================================================ WARNING: lock held when returning to user space! 6.10.0-syzkaller-04472-g51835949dda3 #0 Not tainted ------------------------------------------------ syz-executor988/5202 is leaving the kernel with locks still held! 1 lock held by syz-executor988/5202: #0: ffffffff8dbb15e0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire include/linux/rcupdate.h:327 [inline] #0: ffffffff8dbb15e0 (rcu_read_lock){....}-{1:2}, at: rcu_read_lock include/linux/rcupdate.h:839 [inline] #0: ffffffff8dbb15e0 (rcu_read_lock){....}-{1:2}, at: ns_ioctl+0x217/0x7b0 fs/nsfs.c:184 BUG: sleeping function called from invalid context at include/linux/sched/mm.h:337 in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 5202, name: syz-executor988 preempt_count: 0, expected: 0 RCU nest depth: 1, expected: 0 INFO: lockdep is turned off. CPU: 0 PID: 5202 Comm: syz-executor988 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x16c/0x1f0 lib/dump_stack.c:114 __might_resched+0x3c0/0x5e0 kernel/sched/core.c:8437 might_alloc include/linux/sched/mm.h:337 [inline] prepare_alloc_pages.constprop.0+0x3d2/0x560 mm/page_alloc.c:4454 __alloc_pages_noprof+0x194/0x2460 mm/page_alloc.c:4672 alloc_pages_mpol_noprof+0x275/0x610 mm/mempolicy.c:2265 vma_alloc_folio_noprof+0xad/0x1f0 mm/mempolicy.c:2304 folio_prealloc mm/memory.c:1048 [inline] wp_page_copy mm/memory.c:3285 [inline] do_wp_page+0xf51/0x3290 mm/memory.c:3677 handle_pte_fault mm/memory.c:5397 [inline] __handle_mm_fault+0x2311/0x53d0 mm/memory.c:5524 handle_mm_fault+0x476/0xa00 mm/memory.c:5689 do_user_addr_fault+0x60d/0x13f0 arch/x86/mm/fault.c:1338 handle_page_fault arch/x86/mm/fault.c:1481 [inline] exc_page_fault+0x5c/0xc0 arch/x86/mm/fault.c:1539 asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:623 RIP: 0033:0x7fb58e27eb80 Code: 84 dd fe ff ff 4c 89 e7 e8 ed 90 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 49 25 0a 00 01 31 c0 87 05 19 21 0a 00 83 f8 01 0f 8f 84 00 RSP: 002b:00007fff4e5d2470 EFLAGS: 00010246 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004 RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fb58e31fab8 RBP: 00007fb58e31e110 R08: 0000000000000000 R09: 65732f636f72702f R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb58e320ca8 R13: 0000000000000000 R14: 00007fb58e320cc0 R15: 00007fb58e277a60