From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id 4A610E77188 for ; Fri, 10 Jan 2025 21:25:07 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id B82316B00A5; Fri, 10 Jan 2025 16:25:06 -0500 (EST) Received: by kanga.kvack.org (Postfix, from userid 40) id B33316B00A6; Fri, 10 Jan 2025 16:25:06 -0500 (EST) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 9D2E66B00A7; Fri, 10 Jan 2025 16:25:06 -0500 (EST) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0015.hostedemail.com [216.40.44.15]) by kanga.kvack.org (Postfix) with ESMTP id 7D2566B00A5 for ; Fri, 10 Jan 2025 16:25:06 -0500 (EST) Received: from smtpin28.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay04.hostedemail.com (Postfix) with ESMTP id 2640B1A0E8E for ; Fri, 10 Jan 2025 21:25:06 +0000 (UTC) X-FDA: 82992822612.28.592396B Received: from mail-qt1-f171.google.com (mail-qt1-f171.google.com [209.85.160.171]) by imf09.hostedemail.com (Postfix) with ESMTP id 4A56E14000C for ; Fri, 10 Jan 2025 21:25:04 +0000 (UTC) Authentication-Results: imf09.hostedemail.com; dkim=pass header.d=google.com header.s=20230601 header.b=y0pm3Nxa; spf=pass (imf09.hostedemail.com: domain of surenb@google.com designates 209.85.160.171 as permitted sender) smtp.mailfrom=surenb@google.com; dmarc=pass (policy=reject) header.from=google.com ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1736544304; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:dkim-signature; bh=4vTFdak0WG/BU8uDOor4sRtgjkCoKmIjOESxt8xKVH4=; b=ciyzV3Gkwa1LH6K1UT2vraXWPvV6O+dTIWAyGlPDCcyF1WsN617yefDeIVU3etihwj+k0d mJJd/JaZ8EK2nAIOntD47jAfZ4JSDcJBSgoHcgAcFYxCYWp4FS7XcNsQm9PXUZ4Kjypm2T aG7pciYf7/9lW5+h8q5FBI5y5DXOeTk= ARC-Authentication-Results: i=1; imf09.hostedemail.com; dkim=pass header.d=google.com header.s=20230601 header.b=y0pm3Nxa; spf=pass (imf09.hostedemail.com: domain of surenb@google.com designates 209.85.160.171 as permitted sender) smtp.mailfrom=surenb@google.com; dmarc=pass (policy=reject) header.from=google.com ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1736544304; a=rsa-sha256; cv=none; b=hJzT2F0ohuig3MewPyidYMm6gtkXl7jdMalo7fccTLcNpJXuPRRxVco7QP0lV1LV6AUAkT qW9JizqMUMknUg3y7atNEkvpZSCLUUXbg4FeUhUROcUmai/BKQWjRku+yFN//GjoYRlhgy 4qp3twulpJODmjFs+mlnT/B4Dsa93Xc= Received: by mail-qt1-f171.google.com with SMTP id d75a77b69052e-467abce2ef9so57371cf.0 for ; Fri, 10 Jan 2025 13:25:04 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20230601; t=1736544303; x=1737149103; darn=kvack.org; h=content-transfer-encoding:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=4vTFdak0WG/BU8uDOor4sRtgjkCoKmIjOESxt8xKVH4=; b=y0pm3NxaorvFWZbBLXx1+m821i0LqA0TmhFSiWZFesJmDoW9wsq3tmD10OzJc/ZSx7 naiY1tZPLo/e55to+zRKtwVTJ2m8ohZk8WjPfY+TPZczW4Z8zuNDt0TSvZ1T03Wz5qoN /wlliQ37I1w1A3WznJ7G3KP+RmgC6PTKQ4DRTI44roIWS8Y7nowDmy9Xa3rHNnMVriQv NMZcPyhKf0bML2+cK7wGp670ovqCLhxOhdunpKgWC5l5tmVoJQa9TAL1MSzWtXwP9bAc qHnypZN6gE++HrDLYttvtYRv7J+xI35Ad+WYcKQM3LvPPqmfYM6CKrKqOarirAJaIBUC cRdA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1736544303; x=1737149103; h=content-transfer-encoding:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=4vTFdak0WG/BU8uDOor4sRtgjkCoKmIjOESxt8xKVH4=; b=UuNO66qjpyM6uQ6w5YQkByIA+M0U7ci6veU45dmd+G7ptkXmJPbMzFRGjvrC09LijB YIiMIMBBDLBst+MpddTWok8qYT+/INL7UCF0dvwq9dUsYbTqD6wsym4Q3XxfAFVxSE4Y JdIfCTziVzvLf0JG0NXg6qJgKbOj9Hff715S8cwPR6p0JsgtTHKSdQyf/bUP9dYOHPtU I/TTzIlkHo1dzdW1K1ZFQUi99eFWZCbBUmCSMZBqaza+lg+YGyKeVaG778c18fTigYzM //4ZUQlkoe1hwluCY6Tq0QBtVFP/FNwFd/yzpX31SM2Z/aigU/Adweo+z7V3TPvgkEeH C88A== X-Forwarded-Encrypted: i=1; AJvYcCVv7Z3SyEQ2K6Fnpvs5K3JgDiAvkJVo8KjLVm/e+DocUVVtY9tKg6IrjHJj/08jZuAvF6kpNaqTDw==@kvack.org X-Gm-Message-State: AOJu0YyxGJEEeBT3FGVIgyRfq+K8ljE9jbQBSIaRmHj96IxnZR+0Ghgh 6y1zufFiUqRGNjOA2c+6GpMOm+nasEBPWUPQq4wxiqBaO0+osKoJ+xoyAutBMnvicGr+6uM+PBy XgxQrWooO4WxouP+keg9S/bgEffH0+RYbKjzR X-Gm-Gg: ASbGncs69an+zCDf089vdkrlUEBAG4Zz0xhFTI/3KORyUxGoD/+itJ6v9LP41YPoyTP AtS2WcHMSVQRDEFmkh0zhmJzwNplUOQSywf2fLA== X-Google-Smtp-Source: AGHT+IEUC7y9a2BZSRztrdLkJH/Qbd2yN5HV3EAiICA9g/zRZffHrdLx77s7JvRpIAfU84CCZrVer9AQNCOEs2KV3f8= X-Received: by 2002:a05:622a:148d:b0:463:6fc7:e7cb with SMTP id d75a77b69052e-46c89daa62fmr4024051cf.11.1736544303127; Fri, 10 Jan 2025 13:25:03 -0800 (PST) MIME-Version: 1.0 References: <676fee37.050a0220.2f3838.0497.GAE@google.com> <51de00af-9860-4617-80d4-8c9818bcce3d@redhat.com> In-Reply-To: From: Suren Baghdasaryan Date: Fri, 10 Jan 2025 13:24:51 -0800 X-Gm-Features: AbW1kvY8f8iaiEk_mixP_Eosd5_K10D0hgYcKe2ROqDsZqGhNa2lo--obhFFqms Message-ID: Subject: Re: [syzbot] [mm?] WARNING in __folio_rmap_sanity_checks (2) To: "Liam R. Howlett" , Suren Baghdasaryan , Matthew Wilcox , syzbot , akpm@linux-foundation.org, hdanton@sina.com, linux-kernel@vger.kernel.org, linux-mm@kvack.org, syzkaller-bugs@googlegroups.com, Lorenzo Stoakes , David Hildenbrand Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Rspamd-Server: rspam06 X-Rspamd-Queue-Id: 4A56E14000C X-Rspam-User: X-Stat-Signature: 43ifjg45dyu7wfdokhhiodme9owxoqqd X-HE-Tag: 1736544304-281130 X-HE-Meta: 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 HbTcTrst vZHOiyLLeasIEmg2zFwj7za9sMKPZ6ywP8KKyU8YGeSWUOf9ZFbda2jwqR6yRg/7Oas0VQ6wLWClUxVuRZiMokM5+C68WZxS0BzDyDw61Pn7z3NOQBMLbd54N65fhb/6Y2kf8+LBWq6Yd23M41VxVvID5X9Ts9fzdH42BudyJCBPZ2mMcGU5SBCcJS3GXfRWBoAPhRo7GxNY04+J+5w/v7UdCuW5uEMsTFOUrn5Nv+Y2n1mswF0DN5WmMcoRe5+4Px7SW6nDHEdG9ZsfLzTHN//HbD/DZZxktWLrWar1wXfXakwTjv8uXDX/RkGUEGltWDXxPkA9nHMhwch2wXFZgOaSMNGFsXqTbS5KHDdnobflb4TDJSelxrTWGwET4DDA+MqQk6zglBt0Om4XsRViEHTbaRd2VG+DUzhi4Enbw/WP35M79OUrpLgKAwYvr6v+LtYCUwtLA9gYVczmXgcn8dKCuUr1tTKCYb5lL X-Bogosity: Ham, tests=bogofilter, spamicity=0.000917, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: List-Subscribe: List-Unsubscribe: On Fri, Jan 10, 2025 at 11:56=E2=80=AFAM Liam R. Howlett wrote: > > * David Hildenbrand [250110 11:31]: > > On 10.01.25 17:27, Matthew Wilcox wrote: > > > On Fri, Jan 10, 2025 at 05:19:54PM +0100, David Hildenbrand wrote: > > > > On 10.01.25 17:14, Matthew Wilcox wrote: > > > > > On Fri, Jan 10, 2025 at 04:48:03PM +0100, David Hildenbrand wrote= : > > > > > > If I would have to guess, I would assume that we have a refcoun= t issue such > > > > > > that we succeed in splitting a folio while concurrently mapping= it. > > > > > > > > > > That would seem hard to accomplish, because both hold the folio l= ock, > > > > > so it wouldn't be just a refcount bug but also a locking bug. No= t sure > > > > > what this is though. > > > > > > > > Yeah, but we also have > > > > > > > > https://lkml.kernel.org/r/6774bf44.050a0220.25abdd.098a.GAE@google.= com > > > > > > That one is a UAF on the vma, so it's either a different issue, or th= e > > > problem is with the VMA refcount/lookup/..., not the folio refcount. > > > cc'ing the relevant maintainers. > > > > Agreed, it's all a bit confusing. > > > > This might involve Suren's patch set which changes the locking of the > vmas. Possibly... The patchset in linux-next on Jan 1st was somewhat different from the latest one. > > Suren, if you respin and it's not too much trouble can you please make a > git branch with the latest patches for easier review and testing? Ok, I'll see what I can do. Thanks, Suren. > > Thanks, > Liam