/vmalloc.c:3566 [inline]
 __vmalloc_area_node mm/vmalloc.c:3642 [inline]
 __vmalloc_node_range_noprof+0x719/0xef0 mm/vmalloc.c:3823
 kvmalloc_node_noprof+0x121/0x170 mm/util.c:659
 ip_set_alloc+0x1f/0x30 net/netfilter/ipset/ip_set_core.c:255
 hash_netiface_create+0x273/0x730 net/netfilter/ipset/ip_set_hash_gen.h:1568
 ip_set_create+0x359/0x8a0 net/netfilter/ipset/ip_set_core.c:1103
 nfnetlink_rcv_msg+0x4a9/0x570 net/netfilter/nfnetlink.c:302
 netlink_rcv_skb+0x12c/0x230 net/netlink/af_netlink.c:2564
 nfnetlink_rcv+0x16c/0x15b0 net/netfilter/nfnetlink.c:664
 netlink_unicast_kernel net/netlink/af_netlink.c:1335 [inline]
 netlink_unicast+0x58d/0x660 net/netlink/af_netlink.c:1361
 netlink_sendmsg+0x5ca/0x6e0 net/netlink/af_netlink.c:1905
 sock_sendmsg_nosec net/socket.c:730 [inline]
 __sock_sendmsg+0x140/0x180 net/socket.c:745
 ____sys_sendmsg+0x312/0x410 net/socket.c:2585
 ___sys_sendmsg net/socket.c:2639 [inline]
 __sys_sendmsg+0x1e9/0x280 net/socket.c:2668
 __do_sys_sendmsg net/socket.c:2677 [inline]
 __se_sys_sendmsg net/socket.c:2675 [inline]
 __x64_sys_sendmsg+0x46/0x50 net/socket.c:2675
 x64_sys_call+0xb25/0x2d70 arch/x86/include/generated/asm/syscalls_64.h:47
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

write to 0xffff88811397b438 of 8 bytes by task 13869 on cpu 1:
 relay_switch_subbuf+0x39e/0x3b0 kernel/relay.c:708
 relay_reserve include/linux/relay.h:248 [inline]
 __blk_add_trace+0x66a/0x730 kernel/trace/blktrace.c:276
 blk_add_trace_plug+0x4c/0x70 kernel/trace/blktrace.c:949
 trace_block_plug include/trace/events/block.h:407 [inline]
 blk_add_rq_to_plug+0x32b/0x3e0 block/blk-mq.c:1293
 blk_mq_submit_bio+0xa22/0xd90 block/blk-mq.c:3013
 __submit_bio+0xf2/0x470 block/blk-core.c:627
 __submit_bio_noacct_mq block/blk-core.c:708 [inline]
 submit_bio_noacct_nocheck+0x295/0x6e0 block/blk-core.c:737
 submit_bio_noacct+0x6b9/0x870 block/blk-core.c:848
 submit_bio+0x218/0x230 block/blk-core.c:890
 submit_bh_wbc+0x2de/0x320 fs/buffer.c:2827
 submit_bh+0x1e/0x30 fs/buffer.c:2832
 __ext4_read_bh fs/ext4/super.c:175 [inline]
 ext4_read_bh+0x10b/0x190 fs/ext4/super.c:199
 mext_page_mkuptodate fs/ext4/move_extent.c:220 [inline]
 move_extent_per_page+0xc84/0x16e0 fs/ext4/move_extent.c:353
 ext4_move_extents+0x5f2/0x740 fs/ext4/move_extent.c:674
 __ext4_ioctl fs/ext4/ioctl.c:1370 [inline]
 ext4_ioctl+0x1e36/0x2e10 fs/ext4/ioctl.c:1626
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:907 [inline]
 __se_sys_ioctl+0xd3/0x150 fs/ioctl.c:893
 __x64_sys_ioctl+0x43/0x50 fs/ioctl.c:893
 x64_sys_call+0x1581/0x2d70 arch/x86/include/generated/asm/syscalls_64.h:17
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0x0000000000000030 -> 0x0000000000000038

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 13869 Comm: syz-executor.4 Tainted: G        W          6.10.0-rc2-syzkaller-00064-g71d7b52cc33b #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
==================================================================