INFO: task hung in ip_tunnel_init

Kernel	Title	Count	Last	Reported	Patched	Status
linux-6.1	INFO: task hung in ip_tunnel_init_net	2	79d	115d	0/3	upstream: reported on 2024/06/04 20:15
upstream	INFO: task hung in ip_tunnel_init_net net	2	1420d	1482d	0/28	auto-closed as invalid on 2021/02/05 10:58
linux-4.19	INFO: task hung in ip_tunnel_init_net (2)	1	600d	600d	0/1	upstream: reported on 2023/02/05 00:06
upstream	INFO: task hung in ip_tunnel_init_net (2) net	3	527d	650d	0/28	auto-obsoleted due to no activity on 2023/07/18 20:51
upstream	INFO: task can't die in ip_tunnel_init_net net	11	1074d	1075d	0/28	auto-closed as invalid on 2022/02/16 13:24

Node 0 DMA32 free:37896kB min:35996kB low:44992kB high:53988kB active_anon:1292892kB inactive_anon:19748kB active_file:84kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2763452kB mlocked:0kB kernel_stack:21312kB pagetables:39492kB bounce:0kB free_pcp:124kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 0 1 1 1 Node 0 Normal free:0kB min:24kB low:28kB high:32kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:2000kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB INFO: task syz-executor.4:9363 blocked for more than 140 seconds. lowmem_reserve[]: 0 0 0 0 0 Node 1 Normal free:53556kB min:53876kB low:67344kB high:80812kB active_anon:1034024kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:4194304kB managed:4128248kB mlocked:0kB kernel_stack:74368kB pagetables:128892kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 0 0 0 0 Node 0 DMA: 1*4kB (E) 3*8kB (U) 3*16kB (UE) 2*32kB (UE) 3*64kB (UE) 2*128kB (UE) 2*256kB (UE) 3*512kB (UE) 2*1024kB (UE) 3*2048kB (UME) 0*4096kB = 10828kB Not tainted 4.19.211-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.4 D26784 9363 19131 0x00000000 Call Trace: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 Node 0 DMA32: 277*4kB (ME) 194*8kB (ME) 172*16kB (UME) 204*32kB (UME) 182*64kB (UME) 71*128kB (UM) 20*256kB (UM) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 38308kB schedule+0x8d/0x1b0 kernel/sched/core.c:3561 Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 Node 1 Normal: 898*4kB (UME) 47*8kB (UME) 69*16kB (UME) 30*32kB (UME) 6*64kB (UME) 2*128kB (UM) 2*256kB (UM) 2*512kB (ME) 1*1024kB (M) 2*2048kB (UM) 10*4096kB (M) = 54288kB __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 13006 total pagecache pages 0 pages in swap cache Swap cache stats: add 0, delete 0, find 0/0 ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 Free swap = 0kB Total swap = 0kB 2097051 pages RAM 0 pages HighMem/MovableOnly 369649 pages reserved 0 pages cma reserved Unreclaimable slab info: Name Used Total pid_2 192KB 196KB batadv_tt_change_cache 1KB 3KB copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fed5f428fe9 Code: Bad RIP value. RSP: 002b:00007fed5dd5c118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007fed5f53c100 RCX: 00007fed5f428fe9 RDX: 0000000000000000 RSI: 0000000020001240 RDI: 0000000041a00000 RBP: 00007fed5f48308d R08: 0000000020001300 R09: 0000000020001300 R10: 00000000200012c0 R11: 0000000000000206 R12: 0000000000000000 R13: 00007ffd6139405f R14: 00007fed5dd5c300 R15: 0000000000022000 INFO: task syz-executor.4:9467 blocked for more than 140 seconds. Not tainted 4.19.211-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.4 D26888 9467 9422 0x00000000 Call Trace: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fed5f428fe9 Code: Bad RIP value. RSP: 002b:00007fed5dd5c118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007fed5f53c100 RCX: 00007fed5f428fe9 RDX: 0000000000000000 RSI: 0000000020001240 RDI: 0000000041a00000 RBP: 00007fed5f48308d R08: 0000000020001300 R09: 0000000020001300 R10: 00000000200012c0 R11: 0000000000000206 R12: 0000000000000000 R13: 00007ffd6139405f R14: 00007fed5dd5c300 R15: 0000000000022000 INFO: task syz-executor.4:9550 blocked for more than 140 seconds. Not tainted 4.19.211-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.4 D26928 9550 9467 0x00000000 Call Trace: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fed5f428fe9 Code: Bad RIP value. batadv_tl_cache 8KB 12KB RSP: 002b:00007fed5dd5c118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 TIPC 2088KB 2092KB RAX: ffffffffffffffda RBX: 00007fed5f53c100 RCX: 00007fed5f428fe9 rds_tcp_connection 4KB 7KB RDX: 0000000000000000 RSI: 0000000020001240 RDI: 0000000041a00000 rds_connection 0KB 3KB SCTPv6 5896KB 5896KB sctp_chunk 5KB 11KB sctp_bind_bucket 0KB 3KB DCCPv6 6915KB 6915KB DCCP 6559KB 6562KB RBP: 00007fed5f48308d R08: 0000000020001300 R09: 0000000020001300 RXRPC 2262KB 2262KB R10: 00000000200012c0 R11: 0000000000000206 R12: 0000000000000000 R13: 00007ffd6139405f R14: 00007fed5dd5c300 R15: 0000000000022000 rxrpc_call_jar 15660KB 15663KB bridge_fdb_cache 11KB 15KB fib6_nodes 155KB 216KB ip6_dst_cache 265KB 390KB ip6_mrt_cache 1KB 8KB RAWv6 28024KB 28026KB UDPv6 2638KB 2640KB INFO: task syz-executor.4:9702 blocked for more than 140 seconds. TCPv6 4464KB 4464KB nf_conntrack 10KB 37KB Not tainted 4.19.211-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.4 D26792 9702 9468 0x00000000 Call Trace: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 AF_VSOCK 1KB 3KB t10_alua_lu_gp_cache 0KB 3KB sd_ext_cdb 0KB 7KB scsi_sense_cache 1056KB 1060KB do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe virtio_scsi_cmd 16KB 16KB sgpool-128 8KB 8KB sgpool-64 4KB 12KB RIP: 0033:0x7fed5f428fe9 sgpool-32 2KB 15KB sgpool-16 1KB 7KB sgpool-8 0KB 7KB mqueue_inode_cache 22KB 37KB Code: Bad RIP value. bio_post_read_ctx 14KB 15KB bio-2 14KB 15KB jfs_mp 7KB 7KB RSP: 002b:00007fed5dd5c118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 cifs_small_rq 15KB 16KB cifs_request 67KB 67KB cifs_mpx_ids 0KB 7KB nfs_commit_data 3KB 14KB RAX: ffffffffffffffda RBX: 00007fed5f53c100 RCX: 00007fed5f428fe9 nfs_write_data 34KB 44KB ext4_system_zone 1KB 7KB RDX: 0000000000000000 RSI: 0000000020001240 RDI: 0000000041a00000 fanotify_event_info 0KB 3KB fsnotify_mark 0KB 3KB RBP: 00007fed5f48308d R08: 0000000020001300 R09: 0000000020001300 dio 435KB 438KB bio-1 1KB 7KB R10: 00000000200012c0 R11: 0000000000000206 R12: 0000000000000000 R13: 00007ffd6139405f R14: 00007fed5dd5c300 R15: 0000000000022000 pid_namespace 2KB 7KB kvm_vcpu 23KB 23KB kvm_mmu_page_header 9KB 11KB INFO: task syz-executor.4:9799 blocked for more than 140 seconds. Not tainted 4.19.211-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. pte_list_desc 1KB 3KB syz-executor.4 D26888 9799 9363 0x00000000 rpc_buffers 17KB 25KB Call Trace: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 rpc_tasks 2KB 7KB ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 UNIX 196KB 198KB create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 ip_mrt_cache 0KB 4KB copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 tcp_bind_bucket 178KB 180KB copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 inet_peer_cache 0KB 4KB do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe IPVS: ftp: loaded support on port[0] = 21 RIP: 0033:0x7fed5f428fe9 Code: Bad RIP value. xfrm_state 2KB 4KB RSP: 002b:00007fed5dd5c118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007fed5f53c100 RCX: 00007fed5f428fe9 ip_fib_trie 23KB 35KB RDX: 0000000000000000 RSI: 0000000020001240 RDI: 0000000041a00000 ip_fib_alias 111KB 150KB ip_dst_cache 10KB 68KB RBP: 00007fed5f48308d R08: 0000000020001300 R09: 0000000020001300 RAW 16602KB 16605KB R10: 00000000200012c0 R11: 0000000000000206 R12: 0000000000000000 R13: 00007ffd6139405f R14: 00007fed5dd5c300 R15: 0000000000022000 INFO: task syz-executor.4:9891 blocked for more than 140 seconds. UDP 4689KB 4691KB Not tainted 4.19.211-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. TCP 272KB 281KB hugetlbfs_inode_cache 3KB 15KB syz-executor.4 D26888 9891 9620 0x00000000 fscache_cookie_jar 1KB 7KB Call Trace: eventpoll_pwq 8KB 31KB context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 eventpoll_epi 16KB 51KB inotify_inode_mark 7KB 11KB schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 request_queue 177KB 177KB __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 blkdev_requests 1KB 3KB ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 blkdev_ioc 34KB 34KB bio-0 11100KB 11100KB ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fed5f428fe9 Code: Bad RIP value. RSP: 002b:00007fed5dd5c118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007fed5f53c100 RCX: 00007fed5f428fe9 RDX: 0000000000000000 RSI: 0000000020001240 RDI: 0000000041a00000 RBP: 00007fed5f48308d R08: 0000000020001300 R09: 0000000020001300 biovec-max 8027KB 8027KB R10: 00000000200012c0 R11: 0000000000000206 R12: 0000000000000000 biovec-64 6331KB 6331KB R13: 00007ffd6139405f R14: 00007fed5dd5c300 R15: 0000000000022000 INFO: task syz-executor.4:9904 blocked for more than 140 seconds. biovec-16 2397KB 2400KB Not tainted 4.19.211-syzkaller #0 bio_integrity_payload 1KB 8KB "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. khugepaged_mm_slot 159KB 163KB syz-executor.4 D26784 9904 9664 0x00000000 uid_cache 0KB 4KB Call Trace: dmaengine-unmap-2 0KB 3KB context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 audit_buffer 1KB 3KB skbuff_fclone_cache 49KB 52KB schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 skbuff_head_cache 8054KB 8085KB configfs_dir_cache 3KB 7KB __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 file_lock_cache 8KB 19KB file_lock_ctx 8KB 15KB fsnotify_mark_connector 3KB 7KB net_namespace 24202KB 24202KB shmem_inode_cache 7888KB 8065KB task_delay_info 1509KB 1857KB ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 taskstats 9KB 22KB proc_dir_entry 125386KB 125388KB pde_opener 2KB 7KB seq_file 54KB 55KB sigqueue 182KB 189KB ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 kernfs_node_cache 363084KB 363088KB mnt_cache 190KB 204KB copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 filp 4880KB 7323KB copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 names_cache 47969KB 47969KB iint_cache 28KB 55KB key_jar 10KB 18KB uts_namespace 2KB 7KB nsproxy 240KB 245KB vm_area_struct 25929KB 25979KB mm_struct 4769KB 4771KB fs_cache 2027KB 2528KB files_cache 7298KB 8272KB signal_cache 11244KB 12427KB sighand_cache 7189KB 7201KB task_struct 49073KB 49073KB cred_jar 4857KB 5896KB anon_vma_chain 36542KB 36567KB anon_vma 8939KB 8954KB pid 694KB 868KB Acpi-Operand 156KB 190KB Acpi-ParseExt 9KB 11KB Acpi-Parse 41KB 47KB Acpi-State 52KB 63KB Acpi-Namespace 21KB 23KB numa_policy 0KB 3KB debug_objects_cache 27884KB 27886KB trace_event_file 297KB 298KB ftrace_event_field 398KB 401KB pool_workqueue 2900KB 2900KB page->ptl 4731KB 4755KB kmalloc-2097152 2050KB 2050KB kmalloc-524288 2056KB 2056KB copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 kmalloc-262144 1290KB 1290KB kmalloc-131072 780KB 1040KB syz-executor.4: page allocation failure: order:4, mode:0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) syz-executor.4 cpuset=/ mems_allowed=0-1 CPU: 0 PID: 673 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 warn_alloc.cold+0x7b/0x18f mm/page_alloc.c:3457 __alloc_pages_slowpath mm/page_alloc.c:4317 [inline] __alloc_pages_nodemask+0x232f/0x2890 mm/page_alloc.c:4419 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe __alloc_pages include/linux/gfp.h:496 [inline] __alloc_pages_node include/linux/gfp.h:509 [inline] kmem_getpages mm/slab.c:1412 [inline] cache_grow_begin+0xa4/0x8a0 mm/slab.c:2682 fallback_alloc+0x213/0x2e0 mm/slab.c:3224 __do_cache_alloc mm/slab.c:3361 [inline] slab_alloc mm/slab.c:3389 [inline] kmem_cache_alloc_trace+0x1f1/0x380 mm/slab.c:3623 kmalloc include/linux/slab.h:515 [inline] kzalloc include/linux/slab.h:709 [inline] can_pernet_init+0x6a/0x3b0 net/can/af_can.c:888 ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 RIP: 0033:0x7fed5f428fe9 Code: Bad RIP value. copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 kmalloc-65536 4356KB 4356KB RSP: 002b:00007fed5dd5c118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007fed5f53c100 RCX: 00007fed5f428fe9 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fed5f428fe9 Code: Bad RIP value. RSP: 002b:00007fed5dd5c118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007fed5f53c100 RCX: 00007fed5f428fe9 RDX: 0000000000000000 RSI: 0000000020001240 RDI: 0000000041a00000 RBP: 00007fed5f48308d R08: 0000000020001300 R09: 0000000020001300 kmalloc-32768 153450KB 153450KB R10: 00000000200012c0 R11: 0000000000000206 R12: 0000000000000000 R13: 00007ffd6139405f R14: 00007fed5dd5c300 R15: 0000000000022000 kmalloc-16384 46678KB 46678KB RDX: 0000000000000000 RSI: 0000000020001240 RDI: 0000000041a00000 Mem-Info: active_anon:582766 inactive_anon:4937 isolated_anon:0 active_file:18 inactive_file:4 isolated_file:0 unevictable:0 dirty:0 writeback:0 unstable:0 slab_reclaimable:40373 slab_unreclaimable:903183 mapped:15339 shmem:12841 pagetables:42121 bounce:0 free:25249 free_pcp:460 free_cma:0 kmalloc-8192 107324KB 107324KB Node 0 active_anon:1297036kB inactive_anon:19748kB active_file:72kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:61352kB dirty:0kB writeback:0kB shmem:51364kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 538624kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no kmalloc-4096 491907KB 491907KB kmalloc-2048 385666KB 385668KB kmalloc-1024 155398KB 155405KB RBP: 00007fed5f48308d R08: 0000000020001300 R09: 0000000020001300 kmalloc-512 125060KB 132453KB kmalloc-256 81130KB 82492KB kmalloc-128 40426KB 40536KB kmalloc-96 10776KB 11292KB kmalloc-64 28607KB 29488KB kmalloc-32 25624KB 26349KB kmalloc-192 54722KB 55864KB kmem_cache 178KB 183KB Out of memory: Kill process 19262 (syz-executor.4) score 1002 or sacrifice child Killed process 19262 (syz-executor.4) total-vm:57332kB, anon-rss:2468kB, file-rss:14096kB, shmem-rss:0kB R10: 00000000200012c0 R11: 0000000000000206 R12: 0000000000000000 oom_reaper: reaped process 19262 (syz-executor.4), now anon-rss:0kB, file-rss:14096kB, shmem-rss:0kB Node 1 active_anon:1034028kB inactive_anon:0kB active_file:0kB inactive_file:12kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:4kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes Node 0 DMA free:10828kB min:204kB low:252kB high:300kB active_anon:4096kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:64kB pagetables:28kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB IPVS: ftp: loaded support on port[0] = 21 lowmem_reserve[]: 0 2693 2695 2695 2695 Node 0 DMA32 free:35464kB min:35996kB low:44992kB high:53988kB active_anon:1292940kB inactive_anon:19748kB active_file:620kB inactive_file:728kB unevictable:0kB writepending:0kB present:3129332kB managed:2763452kB mlocked:0kB kernel_stack:21312kB pagetables:39564kB bounce:0kB free_pcp:1196kB local_pcp:584kB free_cma:0kB R13: 00007ffd6139405f R14: 00007fed5dd5c300 R15: 0000000000022000 lowmem_reserve[]: 0 0 1 1 1 Node 0 Normal free:0kB min:24kB low:28kB high:32kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:2000kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB syz-executor.4 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=1, oom_score_adj=1000 INFO: task syz-executor.4:9964 blocked for more than 140 seconds. syz-executor.4 cpuset=/ mems_allowed=0-1 CPU: 1 PID: 16189 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 Not tainted 4.19.211-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 dump_header+0x15d/0xc3f mm/oom_kill.c:443 oom_kill_process.cold+0x10/0x692 mm/oom_kill.c:956 out_of_memory mm/oom_kill.c:1114 [inline] out_of_memory+0x1072/0x1390 mm/oom_kill.c:1064 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. __alloc_pages_may_oom mm/page_alloc.c:3553 [inline] __alloc_pages_slowpath mm/page_alloc.c:4255 [inline] __alloc_pages_nodemask+0x23a2/0x2890 mm/page_alloc.c:4419 lowmem_reserve[]: 0 0 0 0 0 __alloc_pages include/linux/gfp.h:496 [inline] __alloc_pages_node include/linux/gfp.h:509 [inline] kmem_getpages mm/slab.c:1412 [inline] cache_grow_begin+0xa4/0x8a0 mm/slab.c:2682 fallback_alloc+0x213/0x2e0 mm/slab.c:3224 syz-executor.4 D26792 9964 9540 0x00000000 __do_cache_alloc mm/slab.c:3361 [inline] slab_alloc mm/slab.c:3389 [inline] __do_kmalloc mm/slab.c:3725 [inline] __kmalloc+0x213/0x3c0 mm/slab.c:3736 kmalloc include/linux/slab.h:520 [inline] kzalloc include/linux/slab.h:709 [inline] ops_init+0xfe/0x410 net/core/net_namespace.c:119 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 Node 1 Normal free:53248kB min:53876kB low:67344kB high:80812kB active_anon:1034028kB inactive_anon:0kB active_file:56kB inactive_file:648kB unevictable:0kB writepending:0kB present:4194304kB managed:4128248kB mlocked:0kB kernel_stack:74208kB pagetables:128892kB bounce:0kB free_pcp:412kB local_pcp:56kB free_cma:0kB copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 Call Trace: copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 lowmem_reserve[]: 0 0 0 0 0 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fed5f428fe9 Code: Bad RIP value. RSP: 002b:00007fed5dd5c118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007fed5f53c100 RCX: 00007fed5f428fe9 RDX: 0000000000000000 RSI: 0000000020001240 RDI: 0000000041a00000 RBP: 00007fed5f48308d R08: 0000000020001300 R09: 0000000020001300 R10: 00000000200012c0 R11: 0000000000000206 R12: 0000000000000000 R13: 00007ffd6139405f R14: 00007fed5dd5c300 R15: 0000000000022000 Node 0 DMA: 1*4kB (E) 3*8kB (U) 3*16kB (UE) 2*32kB (UE) 3*64kB (UE) 2*128kB (UE) 2*256kB (UE) 3*512kB (UE) 2*1024kB (UE) 3*2048kB (UME) 0*4096kB = 10828kB Mem-Info: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 active_anon:582760 inactive_anon:4937 isolated_anon:0 active_file:49 inactive_file:18 isolated_file:0 unevictable:0 dirty:0 writeback:0 unstable:0 slab_reclaimable:40392 slab_unreclaimable:903100 mapped:15362 shmem:12841 pagetables:42136 bounce:0 free:25291 free_pcp:124 free_cma:0 Node 0 active_anon:1297012kB inactive_anon:19748kB active_file:108kB inactive_file:96kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:61500kB dirty:0kB writeback:0kB shmem:51364kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 538624kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no Node 1 active_anon:1034028kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:48kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes Node 0 DMA free:10828kB min:204kB low:252kB high:300kB active_anon:4096kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:64kB pagetables:28kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB schedule+0x8d/0x1b0 kernel/sched/core.c:3561 Node 0 DMA32: 79*4kB (ME) 176*8kB (UM) 160*16kB (M) 192*32kB (UME) 179*64kB (UME) 70*128kB (UM) 19*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35708kB Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB lowmem_reserve[]: 0 2693 2695 2695 2695 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 Node 1 Normal: 890*4kB (UME) 91*8kB (UME) 45*16kB (UME) 39*32kB (UME) 4*64kB (ME) 2*128kB (UM) 2*256kB (UM) 2*512kB (ME) 1*1024kB (M) 2*2048kB (UM) 10*4096kB (M) = 54384kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 Node 0 DMA32 free:36440kB min:35996kB low:44992kB high:53988kB active_anon:1292916kB inactive_anon:19748kB active_file:572kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2763452kB mlocked:0kB kernel_stack:21312kB pagetables:39624kB bounce:0kB free_pcp:516kB local_pcp:516kB free_cma:0kB Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 13063 total pagecache pages 0 pages in swap cache Swap cache stats: add 0, delete 0, find 0/0 lowmem_reserve[]: 0 0 1 1 1 Node 0 Normal free:0kB min:24kB low:28kB high:32kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:2000kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB Free swap = 0kB Total swap = 0kB ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2097051 pages RAM 0 pages HighMem/MovableOnly ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 lowmem_reserve[]: 0 0 0 0 0 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 369649 pages reserved 0 pages cma reserved create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 Node 1 Normal free:53716kB min:53876kB low:67344kB high:80812kB active_anon:1034028kB inactive_anon:0kB active_file:8kB inactive_file:100kB unevictable:0kB writepending:0kB present:4194304kB managed:4128248kB mlocked:0kB kernel_stack:74208kB pagetables:128892kB bounce:0kB free_pcp:200kB local_pcp:0kB free_cma:0kB copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 lowmem_reserve[]: 0 0 0 0 0 Node 0 DMA: 1*4kB (E) 3*8kB (U) 3*16kB (UE) 2*32kB (UE) 3*64kB (UE) 2*128kB (UE) 2*256kB (UE) 3*512kB (UE) 2*1024kB (UE) 3*2048kB (UME) 0*4096kB = 10828kB copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 Node 0 DMA32: 230*4kB (ME) 188*8kB (UME) 176*16kB (UME) 193*32kB (UME) 179*64kB (UME) 70*128kB (UM) 19*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 36696kB copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB Node 1 Normal: 902*4kB (UME) 84*8kB (UME) 45*16kB (UME) 39*32kB (UME) 4*64kB (ME) 2*128kB (UM) 2*256kB (UM) 2*512kB (ME) 1*1024kB (M) 2*2048kB (UM) 10*4096kB (M) = 54376kB do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fed5f428fe9 Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB Code: Bad RIP value. RSP: 002b:00007fed5dd5c118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 12938 total pagecache pages RAX: ffffffffffffffda RBX: 00007fed5f53c100 RCX: 00007fed5f428fe9 0 pages in swap cache Swap cache stats: add 0, delete 0, find 0/0 Free swap = 0kB RDX: 0000000000000000 RSI: 0000000020001240 RDI: 0000000041a00000 Total swap = 0kB RBP: 00007fed5f48308d R08: 0000000020001300 R09: 0000000020001300 2097051 pages RAM R10: 00000000200012c0 R11: 0000000000000206 R12: 0000000000000000 0 pages HighMem/MovableOnly R13: 00007ffd6139405f R14: 00007fed5dd5c300 R15: 0000000000022000 369649 pages reserved INFO: task syz-executor.4:10392 blocked for more than 140 seconds. 0 pages cma reserved Not tainted 4.19.211-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. Unreclaimable slab info: syz-executor.4 D26912 10392 9964 0x00000000 Call Trace: Name Used Total context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 pid_2 192KB 196KB batadv_tt_change_cache 1KB 3KB schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fed5f428fe9 Code: Bad RIP value. RSP: 002b:00007fed5dd5c118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007fed5f53c100 RCX: 00007fed5f428fe9 RDX: 0000000000000000 RSI: 0000000020001240 RDI: 0000000041a00000 RBP: 00007fed5f48308d R08: 0000000020001300 R09: 0000000020001300 R10: 00000000200012c0 R11: 0000000000000206 R12: 0000000000000000 R13: 00007ffd6139405f R14: 00007fed5dd5c300 R15: 0000000000022000 INFO: task syz-executor.4:10403 blocked for more than 140 seconds. Not tainted 4.19.211-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor.4 D26888 10403 9363 0x00000000 Call Trace: context_switch kernel/sched/core.c:2828 [inline] __schedule+0x887/0x2040 kernel/sched/core.c:3517 schedule+0x8d/0x1b0 kernel/sched/core.c:3561 schedule_preempt_disabled+0xf/0x20 kernel/sched/core.c:3619 __mutex_lock_common kernel/locking/mutex.c:1016 [inline] __mutex_lock+0x5f0/0x1190 kernel/locking/mutex.c:1078 ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 ops_init+0xb3/0x410 net/core/net_namespace.c:129 setup_net+0x2c2/0x720 net/core/net_namespace.c:316 copy_net_ns+0x1f7/0x340 net/core/net_namespace.c:439 create_new_namespaces+0x3f6/0x7b0 kernel/nsproxy.c:107 copy_namespaces+0x325/0x3c0 kernel/nsproxy.c:165 copy_process.part.0+0x3a59/0x8260 kernel/fork.c:1916 copy_process kernel/fork.c:1710 [inline] _do_fork+0x22f/0xf30 kernel/fork.c:2219 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fed5f428fe9 Code: Bad RIP value. RSP: 002b:00007fed5dd5c118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007fed5f53c100 RCX: 00007fed5f428fe9 RDX: 0000000000000000 RSI: 0000000020001240 RDI: 0000000041a00000 RBP: 00007fed5f48308d R08: 0000000020001300 R09: 0000000020001300 R10: 00000000200012c0 R11: 0000000000000206 R12: 0000000000000000 R13: 00007ffd6139405f R14: 00007fed5dd5c300 R15: 0000000000022000 Showing all locks held in the system: 3 locks held by systemd/1: #0: 00000000d558aaf3 (&mm->mmap_sem){++++}, at: __do_page_fault+0x398/0xd60 arch/x86/mm/fault.c:1341 #1: 00000000ed4154c5 (&ei->i_mmap_sem){++++}, at: ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6378 #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: fs_reclaim_release mm/page_alloc.c:3778 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: fs_reclaim_release mm/page_alloc.c:3774 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __perform_reclaim mm/page_alloc.c:3805 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __alloc_pages_direct_reclaim mm/page_alloc.c:3821 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __alloc_pages_slowpath mm/page_alloc.c:4211 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __alloc_pages_nodemask+0x191e/0x2890 mm/page_alloc.c:4419 3 locks held by kworker/1:1/25: #0: 00000000c44ab9c0 ((wq_completion)"%s"("ipv6_addrconf")){+.+.}, at: process_one_work+0x767/0x1570 kernel/workqueue.c:2124 #1: 00000000a4b05bae ((addr_chk_work).work){+.+.}, at: process_one_work+0x79c/0x1570 kernel/workqueue.c:2128 #2: 0000000074010666 (rtnl_mutex){+.+.}, at: addrconf_verify_work+0xa/0x20 net/ipv6/addrconf.c:4476 1 lock held by khungtaskd/1570: #0: 000000005b11a916 (rcu_read_lock){....}, at: debug_show_all_locks+0x53/0x265 kernel/locking/lockdep.c:4441 4 locks held by kworker/u4:6/8046: #0: 00000000dfc865b6 ((wq_completion)"%s""netns"){+.+.}, at: process_one_work+0x767/0x1570 kernel/workqueue.c:2124 #1: 0000000076731d57 (net_cleanup_work){+.+.}, at: process_one_work+0x79c/0x1570 kernel/workqueue.c:2128 #2: 00000000640aef11 (pernet_ops_rwsem){++++}, at: cleanup_net+0xa8/0x8b0 net/core/net_namespace.c:521 #3: 0000000074010666 (rtnl_mutex){+.+.}, at: ip6gre_exit_batch_net+0x82/0x6c0 net/ipv6/ip6_gre.c:1632 3 locks held by syz-fuzzer/8087: #0: 00000000f2bc0b91 (&mm->mmap_sem){++++}, at: __do_page_fault+0x398/0xd60 arch/x86/mm/fault.c:1341 #1: 00000000dd41fba1 (&ei->i_mmap_sem){++++}, at: ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6378 #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: fs_reclaim_release mm/page_alloc.c:3778 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: fs_reclaim_release mm/page_alloc.c:3774 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __perform_reclaim mm/page_alloc.c:3805 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __alloc_pages_direct_reclaim mm/page_alloc.c:3821 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __alloc_pages_slowpath mm/page_alloc.c:4211 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __alloc_pages_nodemask+0x191e/0x2890 mm/page_alloc.c:4419 3 locks held by syz-fuzzer/8088: #0: 00000000f2bc0b91 (&mm->mmap_sem){++++}, at: __do_page_fault+0x398/0xd60 arch/x86/mm/fault.c:1341 #1: 00000000dd41fba1 (&ei->i_mmap_sem){++++}, at: ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6378 #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: fs_reclaim_release mm/page_alloc.c:3778 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: fs_reclaim_release mm/page_alloc.c:3774 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __perform_reclaim mm/page_alloc.c:3805 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __alloc_pages_direct_reclaim mm/page_alloc.c:3821 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __alloc_pages_slowpath mm/page_alloc.c:4211 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __alloc_pages_nodemask+0x191e/0x2890 mm/page_alloc.c:4419 3 locks held by syz-fuzzer/8090: #0: 00000000f2bc0b91 (&mm->mmap_sem){++++}, at: __do_page_fault+0x398/0xd60 arch/x86/mm/fault.c:1341 #1: 00000000dd41fba1 (&ei->i_mmap_sem){++++}, at: ext4_filemap_fault+0x7c/0xb0 fs/ext4/inode.c:6378 #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: fs_reclaim_release mm/page_alloc.c:3778 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: fs_reclaim_release mm/page_alloc.c:3774 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __perform_reclaim mm/page_alloc.c:3805 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __alloc_pages_direct_reclaim mm/page_alloc.c:3821 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __alloc_pages_slowpath mm/page_alloc.c:4211 [inline] #2: 00000000e80dce44 (fs_reclaim){+.+.}, at: __alloc_pages_nodemask+0x191e/0x2890 mm/page_alloc.c:4419 1 lock held by syz-executor.2/8121: #0: 0000000074010666 (rtnl_mutex){+.+.}, at: tun_detach drivers/net/tun.c:759 [inline] #0: 0000000074010666 (rtnl_mutex){+.+.}, at: tun_chr_close+0x3a/0x180 drivers/net/tun.c:3323 1 lock held by syz-executor.5/9925: #0: 0000000074010666 (rtnl_mutex){+.+.}, at: tun_detach drivers/net/tun.c:759 [inline] #0: 0000000074010666 (rtnl_mutex){+.+.}, at: tun_chr_close+0x3a/0x180 drivers/net/tun.c:3323 2 locks held by syz-executor.4/9363: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/9422: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/9467: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/9468: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/9536: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/9540: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/9550: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/9561: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/9620: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/9664: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/9690: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/9702: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/9728: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/9741: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/9790: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/9798: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/9799: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/9891: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/9904: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/9918: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/9928: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 batadv_tl_cache 8KB 12KB 2 locks held by syz-executor.4/9959: TIPC 2088KB 2092KB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 rds_tcp_connection 4KB 7KB rds_connection 0KB 3KB SCTPv6 5898KB 5902KB sctp_chunk 5KB 11KB sctp_bind_bucket 0KB 3KB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 DCCPv6 6917KB 6922KB 2 locks held by syz-executor.4/9964: DCCP 6562KB 6562KB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 RXRPC 2262KB 2262KB 2 locks held by syz-executor.4/9973: rxrpc_call_jar 15660KB 15663KB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 bridge_fdb_cache 11KB 15KB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/10045: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/10067: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 fib6_nodes 155KB 216KB 2 locks held by syz-executor.4/10076: ip6_dst_cache 262KB 390KB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 ip6_mrt_cache 1KB 8KB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 RAWv6 28044KB 28046KB 2 locks held by syz-executor.4/10094: UDPv6 2638KB 2640KB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 TCPv6 4464KB 4464KB nf_conntrack 9KB 37KB AF_VSOCK 1KB 3KB t10_alua_lu_gp_cache 0KB 3KB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 sd_ext_cdb 0KB 7KB scsi_sense_cache 1056KB 1060KB virtio_scsi_cmd 16KB 16KB sgpool-128 8KB 8KB 2 locks held by syz-executor.4/10217: sgpool-64 4KB 12KB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 sgpool-32 2KB 15KB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 sgpool-16 1KB 7KB sgpool-8 0KB 7KB mqueue_inode_cache 22KB 37KB bio_post_read_ctx 14KB 15KB bio-2 14KB 15KB jfs_mp 7KB 7KB cifs_small_rq 15KB 16KB cifs_request 67KB 67KB cifs_mpx_ids 0KB 7KB nfs_commit_data 3KB 14KB nfs_write_data 34KB 44KB ext4_system_zone 1KB 7KB fanotify_event_info 0KB 3KB fsnotify_mark 0KB 3KB dio 435KB 438KB bio-1 1KB 7KB pid_namespace 2KB 7KB kvm_vcpu 23KB 23KB kvm_mmu_page_header 9KB 11KB pte_list_desc 1KB 3KB rpc_buffers 17KB 25KB rpc_tasks 2KB 7KB UNIX 195KB 198KB ip_mrt_cache 0KB 4KB tcp_bind_bucket 178KB 180KB inet_peer_cache 0KB 4KB xfrm_state 2KB 4KB ip_fib_trie 23KB 35KB ip_fib_alias 111KB 150KB ip_dst_cache 10KB 68KB RAW 16608KB 16612KB UDP 4691KB 4691KB TCP 272KB 281KB hugetlbfs_inode_cache 3KB 15KB fscache_cookie_jar 1KB 7KB eventpoll_pwq 8KB 31KB eventpoll_epi 16KB 51KB inotify_inode_mark 7KB 11KB request_queue 177KB 177KB blkdev_requests 1KB 3KB blkdev_ioc 34KB 34KB bio-0 11283KB 11283KB biovec-max 8035KB 8035KB biovec-64 6489KB 6489KB biovec-16 2433KB 2433KB bio_integrity_payload 1KB 8KB khugepaged_mm_slot 159KB 163KB uid_cache 0KB 4KB dmaengine-unmap-2 0KB 3KB audit_buffer 1KB 3KB skbuff_fclone_cache 49KB 52KB skbuff_head_cache 8051KB 8077KB configfs_dir_cache 3KB 7KB file_lock_cache 8KB 19KB file_lock_ctx 8KB 15KB fsnotify_mark_connector 3KB 7KB net_namespace 24211KB 24211KB shmem_inode_cache 7888KB 8065KB task_delay_info 1508KB 1857KB taskstats 9KB 22KB proc_dir_entry 125431KB 125433KB 2 locks held by syz-executor.4/10279: pde_opener 2KB 7KB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 seq_file 54KB 55KB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 sigqueue 182KB 189KB 2 locks held by syz-executor.4/10288: kernfs_node_cache 363277KB 363281KB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 mnt_cache 190KB 204KB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 filp 4818KB 7323KB names_cache 47655KB 47672KB iint_cache 28KB 55KB key_jar 10KB 18KB uts_namespace 2KB 7KB nsproxy 240KB 245KB vm_area_struct 25941KB 25991KB mm_struct 4769KB 4771KB fs_cache 2016KB 2528KB files_cache 7253KB 8238KB signal_cache 11188KB 12398KB sighand_cache 7168KB 7201KB task_struct 48757KB 48789KB cred_jar 4822KB 5884KB anon_vma_chain 36554KB 36579KB anon_vma 8939KB 8954KB pid 689KB 864KB Acpi-Operand 156KB 190KB Acpi-ParseExt 9KB 11KB Acpi-Parse 41KB 47KB Acpi-State 52KB 63KB Acpi-Namespace 21KB 23KB numa_policy 0KB 3KB debug_objects_cache 27911KB 27913KB trace_event_file 297KB 298KB ftrace_event_field 398KB 401KB pool_workqueue 2899KB 2900KB page->ptl 4731KB 4755KB kmalloc-2097152 2050KB 2050KB kmalloc-524288 2056KB 2056KB kmalloc-262144 1290KB 1290KB kmalloc-131072 780KB 1040KB kmalloc-65536 4356KB 4356KB kmalloc-32768 153516KB 153516KB kmalloc-16384 46711KB 46711KB kmalloc-8192 107365KB 107365KB kmalloc-4096 491797KB 491797KB kmalloc-2048 385770KB 385770KB kmalloc-1024 155524KB 155531KB kmalloc-512 125037KB 132532KB kmalloc-256 81160KB 82545KB kmalloc-128 40443KB 40556KB kmalloc-96 10772KB 11296KB kmalloc-64 28610KB 29504KB kmalloc-32 25638KB 26373KB kmalloc-192 54735KB 55896KB kmem_cache 178KB 183KB Out of memory (oom_kill_allocating_task): Kill process 16189 (syz-executor.4) score 0 or sacrifice child Killed process 24035 (syz-executor.4) total-vm:57332kB, anon-rss:2468kB, file-rss:14080kB, shmem-rss:0kB oom_reaper: reaped process 24035 (syz-executor.4), now anon-rss:0kB, file-rss:14080kB, shmem-rss:0kB syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), nodemask=(null), order=0, oom_score_adj=0 syz-fuzzer cpuset=/ mems_allowed=0-1 CPU: 0 PID: 8087 Comm: syz-fuzzer Not tainted 4.19.211-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 dump_header+0x15d/0xc3f mm/oom_kill.c:443 oom_kill_process.cold+0x10/0x692 mm/oom_kill.c:956 out_of_memory mm/oom_kill.c:1114 [inline] out_of_memory+0x1072/0x1390 mm/oom_kill.c:1064 __alloc_pages_may_oom mm/page_alloc.c:3553 [inline] __alloc_pages_slowpath mm/page_alloc.c:4255 [inline] __alloc_pages_nodemask+0x23a2/0x2890 mm/page_alloc.c:4419 alloc_pages_current+0x193/0x2a0 mm/mempolicy.c:2197 alloc_pages include/linux/gfp.h:532 [inline] __page_cache_alloc mm/filemap.c:969 [inline] page_cache_read mm/filemap.c:2408 [inline] filemap_fault+0x146e/0x2180 mm/filemap.c:2592 ext4_filemap_fault+0x84/0xb0 fs/ext4/inode.c:6379 __do_fault+0x10b/0x4b0 mm/memory.c:3403 do_read_fault mm/memory.c:3815 [inline] do_fault mm/memory.c:3944 [inline] handle_pte_fault mm/memory.c:4175 [inline] __handle_mm_fault+0x273b/0x41c0 mm/memory.c:4299 handle_mm_fault+0x436/0xb10 mm/memory.c:4336 __do_page_fault+0x68e/0xd60 arch/x86/mm/fault.c:1412 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1205 RIP: 0033:0x43e39d Code: Bad RIP value. RSP: 002b:00007fff0f171af0 EFLAGS: 00010206 RAX: 0000000001890f00 RBX: 00000000018912c0 RCX: 0000000000000000 RDX: 0000000001890df8 RSI: 00007fff0f171ac0 RDI: 00007fff0f171a9c RBP: 00007fff0f171bc8 R08: 00007fff0f185000 R09: 000000e35e306345 R10: 000b79b54e945ad6 R11: 0000000000000001 R12: 0000000000000003 R13: 0000000001890f00 R14: 000000cda86e0175 R15: 000000000000d29e Mem-Info: active_anon:582760 inactive_anon:4937 isolated_anon:0 active_file:34 inactive_file:13 isolated_file:0 unevictable:0 dirty:0 writeback:0 unstable:0 slab_reclaimable:40430 slab_unreclaimable:903269 mapped:15354 shmem:12841 pagetables:42136 bounce:0 free:25042 free_pcp:398 free_cma:0 Node 0 active_anon:1297012kB inactive_anon:19748kB active_file:136kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:61416kB dirty:0kB writeback:0kB shmem:51364kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 538624kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 2 locks held by syz-executor.4/10339: Node 1 active_anon:1034028kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 Node 0 DMA free:10828kB min:204kB low:252kB high:300kB active_anon:4096kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:64kB pagetables:28kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 lowmem_reserve[]: 0 2693 2695 2695 2695 2 locks held by syz-executor.4/10364: Node 0 DMA32 free:36244kB min:35996kB low:44992kB high:53988kB active_anon:1292916kB inactive_anon:19748kB active_file:68kB inactive_file:68kB unevictable:0kB writepending:0kB present:3129332kB managed:2763452kB mlocked:0kB kernel_stack:21312kB pagetables:39624kB bounce:0kB free_pcp:260kB local_pcp:0kB free_cma:0kB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 lowmem_reserve[]: 0 0 1 1 1 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 Node 0 Normal free:0kB min:24kB low:28kB high:32kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:2000kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 2 locks held by syz-executor.4/10365: lowmem_reserve[]: 0 0 0 0 0 #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 Node 1 Normal free:53852kB min:53876kB low:67344kB high:80812kB active_anon:1034028kB inactive_anon:0kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:0kB present:4194304kB managed:4128248kB mlocked:0kB kernel_stack:74176kB pagetables:128892kB bounce:0kB free_pcp:248kB local_pcp:0kB free_cma:0kB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 lowmem_reserve[]: 0 0 0 0 0 2 locks held by syz-executor.4/10392: Node 0 DMA: 1*4kB (E) 3*8kB (U) 3*16kB (UE) 2*32kB (UE) 3*64kB (UE) 2*128kB (UE) 2*256kB (UE) 3*512kB (UE) 2*1024kB (UE) 3*2048kB (UME) 0*4096kB = 10828kB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 Node 0 DMA32: 52*4kB (UM) 183*8kB (UM) 174*16kB (UME) 188*32kB (UME) 178*64kB (UME) 69*128kB (UM) 19*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35560kB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB 2 locks held by syz-executor.4/10403: Node 1 Normal: 719*4kB (UME) 60*8kB (UME) 42*16kB (UME) 37*32kB (UME) 4*64kB (ME) 2*128kB (UM) 2*256kB (UM) 2*512kB (ME) 1*1024kB (M) 2*2048kB (UM) 10*4096kB (M) = 53340kB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 2 locks held by syz-executor.4/10449: Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 12874 total pagecache pages 2 locks held by syz-executor.4/10451: 0 pages in swap cache #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 Swap cache stats: add 0, delete 0, find 0/0 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 Free swap = 0kB 2 locks held by syz-executor.4/10506: Total swap = 0kB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/10541: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/10564: 2097051 pages RAM #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 0 pages HighMem/MovableOnly #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 369649 pages reserved 2 locks held by syz-executor.4/10618: 0 pages cma reserved #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 Unreclaimable slab info: #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/10630: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/10657: Name Used Total #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 pid_2 192KB 196KB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 batadv_tt_change_cache 1KB 3KB 2 locks held by syz-executor.4/10661: batadv_tl_cache 8KB 12KB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 TIPC 2089KB 2092KB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 rds_tcp_connection 4KB 7KB 2 locks held by syz-executor.4/10676: rds_connection 0KB 3KB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 SCTPv6 5898KB 5902KB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 sctp_chunk 5KB 11KB 2 locks held by syz-executor.4/10687: sctp_bind_bucket 0KB 3KB #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 DCCPv6 6917KB 6922KB #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/10699: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/10716: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/10754: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/10757: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/10776: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/10777: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/10812: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/10850: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/10851: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/10952: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/10984: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/11090: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11221: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11287: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11336: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11396: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11417: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11420: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11434: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11466: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11467: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11524: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/11555: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11562: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/11584: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/11620: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11667: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/11711: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/11726: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11745: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11759: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11790: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/11846: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11875: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/11902: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/12043: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12090: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12091: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12149: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12220: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12224: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12257: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: sit_exit_batch_net+0x88/0x700 net/ipv6/sit.c:1889 2 locks held by syz-executor.4/12334: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/12387: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12390: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/12423: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/12448: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/12449: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12464: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12473: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12474: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12475: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/12496: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/12518: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12600: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12607: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/12638: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12698: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/12709: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12783: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/12784: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12785: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12801: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12819: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/12874: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12921: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/12939: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12951: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/12994: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/13042: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/13120: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/13131: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/13185: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/13200: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/13235: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/13326: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/13410: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/13474: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/13606: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/13642: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/13651: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/13680: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/13761: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/13810: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/13819: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: register_netdev+0x11/0x50 net/core/dev.c:8857 2 locks held by syz-executor.4/13877: #0: 00000000640aef11 (pernet_ops_rwsem){++++}, at: copy_net_ns+0x1d8/0x340 net/core/net_namespace.c:435 #1: 0000000074010666 (rtnl_mutex){+.+.}, at: ip_tunnel_init_net+0x321/0x990 net/ipv4/ip_tunnel.c:1034 2 locks held by syz-executor.4/13942:

Crashes (18):
Time	Kernel	Commit	Syzkaller	Config	Log	Report	VM info	Manager	Title
2022/01/20 09:21	linux-4.19.y	3f8a27f9e27b	5da9499f	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2022/01/16 23:28	linux-4.19.y	3f8a27f9e27b	723cfaf0	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2022/01/13 14:32	linux-4.19.y	3f8a27f9e27b	44d1319a	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2022/01/13 09:33	linux-4.19.y	3f8a27f9e27b	44d1319a	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2022/01/12 20:22	linux-4.19.y	3f8a27f9e27b	44d1319a	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2022/01/09 05:27	linux-4.19.y	3f8a27f9e27b	2ca0d385	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2022/01/07 17:57	linux-4.19.y	3f8a27f9e27b	2ca0d385	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2022/01/06 17:32	linux-4.19.y	3f8a27f9e27b	6acc789a	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2021/12/31 23:52	linux-4.19.y	3f8a27f9e27b	36bd2e48	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2021/12/26 20:34	linux-4.19.y	3f8a27f9e27b	e4f103c4	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2021/12/26 01:51	linux-4.19.y	3f8a27f9e27b	6caa12e4	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2021/12/24 16:57	linux-4.19.y	3f8a27f9e27b	6caa12e4	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2021/12/14 23:25	linux-4.19.y	3f8a27f9e27b	d018dd31	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2021/12/14 07:57	linux-4.19.y	3f8a27f9e27b	5d14b1ea	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2021/12/14 04:52	linux-4.19.y	3f8a27f9e27b	5d14b1ea	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2021/12/12 21:58	linux-4.19.y	3f8a27f9e27b	49ca1f59	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2021/12/12 16:59	linux-4.19.y	3f8a27f9e27b	49ca1f59	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net
2021/12/11 19:55	linux-4.19.y	3f8a27f9e27b	49ca1f59	.config	console log	report	info	ci2-linux-4-19	INFO: task hung in ip_tunnel_init_net

Crashes (18):

Assets (help?)

2022/01/20 09:21

linux-4.19.y