================================================================== BUG: KCSAN: data-race in delete_from_page_cache_batch / folio_mapping write to 0xffffea00050ee4d8 of 8 bytes by task 4356 on cpu 0: page_cache_delete_batch mm/filemap.c:308 [inline] delete_from_page_cache_batch+0x31b/0x770 mm/filemap.c:334 truncate_inode_pages_range+0x305/0x870 mm/truncate.c:370 truncate_inode_pages mm/truncate.c:452 [inline] truncate_inode_pages_final+0x54/0x60 mm/truncate.c:487 ext4_evict_inode+0x27c/0xe90 fs/ext4/inode.c:221 evict+0x1aa/0x410 fs/inode.c:664 iput_final fs/inode.c:1747 [inline] iput+0x3f9/0x580 fs/inode.c:1773 dentry_unlink_inode+0x22a/0x240 fs/dcache.c:401 __dentry_kill+0x28b/0x450 fs/dcache.c:607 dentry_kill+0x8d/0x1e0 dput+0x11e/0x1f0 fs/dcache.c:913 __fput+0x3bf/0x570 fs/file_table.c:328 ____fput+0x11/0x20 fs/file_table.c:348 task_work_run+0xde/0x110 kernel/task_work.c:179 exit_task_work include/linux/task_work.h:38 [inline] do_exit+0x5ad/0x1740 kernel/exit.c:820 do_group_exit+0xfe/0x140 kernel/exit.c:950 get_signal+0xb40/0xc60 kernel/signal.c:2858 arch_do_signal_or_restart+0x87/0x2d0 arch/x86/kernel/signal.c:869 exit_to_user_mode_loop+0x78/0x130 kernel/entry/common.c:168 exit_to_user_mode_prepare+0x69/0x90 kernel/entry/common.c:203 irqentry_exit_to_user_mode+0x5/0x10 kernel/entry/common.c:309 irqentry_exit+0xe/0x40 kernel/entry/common.c:412 asm_exc_page_fault+0x22/0x30 arch/x86/include/asm/idtentry.h:570 read to 0xffffea00050ee4d8 of 8 bytes by task 4417 on cpu 1: folio_mapping+0x8e/0x110 mm/util.c:778 folio_evictable mm/internal.h:138 [inline] move_folios_to_lru+0x12d/0x6d0 mm/vmscan.c:2376 shrink_inactive_list+0x44a/0x740 mm/vmscan.c:2492 shrink_list mm/vmscan.c:2716 [inline] shrink_lruvec+0x3aa/0x700 mm/vmscan.c:5885 shrink_node_memcgs+0x253/0x470 mm/vmscan.c:6074 shrink_node+0x1d7/0x930 mm/vmscan.c:6105 shrink_zones+0x2c1/0x5d0 mm/vmscan.c:6343 do_try_to_free_pages+0x195/0x760 mm/vmscan.c:6405 try_to_free_mem_cgroup_pages+0x1d1/0x420 mm/vmscan.c:6720 try_charge_memcg+0x2cc/0x9c0 mm/memcontrol.c:2681 try_charge mm/memcontrol.c:2823 [inline] charge_memcg+0x54/0x250 mm/memcontrol.c:6879 __mem_cgroup_charge+0x25/0xa0 mm/memcontrol.c:6900 mem_cgroup_charge include/linux/memcontrol.h:667 [inline] wp_page_copy+0x209/0x1460 mm/memory.c:3141 do_wp_page+0x2dd/0x780 handle_pte_fault mm/memory.c:4973 [inline] __handle_mm_fault mm/memory.c:5097 [inline] handle_mm_fault+0x5ef/0xa80 mm/memory.c:5218 do_user_addr_fault+0x4a1/0x980 arch/x86/mm/fault.c:1428 handle_page_fault arch/x86/mm/fault.c:1519 [inline] exc_page_fault+0x60/0x160 arch/x86/mm/fault.c:1575 asm_exc_page_fault+0x22/0x30 arch/x86/include/asm/idtentry.h:570 value changed: 0xffff88810b56a2e0 -> 0x0000000000000000 Reported by Kernel Concurrency Sanitizer on: CPU: 1 PID: 4417 Comm: syz-executor.3 Not tainted 6.1.0-rc4-syzkaller-00015-gf141df371335-dirty #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 ================================================================== syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 CPU: 1 PID: 4417 Comm: syz-executor.3 Not tainted 6.1.0-rc4-syzkaller-00015-gf141df371335-dirty #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0xd6/0x122 lib/dump_stack.c:106 dump_stack+0x11/0x15 lib/dump_stack.c:113 dump_header+0x98/0x430 mm/oom_kill.c:460 oom_kill_process+0x100/0x540 mm/oom_kill.c:1036 out_of_memory+0x620/0x880 mm/oom_kill.c:1174 mem_cgroup_out_of_memory+0x13a/0x180 mm/memcontrol.c:1706 mem_cgroup_oom+0x2e7/0x370 mm/memcontrol.c:1936 try_charge_memcg+0x717/0x9c0 mm/memcontrol.c:2729 try_charge mm/memcontrol.c:2823 [inline] charge_memcg+0x54/0x250 mm/memcontrol.c:6879 __mem_cgroup_charge+0x25/0xa0 mm/memcontrol.c:6900 mem_cgroup_charge include/linux/memcontrol.h:667 [inline] wp_page_copy+0x209/0x1460 mm/memory.c:3141 do_wp_page+0x2dd/0x780 handle_pte_fault mm/memory.c:4973 [inline] __handle_mm_fault mm/memory.c:5097 [inline] handle_mm_fault+0x5ef/0xa80 mm/memory.c:5218 do_user_addr_fault+0x4a1/0x980 arch/x86/mm/fault.c:1428 handle_page_fault arch/x86/mm/fault.c:1519 [inline] exc_page_fault+0x60/0x160 arch/x86/mm/fault.c:1575 asm_exc_page_fault+0x22/0x30 arch/x86/include/asm/idtentry.h:570 RIP: 0033:0x7f714ca5ce1c Code: 83 c8 01 48 89 05 fc a5 c9 00 48 8b 05 ed a0 14 00 48 8d 35 e6 a0 14 00 49 89 b5 c8 02 00 00 49 89 85 c0 02 00 00 48 89 78 08 <48> 89 3d cd a0 14 00 48 c7 05 ca a5 c9 00 00 00 00 00 31 c0 87 05 RSP: 002b:00007ffddc18c8b0 EFLAGS: 00010202 RAX: 00007f714be219c0 RBX: 0000000000021000 RCX: 00007f714be00700 RDX: 0000000000000001 RSI: 00007f714cba6ef0 RDI: 00007f714be009c0 RBP: 00007ffddc18c980 R08: 0000555556f0e810 R09: 0000000000000149 R10: 0000000000020022 R11: 0000000000000120 R12: 00007ffddc18caa0 R13: 00007f714be00700 R14: 0000000000000000 R15: 0000000000022000 memory: usage 8968kB, limit 0kB, failcnt 34 swap: usage 0kB, limit 9007199254740988kB, failcnt 0 Memory cgroup stats for /syz3: anon 139264 file 8384512 kernel 585728 kernel_stack 32768 pagetables 73728 sec_pagetables 0 percpu 8288 sock 0 vmalloc 0 shmem 8380416 file_mapped 122880 file_dirty 0 file_writeback 0 swapcached 0 inactive_anon 139264 active_anon 8380416 inactive_file 4096 active_file 0 unevictable 0 slab_reclaimable 56000 slab_unreclaimable 385680 slab 441680 workingset_refault_anon 0 workingset_refault_file 0 workingset_activate_anon 0 oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=4417,uid=0 Memory cgroup out of memory: Killed process 4417 (syz-executor.3) total-vm:46468kB, anon-rss:500kB, file-rss:9040kB, shmem-rss:76kB, UID:0 pgtables:80kB oom_score_adj:1000 syz-executor.3 (4417) used greatest stack depth: 10240 bytes left