The quilt patch titled
Subject: mm/madvise: fix VMA_ITERATOR start position
has been removed from the -mm tree. Its filename was
madvise-use-split_vma-instead-of-__split_vma-fix.patch
This patch was dropped because it was folded into madvise-use-split_vma-instead-of-__split_vma.patch
------------------------------------------------------
From: Liam Howlett <Liam.Howlett@xxxxxxxxxx>
Subject: mm/madvise: fix VMA_ITERATOR start position
Date: Wed, 25 Jan 2023 08:58:09 -0500
The WARN_ON() in vma_iter_store() detected an invalid VMA iterator state.
Inspecting the code stack from the report shows that the VMA iterator is
never set to the correct start position.
Setting the initialization of the VMA iterator to use the address 'start'
fixes this issue.
Link: https://lkml.kernel.org/r/20230125135809.85262-1-Liam.Howlett@xxxxxxxxxx
Signed-off-by: Liam Howlett <Liam.Howlett@xxxxxxxxxx>
Reported-by: <syzbot+1d9ec4d1a334ae9e1ca6@xxxxxxxxxxxxxxxxxxxxxxxxx>
Signed-off-by: Andrew Morton <akpm@xxxxxxxxxxxxxxxxxxxx>
---
--- a/mm/madvise.c~madvise-use-split_vma-instead-of-__split_vma-fix
+++ a/mm/madvise.c
@@ -142,7 +142,7 @@ static int madvise_update_vma(struct vm_
struct mm_struct *mm = vma->vm_mm;
int error;
pgoff_t pgoff;
- VMA_ITERATOR(vmi, mm, 0);
+ VMA_ITERATOR(vmi, mm, start);
if (new_flags == vma->vm_flags && anon_vma_name_eq(anon_vma_name(vma), anon_name)) {
*prev = vma;
_
Patches currently in -mm which might be from Liam.Howlett@xxxxxxxxxx are
maple_tree-fix-handle-of-invalidated-state-in-mas_wr_store_setup.patch
maple_tree-fix-mas_prev-and-mas_find-state-handling.patch
ipc-shm-introduce-new-do_vma_munmap-to-munmap.patch
nommu-pass-through-vma-iterator-to-shrink_vma.patch
mm-damon-vaddr-testh-stop-using-vma_mas_store-for-maple-tree-store.patch
madvise-use-split_vma-instead-of-__split_vma.patch
mm-change-munmap-splitting-order-and-move_vma-fix.patch
mm-mremap-convert-vma_adjust-to-vma_expand.patch
mm-mmap-remove-__vma_adjust-fix.patch
