Received: by 10.213.65.68 with SMTP id h4csp736299imn; Fri, 6 Apr 2018 08:04:30 -0700 (PDT) X-Google-Smtp-Source: AIpwx4/BViVgqnm5Nx3TzS8swWE45ldg3BasdQCUCBRwdIA4ED4aGco0ni+svec2OtE2+KuXRrdZ X-Received: by 10.99.114.12 with SMTP id n12mr13908447pgc.133.1523027070055; Fri, 06 Apr 2018 08:04:30 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1523027069; cv=none; d=google.com; s=arc-20160816; b=Dc/A5Ij35GcLST6jDIwKFdJEyInqBS+jrs2WmZ/Guh++wzjav/OaACco4fiuEmTo94 nGggZy1Xj+5vH0QDBnOn/R4y39y1lNL3A3R3wSQ4/2kDRN6VDH6RN3eFPkwL3M6ysIOz uMqHAJKH0VRnYKoRzW0w6726F7ow2sF70N4y3aHpvK4/GJk6ylZxj0CwTaI6AqemtmRr cDMFj8xVq2xqfa4xDs7aKeJPqNc/0pEpb6BWpgvICbvT/6zxYyQh7eli3hsUkJodocSu c0t7ShGyAySTozWM8c7pNXIERxVhZ0cW+edzHLzf0v/iXl1OaIMjbri6dG/xIo43eUJq Ykqw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding :content-language:in-reply-to:mime-version:user-agent:date :message-id:from:references:cc:to:subject:dkim-signature :arc-authentication-results; bh=cd63HNtHLzvcgSX7Tsa6o9dLyo/bShf7091YXvKOiG0=; b=I9nuVl0QnLKHBrkB1WAK1cZDZqAaobgYNdUpQnYOeEWq7wRVwKQaAInQrcXZPZebL+ 6BbMO+JKzalMs4QqqxDBEbDcGmZypkXpYLAEl26MeXBNXQaZMk2lhvqHqTAxGvf5ExOJ rYdo8GFEVAG212olIG8DwYE44sILfXmw0giMMulGF5AZqywXwamcOLV6Ow2wSRRpGg2O 2cClIrxfZATEqM4RfqxBYX3Am3lp4NfEnndrcoPhSV/UpUHdPktSEt5v2eKJuvyVsAg8 TdFJ9NPCFv4CVOwCKrQbLLmP8kOc739+X2GPZkdlQEZRvyr9w2EvvvvezKzNmzFwbUtZ FhXw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel-dk.20150623.gappssmtp.com header.s=20150623 header.b=r1ib61Zi; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id q1si7279136pga.71.2018.04.06.08.04.15; Fri, 06 Apr 2018 08:04:29 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel-dk.20150623.gappssmtp.com header.s=20150623 header.b=r1ib61Zi; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1755270AbeDFPBx (ORCPT + 99 others); Fri, 6 Apr 2018 11:01:53 -0400 Received: from mail-io0-f193.google.com ([209.85.223.193]:46713 "EHLO mail-io0-f193.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1755205AbeDFPBu (ORCPT ); Fri, 6 Apr 2018 11:01:50 -0400 Received: by mail-io0-f193.google.com with SMTP id q80so2045927ioi.13 for ; Fri, 06 Apr 2018 08:01:49 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kernel-dk.20150623.gappssmtp.com; s=20150623; h=subject:to:cc:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-language:content-transfer-encoding; bh=cd63HNtHLzvcgSX7Tsa6o9dLyo/bShf7091YXvKOiG0=; b=r1ib61Zi63vLbiQCOscjW1QIuzYHcpuSj8knQp9AppsBYnxZZh8SvEG3yPpL9P9IAy Q0r8PRTwqFOOUWAP0D+oDOhkQbTbN7WlLuR47As+KF7QEMS5ir4r1DKa6UH3DYTnJ3Y9 WzYU2h/tocdzKyEUhgX3Rnrj0u8pw4uBhdis++zvUJgof+4Nv0X8DR/Zd6G3uhktRfPE 9iJWl9Ymj9Pjf46i6dJ6cGnwAQuvcm//djgd0IYGPWjZZGRaz5ncEO4RCelcYXmSuPt6 +b02uoe4PiW6NksVy+X9bCeZxHl6cIrqngLbz2uQ+mAuo7xuQ3kB4/23PMB8Dvtmo/Dq 4thg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language :content-transfer-encoding; bh=cd63HNtHLzvcgSX7Tsa6o9dLyo/bShf7091YXvKOiG0=; b=bOCj6PqguT7qIqf2v87tqcwihD4zS9XCBw3bdYpUroxmv7IVaI6bFEkran53jBKopw 93usYeThGBUmwSovMsliWV4+HPevy53gVKXs2UdDjF6zYL+SvHnkS2xGz8ZvLLe/Ogdo i11fse6LqlDNEvtYuuYsIvUvYd00VzmRhb27TigTm43IJXL3QLgyIl8ZS7/E4JbpajAS b/3FTLshbWUBqIDMp5Li2mkuTp3PV0WiDnbrwt1cehh+QRWiPJwSlEMwAtLO3QSVTtii MbOGsK0h6IK/FUiSC6Dj2hGPOMM2ff7tMe2VZKs5iSTBH1T/Z5dG/qTvAyPKejPI5EeE Cq5g== X-Gm-Message-State: ALQs6tCoNrsOzbkUpwTflGO7ySqb1wgzfjtenXGl7Krb+k4sEm62nn4w gJ5DZlCivGsVCshCgY0PDLp33w== X-Received: by 10.107.202.67 with SMTP id a64mr24082959iog.15.1523026909331; Fri, 06 Apr 2018 08:01:49 -0700 (PDT) Received: from [192.168.1.154] ([216.160.245.98]) by smtp.gmail.com with ESMTPSA id k17sm6506949iob.45.2018.04.06.08.01.47 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Fri, 06 Apr 2018 08:01:48 -0700 (PDT) Subject: Re: WARNING: lock held when returning to user space! To: Dmitry Vyukov Cc: syzbot , linux-block@vger.kernel.org, LKML , syzkaller-bugs@googlegroups.com, Omar Sandoval References: <00000000000082922905692da9e1@google.com> <0e998b77-14f0-aee0-8d32-bc1dd96fcc4c@kernel.dk> From: Jens Axboe Message-ID: <63121c85-f417-cde8-510d-f275dbe81c4d@kernel.dk> Date: Fri, 6 Apr 2018 09:01:46 -0600 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: 7bit Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 4/6/18 8:57 AM, Dmitry Vyukov wrote: > On Fri, Apr 6, 2018 at 4:27 PM, Jens Axboe wrote: >> On 4/6/18 7:02 AM, syzbot wrote: >>> Hello, >>> >>> syzbot hit the following crash on upstream commit >>> 38c23685b273cfb4ccf31a199feccce3bdcb5d83 (Fri Apr 6 04:29:35 2018 +0000) >>> Merge tag 'armsoc-drivers' of >>> git://git.kernel.org/pub/scm/linux/kernel/git/arm/arm-soc >>> syzbot dashboard link: >>> https://syzkaller.appspot.com/bug?extid=31e8daa8b3fc129e75f2 >>> >>> So far this crash happened 9 times on upstream. >>> C reproducer: https://syzkaller.appspot.com/x/repro.c?id=6407930337296384 >>> syzkaller reproducer: >>> https://syzkaller.appspot.com/x/repro.syz?id=4942413340606464 >>> Raw console output: >>> https://syzkaller.appspot.com/x/log.txt?id=4764483918495744 >>> Kernel config: >>> https://syzkaller.appspot.com/x/.config?id=-5813481738265533882 >>> compiler: gcc (GCC) 8.0.1 20180301 (experimental) >>> >>> IMPORTANT: if you fix the bug, please add the following tag to the commit: >>> Reported-by: syzbot+31e8daa8b3fc129e75f2@syzkaller.appspotmail.com >>> It will help syzbot understand when the bug is fixed. See footer for >>> details. >>> If you forward the report, please keep this part and the footer. >>> >>> >>> ================================================ >>> WARNING: lock held when returning to user space! >>> 4.16.0+ #3 Not tainted >>> ------------------------------------------------ >>> syzkaller433111/4462 is leaving the kernel with locks still held! >>> 1 lock held by syzkaller433111/4462: >>> #0: 0000000003a06fae (&lo->lo_ctl_mutex/1){+.+.}, at: lo_ioctl+0x8d/0x1ec0 >>> drivers/block/loop.c:1363 >> >> Is this a new regression? Omar did just fiddle with the locking a bit, >> seems suspicious. > > Looking at: > https://syzkaller.appspot.com/bug?extid=31e8daa8b3fc129e75f2 > It first happened 4 hours ago and 9 times since then, so probably a > just introduced regression. After writing that, I saw the discussion in another thread ("INFO: task hung in lo_ioctl"), so I think we can definitely say that it's a recently introduced regression in loop due to the killable lock changes. -- Jens Axboe