Warning: Permanently added '10.128.1.53' (ECDSA) to the list of known hosts. 2021/07/13 19:18:27 parsed 1 programs syzkaller login: [ 40.192433][ T4396] [ 40.194893][ T4396] ====================================================== [ 40.201903][ T4396] WARNING: possible circular locking dependency detected [ 40.208905][ T4396] 5.14.0-rc1-syzkaller #0 Not tainted [ 40.214258][ T4396] ------------------------------------------------------ [ 40.221265][ T4396] syz-execprog/4396 is trying to acquire lock: [ 40.227402][ T4396] ffffffff87750940 (fs_reclaim){+.+.}-{0:0}, at: fs_reclaim_acquire+0xf7/0x160 [ 40.236392][ T4396] [ 40.236392][ T4396] but task is already holding lock: [ 40.243752][ T4396] ffff8881f684bee0 (lock#2){-.-.}-{2:2}, at: __alloc_pages_bulk+0x406/0x1600 [ 40.252528][ T4396] [ 40.252528][ T4396] which lock already depends on the new lock. [ 40.252528][ T4396] [ 40.262955][ T4396] [ 40.262955][ T4396] the existing dependency chain (in reverse order) is: [ 40.272217][ T4396] [ 40.272217][ T4396] -> #3 (lock#2){-.-.}-{2:2}: [ 40.279066][ T4396] get_page_from_freelist+0xc9b/0x28b0 [ 40.285051][ T4396] __alloc_pages+0x1b2/0x4e0 [ 40.290151][ T4396] alloc_pages+0x18c/0x2a0 [ 40.295073][ T4396] allocate_slab+0x32b/0x4c0 [ 40.300171][ T4396] ___slab_alloc+0x4ba/0x820 [ 40.305286][ T4396] __slab_alloc+0x68/0x80 [ 40.310136][ T4396] kmem_cache_alloc+0x339/0x360 [ 40.315500][ T4396] anon_vma_clone+0xe0/0x5f0 [ 40.320621][ T4396] anon_vma_fork+0x82/0x630 [ 40.325639][ T4396] dup_mm+0x8a6/0x11e0 [ 40.330240][ T4396] copy_process+0x5ec0/0x7040 [ 40.335435][ T4396] kernel_clone+0xe7/0xa70 [ 40.340476][ T4396] __do_sys_clone+0xc8/0x110 [ 40.345589][ T4396] do_syscall_64+0x35/0xb0 [ 40.350520][ T4396] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 40.356938][ T4396] [ 40.356938][ T4396] -> #2 (&anon_vma->rwsem){++++}-{3:3}: [ 40.364665][ T4396] down_write+0x92/0x150 [ 40.369427][ T4396] __vma_adjust+0x2f5/0x26b0 [ 40.374531][ T4396] __split_vma+0x2b3/0x550 [ 40.379468][ T4396] split_vma+0x95/0xd0 [ 40.384047][ T4396] mprotect_fixup+0x6eb/0x8e0 [ 40.389242][ T4396] do_mprotect_pkey+0x558/0x9a0 [ 40.394598][ T4396] __x64_sys_mprotect+0x74/0xb0 [ 40.399967][ T4396] do_syscall_64+0x35/0xb0 [ 40.404891][ T4396] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 40.411311][ T4396] [ 40.411311][ T4396] -> #1 (&mapping->i_mmap_rwsem){+.+.}-{3:3}: [ 40.419542][ T4396] down_write+0x92/0x150 [ 40.424324][ T4396] dma_resv_lockdep+0x348/0x540 [ 40.429700][ T4396] do_one_initcall+0x103/0x5d0 [ 40.434977][ T4396] kernel_init_freeable+0x6ae/0x737 [ 40.440698][ T4396] kernel_init+0x1a/0x1d0 [ 40.445545][ T4396] ret_from_fork+0x1f/0x30 [ 40.450493][ T4396] [ 40.450493][ T4396] -> #0 (fs_reclaim){+.+.}-{0:0}: [ 40.457694][ T4396] __lock_acquire+0x2a07/0x54a0 [ 40.463064][ T4396] lock_acquire+0x19d/0x4d0 [ 40.468090][ T4396] fs_reclaim_acquire+0x117/0x160 [ 40.473649][ T4396] prepare_alloc_pages+0x155/0x4f0 [ 40.479296][ T4396] __alloc_pages+0x12f/0x4e0 [ 40.484417][ T4396] alloc_pages+0x18c/0x2a0 [ 40.489362][ T4396] stack_depot_save+0x39d/0x4e0 [ 40.494736][ T4396] save_stack+0x102/0x1d0 [ 40.499604][ T4396] __set_page_owner+0x50/0x290 [ 40.504890][ T4396] __alloc_pages_bulk+0x7ed/0x1600 [ 40.510545][ T4396] __vmalloc_node_range+0x39d/0x960 [ 40.516260][ T4396] vmalloc_user+0x67/0x80 [ 40.521115][ T4396] kcov_mmap+0x2b/0x140 [ 40.525817][ T4396] mmap_region+0xb55/0x1610 [ 40.530858][ T4396] do_mmap+0x86e/0x1180 [ 40.535567][ T4396] vm_mmap_pgoff+0x1b7/0x280 [ 40.540693][ T4396] ksys_mmap_pgoff+0x4a8/0x620 [ 40.545978][ T4396] do_syscall_64+0x35/0xb0 [ 40.551190][ T4396] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 40.557603][ T4396] [ 40.557603][ T4396] other info that might help us debug this: [ 40.557603][ T4396] [ 40.567819][ T4396] Chain exists of: [ 40.567819][ T4396] fs_reclaim --> &anon_vma->rwsem --> lock#2 [ 40.567819][ T4396] [ 40.579801][ T4396] Possible unsafe locking scenario: [ 40.579801][ T4396] [ 40.587243][ T4396] CPU0 CPU1 [ 40.592595][ T4396] ---- ---- [ 40.597955][ T4396] lock(lock#2); [ 40.601576][ T4396] lock(&anon_vma->rwsem); [ 40.608582][ T4396] lock(lock#2); [ 40.614736][ T4396] lock(fs_reclaim); [ 40.618712][ T4396] [ 40.618712][ T4396] *** DEADLOCK *** [ 40.618712][ T4396] [ 40.626858][ T4396] 2 locks held by syz-execprog/4396: [ 40.632123][ T4396] #0: ffff8881195a7828 (&mm->mmap_lock#2){++++}-{3:3}, at: vm_mmap_pgoff+0x15c/0x280 [ 40.641684][ T4396] #1: ffff8881f684bee0 (lock#2){-.-.}-{2:2}, at: __alloc_pages_bulk+0x406/0x1600 [ 40.650913][ T4396] [ 40.650913][ T4396] stack backtrace: [ 40.656796][ T4396] CPU: 0 PID: 4396 Comm: syz-execprog Not tainted 5.14.0-rc1-syzkaller #0 [ 40.665280][ T4396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.675323][ T4396] Call Trace: [ 40.678595][ T4396] dump_stack_lvl+0xcd/0x134 [ 40.683191][ T4396] check_noncircular+0x25f/0x2e0 [ 40.688119][ T4396] ? deref_stack_reg+0x150/0x150 [ 40.693044][ T4396] ? print_circular_bug+0x1e0/0x1e0 [ 40.698233][ T4396] ? __unwind_start+0x51b/0x800 [ 40.703084][ T4396] ? create_prof_cpu_mask+0x20/0x20 [ 40.708276][ T4396] ? lockdep_lock+0xba/0x200 [ 40.712866][ T4396] ? call_rcu_zapped+0xb0/0xb0 [ 40.717630][ T4396] __lock_acquire+0x2a07/0x54a0 [ 40.722463][ T4396] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 40.728435][ T4396] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 40.734668][ T4396] ? register_early_stack+0xb0/0xb0 [ 40.739877][ T4396] lock_acquire+0x19d/0x4d0 [ 40.744376][ T4396] ? fs_reclaim_acquire+0xf7/0x160 [ 40.749562][ T4396] ? lock_release+0x6e0/0x6e0 [ 40.754241][ T4396] ? lock_chain_count+0x20/0x20 [ 40.759076][ T4396] ? mark_lock+0xef/0x17b0 [ 40.763478][ T4396] ? deref_stack_reg+0xee/0x150 [ 40.768315][ T4396] fs_reclaim_acquire+0x117/0x160 [ 40.773325][ T4396] ? fs_reclaim_acquire+0xf7/0x160 [ 40.778439][ T4396] prepare_alloc_pages+0x155/0x4f0 [ 40.783555][ T4396] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 40.789864][ T4396] __alloc_pages+0x12f/0x4e0 [ 40.794456][ T4396] ? __alloc_pages_slowpath.constprop.0+0x20e0/0x20e0 [ 40.801210][ T4396] ? __unwind_start+0x51b/0x800 [ 40.806068][ T4396] ? __kernel_text_address+0x5a/0xc0 [ 40.811344][ T4396] alloc_pages+0x18c/0x2a0 [ 40.815751][ T4396] stack_depot_save+0x39d/0x4e0 [ 40.820611][ T4396] save_stack+0x102/0x1d0 [ 40.824927][ T4396] ? register_early_stack+0xb0/0xb0 [ 40.830201][ T4396] ? __alloc_pages_bulk+0x7ed/0x1600 [ 40.835482][ T4396] ? __vmalloc_node_range+0x39d/0x960 [ 40.841028][ T4396] ? vmalloc_user+0x67/0x80 [ 40.845523][ T4396] ? kcov_mmap+0x2b/0x140 [ 40.849941][ T4396] ? mmap_region+0xb55/0x1610 [ 40.854634][ T4396] ? do_mmap+0x86e/0x1180 [ 40.859053][ T4396] ? vm_mmap_pgoff+0x1b7/0x280 [ 40.863831][ T4396] ? ksys_mmap_pgoff+0x4a8/0x620 [ 40.868881][ T4396] ? do_syscall_64+0x35/0xb0 [ 40.873546][ T4396] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 40.879638][ T4396] ? lock_release+0x6e0/0x6e0 [ 40.884316][ T4396] __set_page_owner+0x50/0x290 [ 40.889069][ T4396] ? post_alloc_hook+0x145/0x1e0 [ 40.894005][ T4396] __alloc_pages_bulk+0x7ed/0x1600 [ 40.899098][ T4396] ? __alloc_pages+0x4e0/0x4e0 [ 40.903845][ T4396] ? rwlock_bug.part.0+0x90/0x90 [ 40.908772][ T4396] ? rcu_read_lock_sched_held+0x3a/0x70 [ 40.914302][ T4396] ? trace_kmalloc_node+0x32/0xe0 [ 40.919320][ T4396] __vmalloc_node_range+0x39d/0x960 [ 40.924545][ T4396] ? vfree_atomic+0xe0/0xe0 [ 40.929057][ T4396] ? kcov_mmap+0x2b/0x140 [ 40.933388][ T4396] vmalloc_user+0x67/0x80 [ 40.937725][ T4396] ? kcov_mmap+0x2b/0x140 [ 40.942046][ T4396] kcov_mmap+0x2b/0x140 [ 40.946211][ T4396] ? memset+0x20/0x40 [ 40.950191][ T4396] mmap_region+0xb55/0x1610 [ 40.954699][ T4396] do_mmap+0x86e/0x1180 [ 40.958856][ T4396] vm_mmap_pgoff+0x1b7/0x280 [ 40.963445][ T4396] ? randomize_stack_top+0x100/0x100 [ 40.968723][ T4396] ? __fget_files+0x246/0x3e0 [ 40.973407][ T4396] ksys_mmap_pgoff+0x4a8/0x620 [ 40.978169][ T4396] ? mlock_future_check+0x120/0x120 [ 40.983385][ T4396] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 40.989383][ T4396] ? syscall_enter_from_user_mode+0x21/0x70 [ 40.995281][ T4396] do_syscall_64+0x35/0xb0 [ 40.999694][ T4396] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 41.005592][ T4396] RIP: 0033:0x4b132a [ 41.009488][ T4396] Code: e8 db 57 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 4c 8b 54 24 28 4c 8b 44 24 30 4c 8b 4c 24 38 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 40 ff ff ff ff 48 c7 44 24 48 [ 41.029099][ T4396] RSP: 002b:000000c000663a10 EFLAGS: 00000202 ORIG_RAX: 0000000000000009 [ 41.037509][ T4396] RAX: ffffffffffffffda RBX: 000000c000020800 RCX: 00000000004b132a [ 41.045473][ T4396] RDX: 0000000000000003 RSI: 0000000000080000 RDI: 0000000000000000 [ 41.053441][ T4396] RBP: 000000c000663a70 R08: 0000000000000006 R09: 0000000000000000 [ 41.061436][ T4396] R10: 0000000000000001 R11: 0000000000000202 R12: 0000000000727f1a [ 41.069414][ T4396] R13: 000000000000018e R14: 0000000000000200 R15: 0000000000000100 [ 41.077411][ T4396] BUG: sleeping function called from invalid context at mm/page_alloc.c:5167 [ 41.086156][ T4396] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 4396, name: syz-execprog [ 41.095362][ T4396] INFO: lockdep is turned off. [ 41.100109][ T4396] irq event stamp: 8124 [ 41.104240][ T4396] hardirqs last enabled at (8123): [] _raw_spin_unlock_irqrestore+0x42/0x50 [ 41.114572][ T4396] hardirqs last disabled at (8124): [] __alloc_pages_bulk+0xebb/0x1600 [ 41.124386][ T4396] softirqs last enabled at (7376): [] __irq_exit_rcu+0x117/0x160 [ 41.133747][ T4396] softirqs last disabled at (7335): [] __irq_exit_rcu+0x117/0x160 [ 41.143125][ T4396] CPU: 0 PID: 4396 Comm: syz-execprog Not tainted 5.14.0-rc1-syzkaller #0 [ 41.151725][ T4396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.161963][ T4396] Call Trace: [ 41.165239][ T4396] dump_stack_lvl+0xcd/0x134 [ 41.169823][ T4396] ___might_sleep.cold+0x141/0x16f [ 41.174939][ T4396] prepare_alloc_pages+0x32d/0x4f0 [ 41.180211][ T4396] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 41.186279][ T4396] __alloc_pages+0x12f/0x4e0 [ 41.190864][ T4396] ? __alloc_pages_slowpath.constprop.0+0x20e0/0x20e0 [ 41.197707][ T4396] ? __unwind_start+0x51b/0x800 [ 41.202560][ T4396] ? __kernel_text_address+0x5a/0xc0 [ 41.207853][ T4396] alloc_pages+0x18c/0x2a0 [ 41.212257][ T4396] stack_depot_save+0x39d/0x4e0 [ 41.217097][ T4396] save_stack+0x102/0x1d0 [ 41.221432][ T4396] ? register_early_stack+0xb0/0xb0 [ 41.226639][ T4396] ? __alloc_pages_bulk+0x7ed/0x1600 [ 41.231917][ T4396] ? __vmalloc_node_range+0x39d/0x960 [ 41.237289][ T4396] ? vmalloc_user+0x67/0x80 [ 41.241795][ T4396] ? kcov_mmap+0x2b/0x140 [ 41.246130][ T4396] ? mmap_region+0xb55/0x1610 [ 41.250797][ T4396] ? do_mmap+0x86e/0x1180 [ 41.255112][ T4396] ? vm_mmap_pgoff+0x1b7/0x280 [ 41.259876][ T4396] ? ksys_mmap_pgoff+0x4a8/0x620 [ 41.264803][ T4396] ? do_syscall_64+0x35/0xb0 [ 41.269383][ T4396] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 41.275448][ T4396] ? lock_release+0x6e0/0x6e0 [ 41.280136][ T4396] __set_page_owner+0x50/0x290 [ 41.284901][ T4396] ? post_alloc_hook+0x145/0x1e0 [ 41.289848][ T4396] __alloc_pages_bulk+0x7ed/0x1600 [ 41.294968][ T4396] ? __alloc_pages+0x4e0/0x4e0 [ 41.299726][ T4396] ? rwlock_bug.part.0+0x90/0x90 [ 41.304672][ T4396] ? rcu_read_lock_sched_held+0x3a/0x70 [ 41.310215][ T4396] ? trace_kmalloc_node+0x32/0xe0 [ 41.315230][ T4396] __vmalloc_node_range+0x39d/0x960 [ 41.320422][ T4396] ? vfree_atomic+0xe0/0xe0 [ 41.324917][ T4396] ? kcov_mmap+0x2b/0x140 [ 41.329277][ T4396] vmalloc_user+0x67/0x80 [ 41.333603][ T4396] ? kcov_mmap+0x2b/0x140 [ 41.337923][ T4396] kcov_mmap+0x2b/0x140 [ 41.342065][ T4396] ? memset+0x20/0x40 [ 41.346065][ T4396] mmap_region+0xb55/0x1610 [ 41.350570][ T4396] do_mmap+0x86e/0x1180 [ 41.354730][ T4396] vm_mmap_pgoff+0x1b7/0x280 [ 41.359320][ T4396] ? randomize_stack_top+0x100/0x100 [ 41.364595][ T4396] ? __fget_files+0x246/0x3e0 [ 41.369258][ T4396] ksys_mmap_pgoff+0x4a8/0x620 [ 41.374134][ T4396] ? mlock_future_check+0x120/0x120 [ 41.379357][ T4396] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 41.385447][ T4396] ? syscall_enter_from_user_mode+0x21/0x70 [ 41.391336][ T4396] do_syscall_64+0x35/0xb0 [ 41.395746][ T4396] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 41.401652][ T4396] RIP: 0033:0x4b132a [ 41.405731][ T4396] Code: e8 db 57 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 4c 8b 54 24 28 4c 8b 44 24 30 4c 8b 4c 24 38 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 40 ff ff ff ff 48 c7 44 24 48 [ 41.425713][ T4396] RSP: 002b:000000c000663a10 EFLAGS: 00000202 ORIG_RAX: 0000000000000009 [ 41.434296][ T4396] RAX: ffffffffffffffda RBX: 000000c000020800 RCX: 00000000004b132a [ 41.442278][ T4396] RDX: 0000000000000003 RSI: 0000000000080000 RDI: 0000000000000000 [ 41.450491][ T4396] RBP: 000000c000663a70 R08: 0000000000000006 R09: 0000000000000000 [ 41.458464][ T4396] R10: 0000000000000001 R11: 0000000000000202 R12: 0000000000727f1a [ 41.466434][ T4396] R13: 000000000000018e R14: 0000000000000200 R15: 0000000000000100 2021/07/13 19:18:30 executed programs: 0 [ 43.590011][ T4408] cgroup: Unknown subsys name 'perf_event' [ 43.597057][ T4408] cgroup: Unknown subsys name 'net_cls' [ 43.616361][ T4409] cgroup: Unknown subsys name 'perf_event' [ 43.623645][ T4409] cgroup: Unknown subsys name 'net_cls' [ 43.636125][ T4412] cgroup: Unknown subsys name 'perf_event' [ 43.643086][ T4412] cgroup: Unknown subsys name 'net_cls' [ 43.694908][ T4419] cgroup: Unknown subsys name 'perf_event' [ 43.720193][ T4419] cgroup: Unknown subsys name 'net_cls' [ 43.726151][ T4424] cgroup: Unknown subsys name 'perf_event' [ 43.740494][ T4424] cgroup: Unknown subsys name 'net_cls' [ 43.741853][ T4426] cgroup: Unknown subsys name 'perf_event' [ 43.790508][ T4426] cgroup: Unknown subsys name 'net_cls'