Re: [PATCH V4] fuse: Fix VM_BUG_ON_PAGE issue while accessing zero ref count page

Miklos Szeredi <miklos@xxxxxxxxxx> · Tue, 8 Sep 2020 13:25:58 +0200

On Tue, Sep 8, 2020 at 10:17 AM Pradeep P V K <pragalla@xxxxxxxxxxxxxxxx> wrote:
>
> From: Pradeep P V K <ppvk@xxxxxxxxxxxxxx>
>
> There is a potential race between fuse_abort_conn() and
> fuse_copy_page() as shown below, due to which VM_BUG_ON_PAGE
> crash is observed for accessing a free page.
>
> context#1:                      context#2:
> fuse_dev_do_read()              fuse_abort_conn()
> ->fuse_copy_args()               ->end_requests()

This shouldn't happen due to FR_LOCKED logic.   Are you seeing this on
an upstream kernel?  Which version?

Thanks,
Miklos