From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id B42C6C8303C for ; Wed, 9 Jul 2025 00:05:39 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id 22CC96B008A; Tue, 8 Jul 2025 20:05:39 -0400 (EDT) Received: by kanga.kvack.org (Postfix, from userid 40) id 204DB6B008C; Tue, 8 Jul 2025 20:05:39 -0400 (EDT) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 0F3776B0092; Tue, 8 Jul 2025 20:05:39 -0400 (EDT) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0015.hostedemail.com [216.40.44.15]) by kanga.kvack.org (Postfix) with ESMTP id F39D56B008A for ; Tue, 8 Jul 2025 20:05:38 -0400 (EDT) Received: from smtpin22.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay10.hostedemail.com (Postfix) with ESMTP id A16BCC024B for ; Wed, 9 Jul 2025 00:05:38 +0000 (UTC) X-FDA: 83642782356.22.2634DB3 Received: from mail-qt1-f173.google.com (mail-qt1-f173.google.com [209.85.160.173]) by imf27.hostedemail.com (Postfix) with ESMTP id D06FD4000B for ; Wed, 9 Jul 2025 00:05:36 +0000 (UTC) Authentication-Results: imf27.hostedemail.com; dkim=pass header.d=google.com header.s=20230601 header.b=vN7xldC0; spf=pass (imf27.hostedemail.com: domain of surenb@google.com designates 209.85.160.173 as permitted sender) smtp.mailfrom=surenb@google.com; dmarc=pass (policy=reject) header.from=google.com ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1752019536; a=rsa-sha256; cv=none; b=nbZbWHFY/o66wb8FcCe1C8Ckh19B9/nUgDNzUatv4IId7xaXFVdXmHm5qq0Rdtk5URrlA9 qjVWlmAbzW2FOIWw+z+J36BSXhKFeNo6Cb/gRz3ANIaxJEdrlm17VGlDtzr7/2brNrMgi0 s1u4yKFdDBivn3wQSP2EYV5w5jvJaGY= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1752019536; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:dkim-signature; bh=ZWjmIXsiTyzaAn5Fvq7Nu/1reyNyuSmU/HozRGcMIrE=; b=Q5YPuq7s//DBZEJLfDpFsLuG04BYcO+DTbcRxSkR/H96l57R1Xj6FYvUtbevYqxiZT+K9s zSRo1/HPIRuaO565AVLnUNMhS1Pe3H5j8RNtl01s/nuco9oxl4PnqdsZ/Ay79NPCTxG4Cj a7+faSHciLvzGpWzKst4J7RA+kC64O4= ARC-Authentication-Results: i=1; imf27.hostedemail.com; dkim=pass header.d=google.com header.s=20230601 header.b=vN7xldC0; spf=pass (imf27.hostedemail.com: domain of surenb@google.com designates 209.85.160.173 as permitted sender) smtp.mailfrom=surenb@google.com; dmarc=pass (policy=reject) header.from=google.com Received: by mail-qt1-f173.google.com with SMTP id d75a77b69052e-4a7fc24ed5cso86341cf.1 for ; Tue, 08 Jul 2025 17:05:36 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20230601; t=1752019536; x=1752624336; darn=kvack.org; h=content-transfer-encoding:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=ZWjmIXsiTyzaAn5Fvq7Nu/1reyNyuSmU/HozRGcMIrE=; b=vN7xldC0e51a6aNlsGKMvCsanb5tIRLa3ne9sYU6P1cPlJK8RhSgijK47ETSigOAbN pnNvTiEr57XineIqfymO86+IoXLKsDAb7oZD3QAgZ6OnqOoMyzomZEIlLbp+Z62Mr0Fv fp9q1PUe7V7NLwgX+RPhfyskCra6QoWuY6g8aLVyrdsR0piqQ4YveAE2ze0oOMA9uGFt XXWS4ahn51RwF+GIfFrEPeM0GTDygfQiszp1Q+3AXKEYqT724gx2pDYrVARI7CwISOCj hErNJ7TDtXYBD8e93FfdFkSWD04x2sN8UOYXlJoMtAMhg4MxGWStEYbd3RFX1lI5B+D6 piCg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1752019536; x=1752624336; h=content-transfer-encoding:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=ZWjmIXsiTyzaAn5Fvq7Nu/1reyNyuSmU/HozRGcMIrE=; b=KCqZr5uVxaAiFXdEdLwDaCrhy4N6lvMXbUcxgu63sUx73+kmrhikTkqFk/Wb82Dpmd sg9g0DmDc5PGuxTYBSGkS9YFXEg9GUWzM7SpKZj4TEhB+86IWFJIiBZKsiNjFvGH4XF5 QQEjywM7pghhZK7QjZPVK6nS3kYo+2qVyLilGsRdVp+GcQ5lfDlijfwCFox8B2bKfPDn I4UT1Cv4RE24GFQ/ObEHdJU38ASGFrJau2dcxrgaB5vpYfxpsGMogPatvKL5GiKTbeOD /Lw2f1H22Gm+vlYQ4ysiJSN5uICRxXFeEBqa/lQCO22zmuKgAoRSThkk60QkTFN5sGtS 1PCQ== X-Forwarded-Encrypted: i=1; AJvYcCW227oiQXk6GC/0SFC/kj6neUKwrUKbR99wo2WJTOKRF+EwZtQToyWRSfEIk/8RUx9x99v7toSDow==@kvack.org X-Gm-Message-State: AOJu0YxTNLz938K7+hubpLPh/rruPB7mz3UyZVfnUzmMzBAk59dbeVTL xwIGMpM+L0Jdyl3IGKkxVLUK41d5tt29ek589+NLHipaA/+r26ylG0vqAdttY5tymk/n5kOKCh9 Ugbq/9aIb5wDRKI0XdS69OVAzJ7ZtgPpSrNbV24Go X-Gm-Gg: ASbGnctx1vl+wwta7HdPeNZV4194DSdfoh86WGWNS++Aa+cVxqhZC3n3caRfeVH+q5v gjdGhxkEgoQiutBjykQ5sXU/bylN4vwFkPfEpAzgxpQ0Me2SOz4oolYjCKaF8AM1C1UKRzNlMzq DT43PSvUcwXcZe5Emg3qUrssBQrJfHeDJwCojHBMJJ/A== X-Google-Smtp-Source: AGHT+IHY7n+pnCpWvmYBvTTrjFt/p2CigV+mAgbzyo/AY9N+OjnQzJxIZ/GAfM8mkwlkpDMfJq1aaqANRZJpt/HDRTU= X-Received: by 2002:a05:622a:468b:b0:4a5:a8b7:6c12 with SMTP id d75a77b69052e-4a9dcd8571cmr1319261cf.26.1752019535521; Tue, 08 Jul 2025 17:05:35 -0700 (PDT) MIME-Version: 1.0 References: <686d5adb.050a0220.1ffab7.0019.GAE@google.com> <6mw4p4shg6myw5a677hkvhzytsnfa2e5zb7zpe6kcqlfjglmol@pzwcbowwy2v5> In-Reply-To: From: Suren Baghdasaryan Date: Tue, 8 Jul 2025 17:05:24 -0700 X-Gm-Features: Ac12FXz0CW4SBrAA1WRZR5__MUBdwP84Q55k8xLxvpsDrGylkCq9MsPwlvZffoQ Message-ID: Subject: Re: [syzbot] [mm?] WARNING: lock held when returning to user space in lock_next_vma To: "Liam R. Howlett" , Suren Baghdasaryan , syzbot , akpm@linux-foundation.org, linux-kernel@vger.kernel.org, linux-mm@kvack.org, lorenzo.stoakes@oracle.com, shakeel.butt@linux.dev, syzkaller-bugs@googlegroups.com, vbabka@suse.cz Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Rspam-User: X-Rspamd-Server: rspam05 X-Rspamd-Queue-Id: D06FD4000B X-Stat-Signature: pstayy8c9c1tcftr9i1hmdcsg1d1p3p8 X-HE-Tag: 1752019536-977411 X-HE-Meta: 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 ty5+5Scp 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 X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: List-Subscribe: List-Unsubscribe: On Tue, Jul 8, 2025 at 4:51=E2=80=AFPM Suren Baghdasaryan wrote: > > On Tue, Jul 8, 2025 at 4:15=E2=80=AFPM Liam R. Howlett wrote: > > > > * Suren Baghdasaryan [250708 18:19]: > > > On Tue, Jul 8, 2025 at 10:52=E2=80=AFAM syzbot > > > wrote: > > > > > > > > Hello, > > > > > > > > syzbot found the following issue on: > > > > > > > > HEAD commit: 26ffb3d6f02c Add linux-next specific files for 2025= 0704 > > > > git tree: linux-next > > > > console output: https://syzkaller.appspot.com/x/log.txt?x=3D1719df7= 0580000 > > > > kernel config: https://syzkaller.appspot.com/x/.config?x=3D1e4f885= 12ae53408 > > > > dashboard link: https://syzkaller.appspot.com/bug?extid=3D80011ad33= eec39e6ce42 > > > > compiler: Debian clang version 20.1.7 (++20250616065708+6146a= 88f6049-1~exp1~20250616065826.132), Debian LLD 20.1.7 > > > > syz repro: https://syzkaller.appspot.com/x/repro.syz?x=3D1124a= bd4580000 > > > > C reproducer: https://syzkaller.appspot.com/x/repro.c?x=3D1099df7= 0580000 > > > > > > > > Downloadable assets: > > > > disk image: https://storage.googleapis.com/syzbot-assets/fd55699031= 43/disk-26ffb3d6.raw.xz > > > > vmlinux: https://storage.googleapis.com/syzbot-assets/1b0c9505c543/= vmlinux-26ffb3d6.xz > > > > kernel image: https://storage.googleapis.com/syzbot-assets/9d864c72= bed1/bzImage-26ffb3d6.xz > > > > > > > > IMPORTANT: if you fix the issue, please add the following tag to th= e commit: > > > > Reported-by: syzbot+80011ad33eec39e6ce42@syzkaller.appspotmail.com > > > > > > > > =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D > > > > WARNING: lock held when returning to user space! > > > > 6.16.0-rc4-next-20250704-syzkaller #0 Not tainted > > > > ------------------------------------------------ > > > > syz.0.22/6068 is leaving the kernel with locks still held! > > > > 1 lock held by syz.0.22/6068: > > > > #0: ffff8880792a3588 (vm_lock){++++}-{0:0}, at: lock_next_vma+0x14= 6/0xdc0 mm/mmap_lock.c:220 > > > > > > Hmm. I must be missing an unlock_vma() somewhere but I don't see it > > > yet. Will try the reproducer. > > > > The last one was against v5 patches, is this v6? > > Oh, good point. Let me check that. Thanks! You are probably right since the latest linux-next does not have my patchset. So it must have been reported with the previous v5 version of the patches.