syzbot

==================================================================
BUG: KCSAN: data-race in data_alloc / prb_reserve

write to 0xffffffff86c7e6e0 of 8 bytes by interrupt on cpu 1:
 data_alloc+0x31c/0x390 kernel/printk/printk_ringbuffer.c:1130
 prb_reserve+0x8d6/0xad0 kernel/printk/printk_ringbuffer.c:1727
 vprintk_store+0x54a/0x910 kernel/printk/printk.c:2354
 vprintk_emit+0x1a4/0x600 kernel/printk/printk.c:2455
 vprintk_default+0x26/0x30 kernel/printk/printk.c:2494
 vprintk+0x1d/0x30 kernel/printk/printk_safe.c:82
 _printk+0x79/0xa0 kernel/printk/printk.c:2504
 print_daily_error_info+0x210/0x300 fs/ext4/super.c:3712
 call_timer_fn+0x3b/0x240 kernel/time/timer.c:1748
 expire_timers kernel/time/timer.c:1799 [inline]
 __run_timers kernel/time/timer.c:2374 [inline]
 __run_timer_base+0x415/0x5f0 kernel/time/timer.c:2386
 run_timer_base kernel/time/timer.c:2395 [inline]
 run_timer_softirq+0x31/0x70 kernel/time/timer.c:2405
 handle_softirqs+0xb9/0x280 kernel/softirq.c:622
 __do_softirq kernel/softirq.c:656 [inline]
 invoke_softirq kernel/softirq.c:496 [inline]
 __irq_exit_rcu+0x42/0xd0 kernel/softirq.c:735
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1061 [inline]
 sysvec_apic_timer_interrupt+0x74/0x80 arch/x86/kernel/apic/apic.c:1061
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
 console_flush_one_record arch/x86/include/asm/irqflags.h:-1 [inline]
 console_flush_all+0x540/0x6c0 kernel/printk/printk.c:3343
 __console_flush_and_unlock kernel/printk/printk.c:3373 [inline]
 console_unlock+0xa1/0x280 kernel/printk/printk.c:3413
 vprintk_emit+0x3e4/0x600 kernel/printk/printk.c:2479
 vprintk_default+0x26/0x30 kernel/printk/printk.c:2494
 vprintk+0x1d/0x30 kernel/printk/printk_safe.c:82
 _printk+0x79/0xa0 kernel/printk/printk.c:2504
 br_set_state+0x2ae/0x3b0 net/bridge/br_stp.c:57
 new_nbp+0x235/0x300 net/bridge/br_if.c:444
 br_add_if+0x1e7/0xa60 net/bridge/br_if.c:586
 br_add_slave+0x2c/0x40 net/bridge/br_device.c:375
 do_set_master+0x390/0x460 net/core/rtnetlink.c:2985
 do_setlink+0x97b/0x2950 net/core/rtnetlink.c:3187
 rtnl_changelink net/core/rtnetlink.c:3799 [inline]
 __rtnl_newlink net/core/rtnetlink.c:3972 [inline]
 rtnl_newlink+0x108a/0x1400 net/core/rtnetlink.c:4109
 rtnetlink_rcv_msg+0x64b/0x720 net/core/rtnetlink.c:6995
 netlink_rcv_skb+0x123/0x220 net/netlink/af_netlink.c:2550
 rtnetlink_rcv+0x1c/0x30 net/core/rtnetlink.c:7022
 netlink_unicast_kernel net/netlink/af_netlink.c:1318 [inline]
 netlink_unicast+0x5a8/0x680 net/netlink/af_netlink.c:1344
 netlink_sendmsg+0x5c8/0x6f0 net/netlink/af_netlink.c:1894
 sock_sendmsg_nosec net/socket.c:787 [inline]
 __sock_sendmsg net/socket.c:802 [inline]
 __sys_sendto+0x42e/0x490 net/socket.c:2265
 __do_sys_sendto net/socket.c:2272 [inline]
 __se_sys_sendto net/socket.c:2268 [inline]
 __x64_sys_sendto+0x76/0x90 net/socket.c:2268
 x64_sys_call+0x2d35/0x3020 arch/x86/include/generated/asm/syscalls_64.h:45
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x12c/0x3b0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

read to 0xffffffff86c7e6e0 of 8 bytes by task 2811 on cpu 0:
 desc_read kernel/printk/printk_ringbuffer.c:496 [inline]
 desc_push_tail kernel/printk/printk_ringbuffer.c:792 [inline]
 desc_reserve kernel/printk/printk_ringbuffer.c:938 [inline]
 prb_reserve+0x216/0xad0 kernel/printk/printk_ringbuffer.c:1677
 vprintk_store+0x54a/0x910 kernel/printk/printk.c:2354
 vprintk_emit+0x1a4/0x600 kernel/printk/printk.c:2455
 vprintk_default+0x26/0x30 kernel/printk/printk.c:2494
 vprintk+0x1d/0x30 kernel/printk/printk_safe.c:82
 _printk+0x79/0xa0 kernel/printk/printk.c:2504
 __ext4_warning+0x139/0x150 fs/ext4/super.c:1026
 ext4_enable_quotas+0x391/0x400 fs/ext4/super.c:7265
 __ext4_fill_super fs/ext4/super.c:5688 [inline]
 ext4_fill_super+0x3367/0x37c0 fs/ext4/super.c:5824
 get_tree_bdev_flags+0x291/0x300 fs/super.c:1694
 get_tree_bdev+0x1f/0x30 fs/super.c:1717
 ext4_get_tree+0x1c/0x30 fs/ext4/super.c:5856
 vfs_get_tree+0x57/0x1d0 fs/super.c:1754
 fc_mount fs/namespace.c:1193 [inline]
 do_new_mount_fc fs/namespace.c:3758 [inline]
 do_new_mount+0x288/0x8d0 fs/namespace.c:3834
 path_mount+0x4d0/0xbc0 fs/namespace.c:4154
 do_mount fs/namespace.c:4167 [inline]
 __do_sys_mount fs/namespace.c:4383 [inline]
 __se_sys_mount+0x28c/0x2e0 fs/namespace.c:4360
 __x64_sys_mount+0x67/0x80 fs/namespace.c:4360
 x64_sys_call+0x2d61/0x3020 arch/x86/include/generated/asm/syscalls_64.h:166
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x12c/0x3b0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0x00000000000196e0 -> 0x00000000000d2f00

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 UID: 0 PID: 2811 Comm: syz.9.8823 Tainted: G        W           syzkaller #0 PREEMPT(full) 
Tainted: [W]=WARN
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
==================================================================
EXT4-fs warning (device loop9): ext4_enable_quotas:7269: Failed to enable quota tracking (type=1, err=-117, ino=2). Please run e2fsck to fix.
EXT4-fs (loop9): mount failed