Received: by 2002:a25:7ec1:0:0:0:0:0 with SMTP id z184csp893377ybc; Tue, 12 Nov 2019 10:52:26 -0800 (PST) X-Google-Smtp-Source: APXvYqzMsxCaUSZsueBBeh9CNSmNRJvACHODKj8V3b80/RP+GcrNwL+m+ic5a2MkxErzzBaqSWsU X-Received: by 2002:a17:906:48b:: with SMTP id f11mr29621069eja.225.1573584745913; Tue, 12 Nov 2019 10:52:25 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1573584745; cv=none; d=google.com; s=arc-20160816; b=S88LdjcnAhKXollLDI+5yLTHFP74mQitwlIft9a1Q41eJxkdzp0z4LQN4h0gpTGZ3x Ctf/eK4yV5WorpqB/DomIHMGQUi7ty+1l8XEwWAFeogU7wMa8jCSHIGgVshdzFndLQNB 5FenpCCCDXh0Oq3faoNz0dhK1EVqCaPnb2R7lgeGU7xCbHQkiY5cBJQcJPnth/fYDsYy dCrMKi/LdI+q+szVAS+tp17hlIjpS5T2qKJ+6vdTe4nVp9Inh+wLd2dWvLiZu/O0jn6K /T+2T7dMbdfrGU7L2Onyh+WOQHMGJzHC49IilPuUJEr2f+z7eAi+wP/22fgYgzx5j66I jpYg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=FKknxADsj8dAaCVRA/6UvI9FWyRNiphwf96YoePWw/c=; b=QEw1a+3o1IGsEmhP4R9bbVCPc3B64CbiC8Ypn6EqL8cWgVW0xuveP4g3EnGcnh2Qlh cPHYedJ76U7plZIChzBJWc7ObOyBHlPYlbahGtNuHWQ6ZK+x1fKRVa8PIeL68bYKGAdR zzynv4WmlmtaFS6ZCwk2qKcC7FjZG/KqYdSLAGxVoFcfhbH2DUtkRVLSuVrSt7StdMaC QrrU5YFUUGEJTEYoiSX7f+OhLRxd3H4mxCSZ3aGZELXj3FLgmzOS0wUFiAAkvZDpko4J klxgngYnc2Po/KGKLQ2UDYGBYM8QO7OC5PeFkZi/6Q6r16KytCrWIKSuvhu0y4dLLR5N uNHQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=somUeRuE; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id b3si15048431edn.202.2019.11.12.10.52.00; Tue, 12 Nov 2019 10:52:25 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=somUeRuE; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727073AbfKLSui (ORCPT + 99 others); Tue, 12 Nov 2019 13:50:38 -0500 Received: from mail-io1-f67.google.com ([209.85.166.67]:41274 "EHLO mail-io1-f67.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1725997AbfKLSui (ORCPT ); Tue, 12 Nov 2019 13:50:38 -0500 Received: by mail-io1-f67.google.com with SMTP id r144so19892541iod.8 for ; Tue, 12 Nov 2019 10:50:37 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=FKknxADsj8dAaCVRA/6UvI9FWyRNiphwf96YoePWw/c=; b=somUeRuEeUFVZZN5aEaXUral3mjnED+uZDYiwCN0BEpTBb5QW4odLtCgcbppWMflo5 sJhUnYId0QyA/r+NrYi3DU8AEEaM4r84OGyTxJCmOuWuEGZ1kb8buAAtr/nDv/PQC+ij mUO4s2E+TmQeVsKxMmYSRmPNh85E9Y1x7TbSViD+fV8nk8ajQMLqkjyg6MGaiEdkTB2g e6l34SOnkreeGcZDiM9LnGNgYduKiZ13xjPS5pi0FuxaIupmG/ZLImYHspyIJX31Nokc AtwJ8e4qRb8zTETyYAK2VxnbKHBXWw1T9jYvAv67HxwQgxoIo16IvdkxrIvfoofpUKZk cSog== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=FKknxADsj8dAaCVRA/6UvI9FWyRNiphwf96YoePWw/c=; b=kIPUG6wYNUPP7TLlv/hBZpX6gk7+b/bW8liv7MYj1jwHa5FLUFpfiKam/7W9GpTLLD E7atPDNVFVV74CT1AGTLWOmPWGL5bIQKDwX3Yl+Fues1umSyCJn9W/8kJ73GXgn0abXM oLuYqbBWGdAzh3fSE5YXqSK4pd78KMrd7ku7YvgG1AYT1Sk7MOKi46R5RqxeEnx+kTyk v2m+i2zdCCcLv13wTGzTHwHl/lYjmGNgRKXCcCOcjtkwcclv/egjIuAF6KFSU0Sk6NtR o1f1mBtSRUshSN4PwIUB9hlO8BvrnbgPkY1l5ObnR0qwMEP0a/5PZ82MK7pGHljLm663 yvLw== X-Gm-Message-State: APjAAAU7MR4V8J0DGF4yl5AJbg3x4thDjdGi1HFGmc/lec0gFYvhYRYh XHVbQqoDg8Ke8B34GArXzHrtNOS4dKXQoF9tE3oogTuD X-Received: by 2002:a6b:908a:: with SMTP id s132mr32071112iod.118.1573584636856; Tue, 12 Nov 2019 10:50:36 -0800 (PST) MIME-Version: 1.0 References: <1573478741-30959-1-git-send-email-pbonzini@redhat.com> <1573478741-30959-3-git-send-email-pbonzini@redhat.com> In-Reply-To: <1573478741-30959-3-git-send-email-pbonzini@redhat.com> From: Jim Mattson Date: Tue, 12 Nov 2019 10:50:25 -0800 Message-ID: Subject: Re: [PATCH 2/2] KVM: fix placement of refcount initialization To: Paolo Bonzini Cc: LKML , kvm list , Wanpeng Li , Junaid Shahid Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, Nov 11, 2019 at 5:25 AM Paolo Bonzini wrote: > > Reported by syzkaller: > > ============================= > WARNING: suspicious RCU usage > ----------------------------- > ./include/linux/kvm_host.h:536 suspicious rcu_dereference_check() usage! > > other info that might help us debug this: > > rcu_scheduler_active = 2, debug_locks = 1 > no locks held by repro_11/12688. > > stack backtrace: > Call Trace: > dump_stack+0x7d/0xc5 > lockdep_rcu_suspicious+0x123/0x170 > kvm_dev_ioctl+0x9a9/0x1260 [kvm] > do_vfs_ioctl+0x1a1/0xfb0 > ksys_ioctl+0x6d/0x80 > __x64_sys_ioctl+0x73/0xb0 > do_syscall_64+0x108/0xaa0 > entry_SYSCALL_64_after_hwframe+0x49/0xbe > > Commit a97b0e773e4 (kvm: call kvm_arch_destroy_vm if vm creation fails) > sets users_count to 1 before kvm_arch_init_vm(), however, if kvm_arch_init_vm() > fails, we need to decrease this count. By moving it earlier, we can push > the decrease to out_err_no_arch_destroy_vm without introducing yet another > error label. > > syzkaller source: https://syzkaller.appspot.com/x/repro.c?x=15209b84e00000 > > Reported-by: syzbot+75475908cd0910f141ee@syzkaller.appspotmail.com > Fixes: a97b0e773e49 ("kvm: call kvm_arch_destroy_vm if vm creation fails") > Cc: Jim Mattson > Analyzed-by: Wanpeng Li > Signed-off-by: Paolo Bonzini Reviewed-by: Jim Mattson