Received: by 10.213.65.68 with SMTP id h4csp698828imn;
        Fri, 6 Apr 2018 07:28:47 -0700 (PDT)
X-Google-Smtp-Source: AIpwx49+TQqbSlqjVPCanAzPNkLnW3XrTfBPe70RZLq3+BAKSB1RjmHegZdhc0y1e+ISBaWIStf7
X-Received: by 10.98.66.203 with SMTP id h72mr20612723pfd.156.1523024927174;
        Fri, 06 Apr 2018 07:28:47 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1523024927; cv=none;
        d=google.com; s=arc-20160816;
        b=eRpfBgtQMj7RLNIVFBNTZuBZRxoPz0P9roGRY+fhU3iOEGL3X3tsKBKFB6PgrMClPZ
         lSL1Y4faG9N5XtxoOPj/dlUZnCHc7c0zHIyjXVjmDflJX/ab9H3UyvDVDUpD9gc9c0Wx
         pdfN5848rqZJCrakNG9PZVuJbve1AsZko4N3pUIrfzc5SnV8uWHlUPca8bQHSWMc+Gu5
         jU2G7yQp4pzmyySvAEftDAavXSd4Ym32yWYrGpAT/zmYiaZI2opQXKY2fmIpsrfK5O1p
         0pAKd4SJdEClV8Jgq9d0YS+583lD63YRvTNiSCKoAkQZOl+16VnLDPv0x/PMH4SDoFyy
         hPcA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding
         :content-language:in-reply-to:mime-version:user-agent:date
         :message-id:from:references:to:subject:dkim-signature
         :arc-authentication-results;
        bh=GwTiKSDS48o62IOcHi23UVJv7hwG6kigxeQJDXAzwWs=;
        b=oEqh9s7k9QZnpXqQtFZ8tYVAtvxxnaH2DSPiQ0dOGBV+UfVXRZ1bOIfe1aG7O7Lmv9
         cvQO/Fn3h0onCQ43GfTjsInkyShy1+8RT8CDYNkGIem3EMSJueepJ4vv2kuxFxtHfsCY
         ETBSHyiB4zj7PvzHVhPAHRfg3+vM4fguNJL1jvURAcZ10mZlNgfgjzPCUKqmpxfcsc8G
         8lNRfZZ0VpEJrunVu6h1w/G/9m6jzMlZTbFyiCw/9TadsxgY0tTdeVnmcxwpDIz2mr1c
         1N7Nh3WvPfHVWC/voZsy1KvWIvbocdA2hgFqg9AqHzsRbBT7YDa+ulSze4ZFE1eexENi
         iAag==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@kernel-dk.20150623.gappssmtp.com header.s=20150623 header.b=Y30Te+UQ;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id 92-v6si8194431plw.229.2018.04.06.07.28.33;
        Fri, 06 Apr 2018 07:28:47 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@kernel-dk.20150623.gappssmtp.com header.s=20150623 header.b=Y30Te+UQ;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1756324AbeDFO1M (ORCPT <rfc822;brice.berna@gmail.com>
        + 99 others); Fri, 6 Apr 2018 10:27:12 -0400
Received: from mail-it0-f41.google.com ([209.85.214.41]:54002 "EHLO
        mail-it0-f41.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1752447AbeDFO1J (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 6 Apr 2018 10:27:09 -0400
Received: by mail-it0-f41.google.com with SMTP id m134-v6so2196168itb.3
        for <linux-kernel@vger.kernel.org>; Fri, 06 Apr 2018 07:27:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=kernel-dk.20150623.gappssmtp.com; s=20150623;
        h=subject:to:references:from:message-id:date:user-agent:mime-version
         :in-reply-to:content-language:content-transfer-encoding;
        bh=GwTiKSDS48o62IOcHi23UVJv7hwG6kigxeQJDXAzwWs=;
        b=Y30Te+UQfWa/66+j/6TD+0PeJYHVM6B61obtTI2Y5jXSrgRbm5MdMVkz2BLGa/KA4J
         NCOX1XGpkntast/iuaT54fdKuz2sZkR3kpBEZqURyB27Q3N4Jnw3bu254lxcbw9kIo7p
         n5WY1noF+qaj3Z3WAQoQH/Fn9z+MxlT7O372ptOduZjBL07S/LtB3rrDxSQCQMu4RSod
         yl1VR/084qfCpIvhKpAJv1LxkpdsTPUhOwOiqas/WGnRA6knqLQBM1j6CbIR3UE5RrrY
         YCib7q0dgii0Cu1FAxo/JRrySmnWf4fzGTsHwBXXt4ImEdr7pBFG2rBj7lurk3YTAkSq
         ncTg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:subject:to:references:from:message-id:date
         :user-agent:mime-version:in-reply-to:content-language
         :content-transfer-encoding;
        bh=GwTiKSDS48o62IOcHi23UVJv7hwG6kigxeQJDXAzwWs=;
        b=SOcXJkOmM9cUnnP+0Uzrx6Ap+i7RoJjUTrKxCRV+L2tpa7yt9UkI6aJ+mcNrKYmXgX
         nNVgQ2sfmVP8U8bnstVojzZ3tU8lu4RvsLsw751S225w9vNqzZEayuZ3DfD96cYQHcgo
         v0u9/XQWHMhZ4x2ji+8SEZdV27+yfZiclnQ5n8VJpGFFtk3ziRnY63oE1bgb0Kk07ulr
         Pktk3jJKb7N6W5lmlX3FDTKulHLU09w1fIkeO83vLZYVQt33vnr8n1jr2QW7MFZ9q459
         DWxg1uDhdiEFtvTPlyd0Pg93swBEO29+HhMk0wSojzeNuf8YpdNHOTVXe+TqknPjjL4u
         dIlw==
X-Gm-Message-State: ALQs6tCq1rUhCQctjGDMsy5QbXJ0WkVJVqHYxoywvNVpko8DWUqd4xNa
        vRs/w9tJgEs6fFYiY29hv9+vWQ==
X-Received: by 2002:a24:3597:: with SMTP id k145-v6mr7448908ita.73.1523024828744;
        Fri, 06 Apr 2018 07:27:08 -0700 (PDT)
Received: from [192.168.1.154] ([216.160.245.98])
        by smtp.gmail.com with ESMTPSA id n7sm7782087ioo.43.2018.04.06.07.27.07
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Fri, 06 Apr 2018 07:27:07 -0700 (PDT)
Subject: Re: WARNING: lock held when returning to user space!
To:     syzbot <syzbot+31e8daa8b3fc129e75f2@syzkaller.appspotmail.com>,
        linux-block@vger.kernel.org, linux-kernel@vger.kernel.org,
        syzkaller-bugs@googlegroups.com,
        Omar Sandoval <osandov@osandov.com>
References: <00000000000082922905692da9e1@google.com>
From:   Jens Axboe <axboe@kernel.dk>
Message-ID: <0e998b77-14f0-aee0-8d32-bc1dd96fcc4c@kernel.dk>
Date:   Fri, 6 Apr 2018 08:27:06 -0600
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101
 Thunderbird/60.0
MIME-Version: 1.0
In-Reply-To: <00000000000082922905692da9e1@google.com>
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On 4/6/18 7:02 AM, syzbot wrote:
> Hello,
> 
> syzbot hit the following crash on upstream commit
> 38c23685b273cfb4ccf31a199feccce3bdcb5d83 (Fri Apr 6 04:29:35 2018 +0000)
> Merge tag 'armsoc-drivers' of  
> git://git.kernel.org/pub/scm/linux/kernel/git/arm/arm-soc
> syzbot dashboard link:  
> https://syzkaller.appspot.com/bug?extid=31e8daa8b3fc129e75f2
> 
> So far this crash happened 9 times on upstream.
> C reproducer: https://syzkaller.appspot.com/x/repro.c?id=6407930337296384
> syzkaller reproducer:  
> https://syzkaller.appspot.com/x/repro.syz?id=4942413340606464
> Raw console output:  
> https://syzkaller.appspot.com/x/log.txt?id=4764483918495744
> Kernel config:  
> https://syzkaller.appspot.com/x/.config?id=-5813481738265533882
> compiler: gcc (GCC) 8.0.1 20180301 (experimental)
> 
> IMPORTANT: if you fix the bug, please add the following tag to the commit:
> Reported-by: syzbot+31e8daa8b3fc129e75f2@syzkaller.appspotmail.com
> It will help syzbot understand when the bug is fixed. See footer for  
> details.
> If you forward the report, please keep this part and the footer.
> 
> 
> ================================================
> WARNING: lock held when returning to user space!
> 4.16.0+ #3 Not tainted
> ------------------------------------------------
> syzkaller433111/4462 is leaving the kernel with locks still held!
> 1 lock held by syzkaller433111/4462:
>   #0: 0000000003a06fae (&lo->lo_ctl_mutex/1){+.+.}, at: lo_ioctl+0x8d/0x1ec0  
> drivers/block/loop.c:1363

Is this a new regression? Omar did just fiddle with the locking a bit,
seems suspicious.

-- 
Jens Axboe