103968 pages reserved
======================================================
WARNING: possible circular locking dependency detected
4.13.0-rc6-next-20170824+ #8 Not tainted
------------------------------------------------------
syzkaller849794/3029 is trying to acquire lock:
((complete)wq_barr::done#2/1){+.+.}, at: [<ffffffff8145d4e1>] flush_work+0x621/0x930 kernel/workqueue.c:2868
but task is already holding lock:
(&mm->mmap_sem){++++}, at: [<ffffffff81300308>] __do_page_fault+0x2b8/0xb60 arch/x86/mm/fault.c:1384
which lock already depends on the new lock.
the existing dependency chain (in reverse order) is:
-> #7 (&mm->mmap_sem){++++}:
check_prevs_add kernel/locking/lockdep.c:2020 [inline]
validate_chain kernel/locking/lockdep.c:2469 [inline]
__lock_acquire+0x3286/0x4620 kernel/locking/lockdep.c:3498
lock_acquire+0x1d5/0x580 kernel/locking/lockdep.c:4002
__might_fault+0x13a/0x1d0 mm/memory.c:4486
_copy_to_user+0x2c/0xc0 lib/usercopy.c:24
copy_to_user include/linux/uaccess.h:154 [inline]
filldir+0x1a7/0x320 fs/readdir.c:196
dir_emit_dot include/linux/fs.h:3316 [inline]
dir_emit_dots include/linux/fs.h:3327 [inline]
dcache_readdir+0x12d/0x5e0 fs/libfs.c:193
iterate_dir+0x4b2/0x5d0 fs/readdir.c:51
SYSC_getdents fs/readdir.c:231 [inline]
SyS_getdents+0x225/0x450 fs/readdir.c:212
entry_SYSCALL_64_fastpath+0x1f/0xbe
-> #6 (&sb->s_type->i_mutex_key#5){++++}:
down_write+0x87/0x120 kernel/locking/rwsem.c:53
inode_lock include/linux/fs.h:711 [inline]
handle_create+0x30c/0x760 drivers/base/devtmpfs.c:218
handle drivers/base/devtmpfs.c:372 [inline]
devtmpfsd+0x3eb/0x520 drivers/base/devtmpfs.c:398
kthread+0x39c/0x470 kernel/kthread.c:231
ret_from_fork+0x2a/0x40 arch/x86/entry/entry_64.S:431
-> #5 ((complete)&req.done){+.+.}:
check_prevs_add kernel/locking/lockdep.c:2020 [inline]
validate_chain kernel/locking/lockdep.c:2469 [inline]
__lock_acquire+0x3286/0x4620 kernel/locking/lockdep.c:3498
lock_acquire+0x1d5/0x580 kernel/locking/lockdep.c:4002
complete_acquire include/linux/completion.h:39 [inline]
__wait_for_common kernel/sched/completion.c:108 [inline]
wait_for_common kernel/sched/completion.c:122 [inline]
wait_for_completion+0xc8/0x770 kernel/sched/completion.c:143
devtmpfs_create_node+0x32b/0x4a0 drivers/base/devtmpfs.c:114
device_add+0x120f/0x1640 drivers/base/core.c:1824
device_create_groups_vargs+0x1f3/0x250 drivers/base/core.c:2430
device_create_vargs drivers/base/core.c:2470 [inline]
device_create+0xda/0x110 drivers/base/core.c:2506
msr_device_create+0x26/0x40 arch/x86/kernel/msr.c:188
cpuhp_invoke_callback+0x256/0x14d0 kernel/cpu.c:145
cpuhp_thread_fun+0x265/0x520 kernel/cpu.c:434
smpboot_thread_fn+0x489/0x850 kernel/smpboot.c:164
kthread+0x39c/0x470 kernel/kthread.c:231
ret_from_fork+0x2a/0x40 arch/x86/entry/entry_64.S:431
-> #4 (cpuhp_state){+.+.}:
check_prevs_add kernel/locking/lockdep.c:2020 [inline]
validate_chain kernel/locking/lockdep.c:2469 [inline]
__lock_acquire+0x3286/0x4620 kernel/locking/lockdep.c:3498
lock_acquire+0x1d5/0x580 kernel/locking/lockdep.c:4002
cpuhp_invoke_ap_callback kernel/cpu.c:467 [inline]
cpuhp_issue_call+0x1a2/0x3e0 kernel/cpu.c:1308
__cpuhp_setup_state_cpuslocked+0x2e7/0x610 kernel/cpu.c:1455
__cpuhp_setup_state+0xb0/0x140 kernel/cpu.c:1484
cpuhp_setup_state include/linux/cpuhotplug.h:177 [inline]
page_writeback_init+0x4d/0x71 mm/page-writeback.c:2082
pagecache_init+0x48/0x4f mm/filemap.c:871
start_kernel+0x71a/0x7ad init/main.c:690
x86_64_start_reservations+0x2a/0x2c arch/x86/kernel/head64.c:381
x86_64_start_kernel+0x13c/0x149 arch/x86/kernel/head64.c:362
verify_cpu+0x0/0xfb
-> #3 (cpuhp_state_mutex){+.+.}:
check_prevs_add kernel/locking/lockdep.c:2020 [inline]
validate_chain kernel/locking/lockdep.c:2469 [inline]
__lock_acquire+0x3286/0x4620 kernel/locking/lockdep.c:3498
lock_acquire+0x1d5/0x580 kernel/locking/lockdep.c:4002
__mutex_lock_common kernel/locking/mutex.c:756 [inline]
__mutex_lock+0x16f/0x1870 kernel/locking/mutex.c:893
mutex_lock_nested+0x16/0x20 kernel/locking/mutex.c:908
__cpuhp_setup_state_cpuslocked+0x5b/0x610 kernel/cpu.c:1430
__cpuhp_setup_state+0xb0/0x140 kernel/cpu.c:1484
cpuhp_setup_state_nocalls include/linux/cpuhotplug.h:205 [inline]
kvm_guest_init+0x1f3/0x20f arch/x86/kernel/kvm.c:488
setup_arch+0x1899/0x1ab3 arch/x86/kernel/setup.c:1294
start_kernel+0xa5/0x7ad init/main.c:530
x86_64_start_reservations+0x2a/0x2c arch/x86/kernel/head64.c:381
x86_64_start_kernel+0x13c/0x149 arch/x86/kernel/head64.c:362
verify_cpu+0x0/0xfb
-> #2 (cpu_hotplug_lock.rw_sem){++++}:
check_prevs_add kernel/locking/lockdep.c:2020 [inline]
validate_chain kernel/locking/lockdep.c:2469 [inline]
__lock_acquire+0x3286/0x4620 kernel/locking/lockdep.c:3498
lock_acquire+0x1d5/0x580 kernel/locking/lockdep.c:4002
percpu_down_read_preempt_disable include/linux/percpu-rwsem.h:35 [inline]
percpu_down_read include/linux/percpu-rwsem.h:58 [inline]
cpus_read_lock+0x42/0x90 kernel/cpu.c:218
get_online_cpus include/linux/cpu.h:126 [inline]
vmstat_shepherd+0x3d/0x1b0 mm/vmstat.c:1707
process_one_work+0xbfd/0x1be0 kernel/workqueue.c:2098
worker_thread+0x223/0x1860 kernel/workqueue.c:2233
kthread+0x39c/0x470 kernel/kthread.c:231
ret_from_fork+0x2a/0x40 arch/x86/entry/entry_64.S:431
-> #1 ((shepherd).work){+.+.}:
process_one_work+0xba5/0x1be0 kernel/workqueue.c:2095
worker_thread+0x223/0x1860 kernel/workqueue.c:2233
kthread+0x39c/0x470 kernel/kthread.c:231
ret_from_fork+0x2a/0x40 arch/x86/entry/entry_64.S:431
0xffffffffffffffff
-> #0 ((complete)wq_barr::done#2/1){+.+.}:
check_prev_add+0x865/0x1520 kernel/locking/lockdep.c:1894
check_prevs_add kernel/locking/lockdep.c:2020 [inline]
validate_chain kernel/locking/lockdep.c:2469 [inline]
__lock_acquire+0x3286/0x4620 kernel/locking/lockdep.c:3498
lock_acquire+0x1d5/0x580 kernel/locking/lockdep.c:4002
complete_acquire include/linux/completion.h:39 [inline]
__wait_for_common kernel/sched/completion.c:108 [inline]
wait_for_common kernel/sched/completion.c:122 [inline]
wait_for_completion+0xc8/0x770 kernel/sched/completion.c:143
flush_work+0x621/0x930 kernel/workqueue.c:2868
drain_all_pages+0x490/0x750 mm/page_alloc.c:2533
__alloc_pages_direct_reclaim mm/page_alloc.c:3619 [inline]
__alloc_pages_slowpath+0xd2e/0x2ee0 mm/page_alloc.c:4014
__alloc_pages_nodemask+0x9f7/0xd80 mm/page_alloc.c:4213
alloc_pages_current+0xb6/0x1e0 mm/mempolicy.c:2035
alloc_pages include/linux/gfp.h:505 [inline]
pte_alloc_one+0x19/0x100 arch/x86/mm/pgtable.c:28
__pte_alloc+0x2a/0x300 mm/memory.c:647
do_anonymous_page mm/memory.c:3073 [inline]
handle_pte_fault mm/memory.c:3908 [inline]
__handle_mm_fault+0x2a8d/0x39c0 mm/memory.c:4034
handle_mm_fault+0x3bb/0x860 mm/memory.c:4071
__do_page_fault+0x4f6/0xb60 arch/x86/mm/fault.c:1445
trace_do_page_fault+0x141/0x730 arch/x86/mm/fault.c:1538
do_async_page_fault+0x72/0xc0 arch/x86/kernel/kvm.c:266
async_page_fault+0x22/0x30 arch/x86/entry/entry_64.S:1093
other info that might help us debug this:
Chain exists of:
(complete)wq_barr::done#2/1 --> &sb->s_type->i_mutex_key#5 --> &mm->mmap_sem
Possible unsafe locking scenario:
CPU0 CPU1
---- ----
lock(&mm->mmap_sem);
lock(&sb->s_type->i_mutex_key#5);
lock(&mm->mmap_sem);
lock((complete)wq_barr::done#2/1);
*** DEADLOCK ***
2 locks held by syzkaller849794/3029:
#0: (&mm->mmap_sem){++++}, at: [<ffffffff81300308>] __do_page_fault+0x2b8/0xb60 arch/x86/mm/fault.c:1384
#1: (pcpu_drain_mutex){+.+.}, at: [<ffffffff8188a684>] drain_all_pages+0x104/0x750 mm/page_alloc.c:2490
stack backtrace:
CPU: 1 PID: 3029 Comm: syzkaller849794 Not tainted 4.13.0-rc6-next-20170824+ #8
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:16 [inline]
dump_stack+0x194/0x257 lib/dump_stack.c:52
print_circular_bug+0x503/0x710 kernel/locking/lockdep.c:1259
check_prev_add+0x865/0x1520 kernel/locking/lockdep.c:1894
check_prevs_add kernel/locking/lockdep.c:2020 [inline]
validate_chain kernel/locking/lockdep.c:2469 [inline]
__lock_acquire+0x3286/0x4620 kernel/locking/lockdep.c:3498
lock_acquire+0x1d5/0x580 kernel/locking/lockdep.c:4002
complete_acquire include/linux/completion.h:39 [inline]
__wait_for_common kernel/sched/completion.c:108 [inline]
wait_for_common kernel/sched/completion.c:122 [inline]
wait_for_completion+0xc8/0x770 kernel/sched/completion.c:143
flush_work+0x621/0x930 kernel/workqueue.c:2868
drain_all_pages+0x490/0x750 mm/page_alloc.c:2533
__alloc_pages_direct_reclaim mm/page_alloc.c:3619 [inline]
__alloc_pages_slowpath+0xd2e/0x2ee0 mm/page_alloc.c:4014
__alloc_pages_nodemask+0x9f7/0xd80 mm/page_alloc.c:4213
alloc_pages_current+0xb6/0x1e0 mm/mempolicy.c:2035
alloc_pages include/linux/gfp.h:505 [inline]
pte_alloc_one+0x19/0x100 arch/x86/mm/pgtable.c:28
__pte_alloc+0x2a/0x300 mm/memory.c:647
do_anonymous_page mm/memory.c:3073 [inline]
handle_pte_fault mm/memory.c:3908 [inline]
__handle_mm_fault+0x2a8d/0x39c0 mm/memory.c:4034
handle_mm_fault+0x3bb/0x860 mm/memory.c:4071
__do_page_fault+0x4f6/0xb60 arch/x86/mm/fault.c:1445
trace_do_page_fault+0x141/0x730 arch/x86/mm/fault.c:1538
do_async_page_fault+0x72/0xc0 arch/x86/kernel/kvm.c:266
async_page_fault+0x22/0x30 arch/x86/entry/entry_64.S:1093
RIP: 0033:0x4010e7
RSP: 002b:00007ffc6294f620 EFLAGS: 00010217
RAX: 0000000020000000 RBX: ffffffffffffffff RCX: 0000000000435369
RDX: 0000000000000003 RSI: 0000000000fff000 RDI: 0000000020000000
RBP: 6d766b2f7665642f R08: ffffffffffffffff R09: 0000000000000000
R10: 0000000000000032 R11: 0000000000000207 R12: 0000000000000000
R13: 0000000000401800 R14: 0000000000401890 R15: 0000000000000000
syzkaller849794: page allocation failure: order:5, mode:0x16040c0(GFP_KERNEL|__GFP_COMP|__GFP_NOTRACK), nodemask=(null)
syzkaller849794 cpuset=/ mems_allowed=0-1
CPU: 0 PID: 3029 Comm: syzkaller849794 Not tainted 4.13.0-rc6-next-20170824+ #8
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:16 [inline]
dump_stack+0x194/0x257 lib/dump_stack.c:52
warn_alloc+0x1c2/0x2f0 mm/page_alloc.c:3254
__alloc_pages_slowpath+0x26ce/0x2ee0 mm/page_alloc.c:4120
udevd invoked oom-killer: gfp_mask=0x14201ca(GFP_HIGHUSER_MOVABLE|__GFP_COLD), nodemask=(null), order=0, oom_score_adj=-1000
udevd cpuset=/ mems_allowed=0-1
__alloc_pages_nodemask+0x9f7/0xd80 mm/page_alloc.c:4213
__alloc_pages include/linux/gfp.h:469 [inline]
__alloc_pages_node include/linux/gfp.h:482 [inline]
kmem_getpages mm/slab.c:1415 [inline]
cache_grow_begin+0x86/0x400 mm/slab.c:2683
fallback_alloc+0x150/0x2b0 mm/slab.c:3224
____cache_alloc_node+0x1cf/0x1e0 mm/slab.c:3292
__do_cache_alloc mm/slab.c:3361 [inline]
slab_alloc mm/slab.c:3389 [inline]
kmem_cache_alloc_trace+0x27d/0x750 mm/slab.c:3625
kvm_arch_alloc_vm include/linux/slab.h:493 [inline]
kvm_create_vm arch/x86/kvm/../../../virt/kvm/kvm_main.c:646 [inline]
kvm_dev_ioctl_create_vm arch/x86/kvm/../../../virt/kvm/kvm_main.c:3197 [inline]
kvm_dev_ioctl+0x216/0x1840 arch/x86/kvm/../../../virt/kvm/kvm_main.c:3248
vfs_ioctl fs/ioctl.c:45 [inline]
do_vfs_ioctl+0x1b1/0x1530 fs/ioctl.c:685
SYSC_ioctl fs/ioctl.c:700 [inline]
SyS_ioctl+0x8f/0xc0 fs/ioctl.c:691
entry_SYSCALL_64_fastpath+0x1f/0xbe
RIP: 0033:0x435369
RSP: 002b:00007ffc6294f618 EFLAGS: 00000207 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 0000000000435369
RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000336
RBP: 6d766b2f7665642f R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000207 R12: 0000000000000000
R13: 0000000000401800 R14: 0000000000401890 R15: 0000000000000000
CPU: 3 PID: 1509 Comm: udevd Not tainted 4.13.0-rc6-next-20170824+ #8
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:16 [inline]
dump_stack+0x194/0x257 lib/dump_stack.c:52
dump_header+0x234/0xa0e mm/oom_kill.c:421
oom_kill_process+0x86d/0x13d0 mm/oom_kill.c:836
out_of_memory+0x7dd/0x11d0 mm/oom_kill.c:1050
__alloc_pages_may_oom mm/page_alloc.c:3347 [inline]
__alloc_pages_slowpath+0x1eae/0x2ee0 mm/page_alloc.c:4058
__alloc_pages_nodemask+0x9f7/0xd80 mm/page_alloc.c:4213
alloc_pages_current+0xb6/0x1e0 mm/mempolicy.c:2035
alloc_pages include/linux/gfp.h:505 [inline]
__page_cache_alloc+0x358/0x4d0 mm/filemap.c:840
page_cache_read mm/filemap.c:2234 [inline]
filemap_fault+0xf32/0x1d30 mm/filemap.c:2418
ext4_filemap_fault+0x85/0xb0 fs/ext4/inode.c:6117
__do_fault+0xeb/0x30f mm/memory.c:3170
do_read_fault mm/memory.c:3580 [inline]
do_fault mm/memory.c:3680 [inline]
handle_pte_fault mm/memory.c:3910 [inline]
__handle_mm_fault+0x1b9b/0x39c0 mm/memory.c:4034
handle_mm_fault+0x3bb/0x860 mm/memory.c:4071
__do_page_fault+0x4f6/0xb60 arch/x86/mm/fault.c:1445
trace_do_page_fault+0x141/0x730 arch/x86/mm/fault.c:1538
do_async_page_fault+0x72/0xc0 arch/x86/kernel/kvm.c:266
async_page_fault+0x22/0x30 arch/x86/entry/entry_64.S:1093
RIP: 0033:0x419d71
RSP: 002b:00007ffcdd261010 EFLAGS: 00010206
RAX: 00007ffcdd2610d6 RBX: 0000000000000021 RCX: 00000000004203c9
RDX: 00007ffcdd2610d5 RSI: 0000000000000010 RDI: 00007ffcdd2610d6
RBP: 0000000000000001 R08: 0000000000000000 R09: 00000000004203c9
R10: 0000000000000001 R11: 0000000000000040 R12: 00007ffcdd2610d0
R13: 00000000000000d2 R14: 000000000146a1d0 R15: 000000000146a030
Mem-Info:
active_anon:3664 inactive_anon:42 isolated_anon:0
active_file:61 inactive_file:21 isolated_file:0
unevictable:0 dirty:0 writeback:0 unstable:0
slab_reclaimable:53543 slab_unreclaimable:329378
mapped:0 shmem:76 pagetables:307 bounce:0
free:17747 free_pcp:0 free_cma:0
Node 0 active_anon:5092kB inactive_anon:52kB active_file:168kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:8kB dirty:0kB writeback:0kB shmem:76kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
Node 1 active_anon:9564kB inactive_anon:116kB active_file:160kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):116kB mapped:0kB dirty:0kB writeback:0kB shmem:228kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
Node 0 DMA free:4132kB min:640kB low:800kB high:960kB active_anon:52kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
lowmem_reserve[]: 0 886 886 886
Node 0 DMA32 free:36460kB min:36536kB low:45668kB high:54800kB active_anon:5040kB inactive_anon:52kB active_file:0kB inactive_file:72kB unevictable:0kB writepending:0kB present:1032192kB managed:909748kB mlocked:0kB kernel_stack:1568kB pagetables:588kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
lowmem_reserve[]: 0 0 0 0
Node 1 DMA32 free:30396kB min:30404kB low:38004kB high:45604kB active_anon:9564kB inactive_anon:116kB active_file:0kB inactive_file:276kB unevictable:0kB writepending:0kB present:1048560kB managed:755216kB mlocked:0kB kernel_stack:2368kB pagetables:640kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
lowmem_reserve[]: 0 0 0 0
Node 0 DMA: 5*4kB (UME) 2*8kB (UE) 2*16kB (UE) 1*32kB (U) 1*64kB (M) 1*128kB (M) 3*256kB (UME) 2*512kB (ME) 2*1024kB (UM) 0*2048kB 0*4096kB = 4132kB
Node 0 DMA32: 338*4kB (UME) 438*8kB (UME) 183*16kB (UME) 70*32kB (UME) 59*64kB (UM) 22*128kB (ME) 8*256kB (UME) 5*512kB (M) 1*1024kB (E) 1*2048kB (U) 3*4096kB (M) = 36584kB
Node 1 DMA32: 295*4kB (UME) 462*8kB (UME) 233*16kB (UME) 96*32kB (UME) 41*64kB (UME) 9*128kB (ME) 6*256kB (UME) 1*512kB (U) 1*1024kB (M) 6*2048kB (UME) 0*4096kB = 30812kB
Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
160 total pagecache pages
0 pages in swap cache
Swap cache stats: add 0, delete 0, find 0/0
Free swap = 0kB
Total swap = 0kB
524186 pages RAM
0 pages HighMem/MovableOnly
103968 pages reserved
[ pid ] uid tgid total_vm rss nr_ptes nr_pmds swapents oom_score_adj name
[ 1509] 0 1509 7162 1936 19 3 0 -1000 udevd
[ 2779] 0 2779 2493 573 8 3 0 0 dhclient
[ 2908] 0 2908 30630 162 24 3 0 0 rsyslogd
[ 2944] 0 2944 4725 49 15 3 0 0 cron
[ 2970] 0 2970 12490 152 28 3 0 -1000 sshd
[ 2994] 0 2994 3694 41 13 3 0 0 getty
[ 2995] 0 2995 3694 39 13 3 0 0 getty
[ 2996] 0 2996 3694 40 13 3 0 0 getty
[ 2997] 0 2997 3694 42 13 3 0 0 getty
[ 2998] 0 2998 3694 40 13 3 0 0 getty
[ 2999] 0 2999 3694 40 13 3 0 0 getty
[ 3000] 0 3000 3649 40 12 3 0 0 getty
[ 3002] 0 3002 5338 141 15 3 0 -1000 udevd
[ 3003] 0 3003 5380 175 15 3 0 -1000 udevd
[ 3026] 0 3026 17820 197 41 3 0 0 sshd
[ 3028] 0 3028 271 1 4 2 0 0 syzkaller849794
[ 3029] 0 3029 4366 11 5 2 0 0 syzkaller849794
[ 3030] 0 3030 4366 11 5 2 0 0 syzkaller849794
[ 3031] 0 3031 4366 11 5 2 0 0 syzkaller849794
[ 3032] 0 3032 4366 11 5 2 0 0 syzkaller849794
[ 3033] 0 3033 4366 11 5 2 0 0 syzkaller849794
[ 3034] 0 3034 4366 11 5 2 0 0 syzkaller849794
[ 3035] 0 3035 4366 11 5 2 0 0 syzkaller849794
[ 3036] 0 3036 4366 11 4 2 0 0 syzkaller849794
Out of memory: Kill process 2779 (dhclient) score 1 or sacrifice child
Killed process 2779 (dhclient) total-vm:9972kB, anon-rss:2292kB, file-rss:0kB, shmem-rss:0kB
syzkaller849794: page allocation failure: order:5, mode:0x16040c0(GFP_KERNEL|__GFP_COMP|__GFP_NOTRACK), nodemask=(null)
syzkaller849794 cpuset=/ mems_allowed=0-1
CPU: 1 PID: 3031 Comm: syzkaller849794 Not tainted 4.13.0-rc6-next-20170824+ #8
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:16 [inline]
dump_stack+0x194/0x257 lib/dump_stack.c:52
warn_alloc+0x1c2/0x2f0 mm/page_alloc.c:3254
__alloc_pages_slowpath+0x26ce/0x2ee0 mm/page_alloc.c:4120
__alloc_pages_nodemask+0x9f7/0xd80 mm/page_alloc.c:4213
__alloc_pages include/linux/gfp.h:469 [inline]
__alloc_pages_node include/linux/gfp.h:482 [inline]
kmem_getpages mm/slab.c:1415 [inline]
cache_grow_begin+0x86/0x400 mm/slab.c:2683
fallback_alloc+0x150/0x2b0 mm/slab.c:3224
____cache_alloc_node+0x1cf/0x1e0 mm/slab.c:3292
__do_cache_alloc mm/slab.c:3361 [inline]
slab_alloc mm/slab.c:3389 [inline]
kmem_cache_alloc_trace+0x27d/0x750 mm/slab.c:3625
kvm_arch_alloc_vm include/linux/slab.h:493 [inline]
kvm_create_vm arch/x86/kvm/../../../virt/kvm/kvm_main.c:646 [inline]
kvm_dev_ioctl_create_vm arch/x86/kvm/../../../virt/kvm/kvm_main.c:3197 [inline]
kvm_dev_ioctl+0x216/0x1840 arch/x86/kvm/../../../virt/kvm/kvm_main.c:3248
vfs_ioctl fs/ioctl.c:45 [inline]
do_vfs_ioctl+0x1b1/0x1530 fs/ioctl.c:685
SYSC_ioctl fs/ioctl.c:700 [inline]
SyS_ioctl+0x8f/0xc0 fs/ioctl.c:691
entry_SYSCALL_64_fastpath+0x1f/0xbe
RIP: 0033:0x435369
RSP: 002b:00007ffc6294f618 EFLAGS: 00000203 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 0000000000435369
RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 00000000000002a9
RBP: 6d766b2f7665642f R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000203 R12: 0000000000000000
R13: 0000000000401800 R14: 0000000000401890 R15: 0000000000000000
warn_alloc_show_mem: 1 callbacks suppressed
Mem-Info:
active_anon:3097 inactive_anon:42 isolated_anon:0
active_file:62 inactive_file:48 isolated_file:0
unevictable:0 dirty:0 writeback:0 unstable:0
slab_reclaimable:53628 slab_unreclaimable:329699
mapped:26 shmem:76 pagetables:302 bounce:0
free:17861 free_pcp:113 free_cma:0
Node 0 active_anon:2808kB inactive_anon:52kB active_file:188kB inactive_file:68kB unevictable:0kB isolated(anon):0kB isolated(file):100kB mapped:128kB dirty:0kB writeback:0kB shmem:76kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
Node 1 active_anon:9580kB inactive_anon:116kB active_file:160kB inactive_file:344kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:476kB dirty:0kB writeback:0kB shmem:228kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
Node 0 DMA free:4132kB min:640kB low:800kB high:960kB active_anon:52kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
lowmem_reserve[]: 0 886 886 886
Node 0 DMA32 free:35964kB min:36536kB low:45668kB high:54800kB active_anon:2756kB inactive_anon:52kB active_file:88kB inactive_file:20kB unevictable:0kB writepending:0kB present:1032192kB managed:909748kB mlocked:0kB kernel_stack:1536kB pagetables:568kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
lowmem_reserve[]: 0 0 0 0
Node 1 DMA32 free:30108kB min:30404kB low:38004kB high:45604kB active_anon:9580kB inactive_anon:116kB active_file:160kB inactive_file:172kB unevictable:0kB writepending:0kB present:1048560kB managed:755216kB mlocked:0kB kernel_stack:2368kB pagetables:640kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
lowmem_reserve[]: 0 0 0 0
Node 0 DMA: 5*4kB (UME) 2*8kB (UE) 2*16kB (UE) 1*32kB (U) 1*64kB (M) 1*128kB (M) 3*256kB (UME) 2*512kB (ME) 2*1024kB (UM) 0*2048kB 0*4096kB = 4132kB
Node 0 DMA32: 289*4kB (UME) 358*8kB (UM) 220*16kB (UME) 100*32kB (UM) 67*64kB (UME) 23*128kB (ME) 9*256kB (UM) 6*512kB (UM) 1*1024kB (E) 0*2048kB 3*4096kB (M) = 36660kB
Node 1 DMA32: 178*4kB (UM) 494*8kB (UME) 274*16kB (UME) 102*32kB (UME) 40*64kB (UM) 10*128kB (UME) 5*256kB (ME) 0*512kB 1*1024kB (M) 6*2048kB (UME) 0*4096kB = 30744kB
Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
219 total pagecache pages
0 pages in swap cache
Swap cache stats: add 0, delete 0, find 0/0
Free swap = 0kB
Total swap = 0kB
524186 pages RAM
0 pages HighMem/MovableOnly
103968 pages reserved
syzkaller849794 invoked oom-killer: gfp_mask=0x14082c2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=0
syzkaller849794 cpuset=/ mems_allowed=0-1
CPU: 3 PID: 3031 Comm: syzkaller849794 Not tainted 4.13.0-rc6-next-20170824+ #8
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:16 [inline]
dump_stack+0x194/0x257 lib/dump_stack.c:52
dump_header+0x234/0xa0e mm/oom_kill.c:421
oom_kill_process+0x86d/0x13d0 mm/oom_kill.c:836
out_of_memory+0x7dd/0x11d0 mm/oom_kill.c:1050
__alloc_pages_may_oom mm/page_alloc.c:3347 [inline]
__alloc_pages_slowpath+0x1eae/0x2ee0 mm/page_alloc.c:4058
__alloc_pages_nodemask+0x9f7/0xd80 mm/page_alloc.c:4213
alloc_pages_current+0xb6/0x1e0 mm/mempolicy.c:2035
alloc_pages include/linux/gfp.h:505 [inline]
__vmalloc_area_node mm/vmalloc.c:1704 [inline]
__vmalloc_node_range+0x439/0x730 mm/vmalloc.c:1765
__vmalloc_node mm/vmalloc.c:1810 [inline]
__vmalloc_node_flags_caller+0x50/0x60 mm/vmalloc.c:1832
kvmalloc_node+0x82/0xd0 mm/util.c:406
kvzalloc include/linux/mm.h:529 [inline]
kvm_alloc_memslots arch/x86/kvm/../../../virt/kvm/kvm_main.c:543 [inline]
kvm_create_vm arch/x86/kvm/../../../virt/kvm/kvm_main.c:677 [inline]
kvm_dev_ioctl_create_vm arch/x86/kvm/../../../virt/kvm/kvm_main.c:3197 [inline]
kvm_dev_ioctl+0xf28/0x1840 arch/x86/kvm/../../../virt/kvm/kvm_main.c:3248
vfs_ioctl fs/ioctl.c:45 [inline]
do_vfs_ioctl+0x1b1/0x1530 fs/ioctl.c:685
SYSC_ioctl fs/ioctl.c:700 [inline]
SyS_ioctl+0x8f/0xc0 fs/ioctl.c:691