From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id 9EC78C5AD49 for ; Tue, 3 Jun 2025 15:31:33 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id D26E36B04AF; Tue, 3 Jun 2025 11:31:32 -0400 (EDT) Received: by kanga.kvack.org (Postfix, from userid 40) id CB0386B04B0; Tue, 3 Jun 2025 11:31:32 -0400 (EDT) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id BC6336B04B1; Tue, 3 Jun 2025 11:31:32 -0400 (EDT) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0015.hostedemail.com [216.40.44.15]) by kanga.kvack.org (Postfix) with ESMTP id 957376B04AF for ; Tue, 3 Jun 2025 11:31:32 -0400 (EDT) Received: from smtpin09.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay09.hostedemail.com (Postfix) with ESMTP id 3DA6380C85 for ; Tue, 3 Jun 2025 15:31:32 +0000 (UTC) X-FDA: 83514478824.09.C9566EC Received: from mail-il1-f206.google.com (mail-il1-f206.google.com [209.85.166.206]) by imf16.hostedemail.com (Postfix) with ESMTP id 5C3BA180002 for ; Tue, 3 Jun 2025 15:31:30 +0000 (UTC) Authentication-Results: imf16.hostedemail.com; dkim=none; dmarc=fail reason="SPF not aligned (relaxed), No valid DKIM" header.from=appspotmail.com (policy=none); spf=pass (imf16.hostedemail.com: domain of 3URU_aAkbAMAy45qgrrkxgvvoj.muumrk0ykxiutzktz.ius@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com designates 209.85.166.206 as permitted sender) smtp.mailfrom=3URU_aAkbAMAy45qgrrkxgvvoj.muumrk0ykxiutzktz.ius@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1748964690; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type:content-transfer-encoding:in-reply-to: references; bh=V6+WFHc8Xd2Rs5cqfXrWuYOJWj2GC9zBKyolOD6WGw0=; b=UBmxWhssjLmLoMo8FnDLTLg4DxCN1nsFLxO2PTWeUYiAeRh8M3XY5wuQfUfu8m7JWUvUqs DtHCFk6e/D/C/NyZWDQduEq4vDDGMccMqEMJ45t6zkogr7PEQiP+qNcPo8iP+vU6NDr6s4 r30s6Jb2NTzU3Fy5ve+Jf9HnII43fKY= ARC-Authentication-Results: i=1; imf16.hostedemail.com; dkim=none; dmarc=fail reason="SPF not aligned (relaxed), No valid DKIM" header.from=appspotmail.com (policy=none); spf=pass (imf16.hostedemail.com: domain of 3URU_aAkbAMAy45qgrrkxgvvoj.muumrk0ykxiutzktz.ius@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com designates 209.85.166.206 as permitted sender) smtp.mailfrom=3URU_aAkbAMAy45qgrrkxgvvoj.muumrk0ykxiutzktz.ius@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1748964690; a=rsa-sha256; cv=none; b=8JqCx2WKuAjJ14sGJ4NKrPYUWniR8UnBGX7rDa3eU5zxGNIfQDmew6HexHw3NK+nSoUuOK CVBEGDlYOzbXnL27VHySQG+ndZ2QJa6pEzeazOwGKYMhMD4xrNu2tUuXgd0CDqv3PXla6R nNn9fq8xVHcdVlaE3H0aVFWf8xBQzlE= Received: by mail-il1-f206.google.com with SMTP id e9e14a558f8ab-3ddb4dcebfaso27465355ab.1 for ; Tue, 03 Jun 2025 08:31:30 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1748964689; x=1749569489; h=to:from:subject:message-id:date:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=V6+WFHc8Xd2Rs5cqfXrWuYOJWj2GC9zBKyolOD6WGw0=; b=eJzAHsMrkzx+ymH4rLJc3MLLgvgtwE7S7SJ/8f1pYsVXh/hS9vJnYDlARmi4r1OVQY 0kprDD0H5ritVafeU2KToYrLc22XjEA7zdh5A+XkpaEzoWqf5DDebdwy2ZeA8Dg3fv53 hYnLmlrhACWAN/muGa/yBuso61F8FzF1xOQQY08pMfIhO2R9KIpBK13p2GJJPtf2PLDR WIEDzUynF0K3Sd9C/btr0BNeAOELDIo6L+MkE2qU3GHylIeeYnd2kmJQDmQHFsNboplY laBNSu0mVkG2NdVTfdYZjwQOKO22JeO0TVq5DPQdWssyk3Wb2z1elMGmQa9EOa4iOovn AaNA== X-Forwarded-Encrypted: i=1; AJvYcCWgz2TB5oQ25ulw9KOsQ+NFS5XU7NGa30v/PODkumEOW3M7DzRzppgHSGnuN3gk0B9N+oJZ8mO05Q==@kvack.org X-Gm-Message-State: AOJu0YwVgX2jeDbSl+K4Ldk+KRUNle2TBfCOa+F7kUcVBdUf5h+5lQzG TVeLV69fJaGflDs0EXcbUYvdD/L3Z+DNLkDfMw/o6Kfbyy+4t/NVrw3DJi2bHU4HiV02FbtIM16 6d3iT6YZ55Pzno9RDgQ/+UnK8HntLuM48YwMEVCBbFOVUBfS8ssY98PNx7mw= X-Google-Smtp-Source: AGHT+IEOdHxSXjVumgLl07nzksYwLrQcaFcK7H9ZWivPHOAaD4reLIzh0tBf4A8wo8kmauv+injTXdG4v/Dyy4BhhMysgdIJ/L/f MIME-Version: 1.0 X-Received: by 2002:a05:6e02:3e02:b0:3d4:3db1:77ae with SMTP id e9e14a558f8ab-3dd99c28958mr217938205ab.18.1748964689425; Tue, 03 Jun 2025 08:31:29 -0700 (PDT) Date: Tue, 03 Jun 2025 08:31:29 -0700 X-Google-Appengine-App-Id: s~syzkaller X-Google-Appengine-App-Id-Alias: syzkaller Message-ID: <683f1551.050a0220.55ceb.0017.GAE@google.com> Subject: [syzbot] [mm?] kernel BUG in sanity_check_pinned_pages From: syzbot To: akpm@linux-foundation.org, david@redhat.com, jgg@ziepe.ca, jhubbard@nvidia.com, linux-kernel@vger.kernel.org, linux-mm@kvack.org, peterx@redhat.com, syzkaller-bugs@googlegroups.com Content-Type: text/plain; charset="UTF-8" X-Rspamd-Server: rspam12 X-Rspamd-Queue-Id: 5C3BA180002 X-Stat-Signature: z456kpap4rzr33ux9od14c8553yepdsr X-Rspam-User: X-HE-Tag: 1748964690-129909 X-HE-Meta: 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 NNg45dwT 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 pQ6pDzlT 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 X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: List-Subscribe: List-Unsubscribe: Hello, syzbot found the following issue on: HEAD commit: d7fa1af5b33e Merge branch 'for-next/core' into for-kernelci git tree: git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci console output: https://syzkaller.appspot.com/x/log.txt?x=1457d80c580000 kernel config: https://syzkaller.appspot.com/x/.config?x=89c13de706fbf07a dashboard link: https://syzkaller.appspot.com/bug?extid=1d335893772467199ab6 compiler: Debian clang version 20.1.6 (++20250514063057+1e4d39e07757-1~exp1~20250514183223.118), Debian LLD 20.1.6 userspace arch: arm64 Unfortunately, I don't have any reproducer for this issue yet. Downloadable assets: disk image: https://storage.googleapis.com/syzbot-assets/da97ad659b2c/disk-d7fa1af5.raw.xz vmlinux: https://storage.googleapis.com/syzbot-assets/659e123552a8/vmlinux-d7fa1af5.xz kernel image: https://storage.googleapis.com/syzbot-assets/6ec5dbf4643e/Image-d7fa1af5.gz.xz IMPORTANT: if you fix the issue, please add the following tag to the commit: Reported-by: syzbot+1d335893772467199ab6@syzkaller.appspotmail.com head: ffffffff000001fe 0000000000000028 0000000000000000 0000000000000200 page dumped because: VM_BUG_ON_PAGE(!PageAnonExclusive(&folio->page) && !PageAnonExclusive(page)) ------------[ cut here ]------------ kernel BUG at mm/gup.c:70! Internal error: Oops - BUG: 00000000f2000800 [#1] SMP Modules linked in: CPU: 1 UID: 0 PID: 115 Comm: kworker/u8:4 Not tainted 6.15.0-rc7-syzkaller-gd7fa1af5b33e #0 PREEMPT Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 Workqueue: iou_exit io_ring_exit_work pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : sanity_check_pinned_pages+0x7cc/0x7d0 mm/gup.c:69 lr : sanity_check_pinned_pages+0x7cc/0x7d0 mm/gup.c:69 sp : ffff800097f17640 x29: ffff800097f17660 x28: dfff800000000000 x27: 1fffffbff87da000 x26: 05ffc0000002107c x25: 05ffc0000002107c x24: fffffdffc3ed0000 x23: fffffdffc3ed0000 x22: ffff800097f176e0 x21: 05ffc0000002107c x20: 0000000000000000 x19: ffff800097f176e0 x18: 1fffe0003386f276 x17: 703e2d6f696c6f66 x16: ffff80008adbe9e4 x15: 0000000000000001 x14: 1fffe0003386f2e2 x13: 0000000000000000 x12: 0000000000000000 x11: ffff60003386f2e3 x10: 0000000000ff0100 x9 : c8ccd30be98f3f00 x8 : c8ccd30be98f3f00 x7 : 0000000000000001 x6 : 0000000000000001 x5 : ffff800097f16d58 x4 : ffff80008f415ba0 x3 : ffff8000807b4b68 x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000061 Call trace: sanity_check_pinned_pages+0x7cc/0x7d0 mm/gup.c:69 (P) unpin_user_page+0x80/0x10c mm/gup.c:191 io_release_ubuf+0x84/0xf8 io_uring/rsrc.c:113 io_buffer_unmap io_uring/rsrc.c:140 [inline] io_free_rsrc_node+0x250/0x57c io_uring/rsrc.c:513 io_put_rsrc_node io_uring/rsrc.h:103 [inline] io_rsrc_data_free+0x148/0x298 io_uring/rsrc.c:197 io_sqe_buffers_unregister+0x84/0xa0 io_uring/rsrc.c:607 io_ring_ctx_free+0x48/0x430 io_uring/io_uring.c:2723 io_ring_exit_work+0x6c4/0x73c io_uring/io_uring.c:2962 process_one_work+0x7e8/0x156c kernel/workqueue.c:3238 process_scheduled_works kernel/workqueue.c:3319 [inline] worker_thread+0x958/0xed8 kernel/workqueue.c:3400 kthread+0x5fc/0x75c kernel/kthread.c:464 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:847 Code: 900523a1 910e0021 aa1703e0 97fff8a9 (d4210000) ---[ end trace 0000000000000000 ]--- --- This report is generated by a bot. It may contain errors. See https://goo.gl/tpsmEJ for more information about syzbot. syzbot engineers can be reached at syzkaller@googlegroups.com. syzbot will keep track of this issue. See: https://goo.gl/tpsmEJ#status for how to communicate with syzbot. If the report is already addressed, let syzbot know by replying with: #syz fix: exact-commit-title If you want to overwrite report's subsystems, reply with: #syz set subsystems: new-subsystem (See the list of subsystem names on the web dashboard) If the report is a duplicate of another one, reply with: #syz dup: exact-subject-of-another-report If you want to undo deduplication, reply with: #syz undup