==================================================================
BUG: KCSAN: data-race in __delete_from_swap_cache / folio_mapping

write to 0xffffea00042c5c68 of 8 bytes by task 17594 on cpu 0:
 __delete_from_swap_cache+0x1f0/0x290 mm/swap_state.c:163
 delete_from_swap_cache+0x72/0xe0 mm/swap_state.c:243
 shmem_swapin_folio+0xf01/0x1000 mm/shmem.c:2387
 shmem_get_folio_gfp+0x26e/0xd90 mm/shmem.c:2455
 shmem_fault+0xfa/0x250 mm/shmem.c:2723
 __do_fault+0xb6/0x200 mm/memory.c:4977
 do_read_fault mm/memory.c:5392 [inline]
 do_fault mm/memory.c:5526 [inline]
 do_pte_missing mm/memory.c:4047 [inline]
 handle_pte_fault mm/memory.c:5889 [inline]
 __handle_mm_fault mm/memory.c:6032 [inline]
 handle_mm_fault+0xe98/0x2ac0 mm/memory.c:6201
 faultin_page mm/gup.c:1196 [inline]
 __get_user_pages+0xf6a/0x2350 mm/gup.c:1491
 __get_user_pages_locked mm/gup.c:1757 [inline]
 __gup_longterm_locked+0x932/0xf90 mm/gup.c:2523
 pin_user_pages_remote+0x7f/0xb0 mm/gup.c:3567
 process_vm_rw_single_vec mm/process_vm_access.c:106 [inline]
 process_vm_rw_core mm/process_vm_access.c:216 [inline]
 process_vm_rw+0x4bc/0x890 mm/process_vm_access.c:284
 __do_sys_process_vm_readv mm/process_vm_access.c:296 [inline]
 __se_sys_process_vm_readv mm/process_vm_access.c:292 [inline]
 __x64_sys_process_vm_readv+0x7a/0x90 mm/process_vm_access.c:292
 x64_sys_call+0xb24/0x2dc0 arch/x86/include/generated/asm/syscalls_64.h:311
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

read to 0xffffea00042c5c68 of 8 bytes by task 17602 on cpu 1:
 folio_mapping+0xdb/0x120 mm/util.c:857
 folio_evictable mm/internal.h:437 [inline]
 lru_add+0x89/0x440 mm/swap.c:136
 folio_batch_move_lru+0x15f/0x230 mm/swap.c:168
 __folio_batch_add_and_move mm/swap.c:196 [inline]
 folio_add_lru+0x145/0x1f0 mm/swap.c:505
 __read_swap_cache_async+0x3ef/0x480 mm/swap_state.c:530
 swap_cluster_readahead+0x279/0x3f0 mm/swap_state.c:683
 shmem_swapin_cluster mm/shmem.c:1705 [inline]
 shmem_swapin_folio+0xbfb/0x1000 mm/shmem.c:2337
 shmem_get_folio_gfp+0x26e/0xd90 mm/shmem.c:2455
 shmem_fault+0xfa/0x250 mm/shmem.c:2723
 __do_fault+0xb6/0x200 mm/memory.c:4977
 do_read_fault mm/memory.c:5392 [inline]
 do_fault mm/memory.c:5526 [inline]
 do_pte_missing mm/memory.c:4047 [inline]
 handle_pte_fault mm/memory.c:5889 [inline]
 __handle_mm_fault mm/memory.c:6032 [inline]
 handle_mm_fault+0xe98/0x2ac0 mm/memory.c:6201
 do_user_addr_fault arch/x86/mm/fault.c:1388 [inline]
 handle_page_fault arch/x86/mm/fault.c:1480 [inline]
 exc_page_fault+0x296/0x650 arch/x86/mm/fault.c:1538
 asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:623
 rep_movs_alternative+0x4a/0x70 arch/x86/lib/copy_user_64.S:65
 copy_user_generic arch/x86/include/asm/uaccess_64.h:126 [inline]
 raw_copy_from_user arch/x86/include/asm/uaccess_64.h:141 [inline]
 copy_from_user_iter lib/iov_iter.c:55 [inline]
 iterate_ubuf include/linux/iov_iter.h:30 [inline]
 iterate_and_advance2 include/linux/iov_iter.h:300 [inline]
 iterate_and_advance include/linux/iov_iter.h:328 [inline]
 __copy_from_iter lib/iov_iter.c:249 [inline]
 _copy_from_iter+0x144/0xd00 lib/iov_iter.c:260
 copy_from_iter include/linux/uio.h:228 [inline]
 copy_from_iter_full include/linux/uio.h:245 [inline]
 skb_do_copy_data_nocache include/net/sock.h:2196 [inline]
 skb_copy_to_page_nocache include/net/sock.h:2222 [inline]
 kcm_sendmsg+0x8c6/0x1690 net/kcm/kcmsock.c:859
 sock_sendmsg_nosec net/socket.c:718 [inline]
 __sock_sendmsg+0x140/0x180 net/socket.c:733
 sock_write_iter+0x15e/0x1a0 net/socket.c:1137
 new_sync_write fs/read_write.c:586 [inline]
 vfs_write+0x77b/0x920 fs/read_write.c:679
 ksys_write+0xe8/0x1b0 fs/read_write.c:731
 __do_sys_write fs/read_write.c:742 [inline]
 __se_sys_write fs/read_write.c:739 [inline]
 __x64_sys_write+0x42/0x50 fs/read_write.c:739
 x64_sys_call+0x287e/0x2dc0 arch/x86/include/generated/asm/syscalls_64.h:2
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xc9/0x1c0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0x0000000000006b92 -> 0x0000000000000000

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 UID: 0 PID: 17602 Comm: syz.1.4937 Tainted: G        W          6.14.0-rc2-syzkaller-00185-g128c8f96eb86 #0
Tainted: [W]=WARN
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
==================================================================