[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   66.272934][   T27] audit: type=1800 audit(1583997571.176:25): pid=8541 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   66.303109][   T27] audit: type=1800 audit(1583997571.186:26): pid=8541 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   66.325672][   T27] audit: type=1800 audit(1583997571.186:27): pid=8541 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.217' (ECDSA) to the list of known hosts.
2020/03/12 07:19:42 fuzzer started
syzkaller login: [   77.254017][ T8694] check_preemption_disabled: 3 callbacks suppressed
[   77.254031][ T8694] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8694
[   77.269761][ T8694] caller is __mod_memcg_state+0x27/0x1a0
[   77.275437][ T8694] CPU: 0 PID: 8694 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   77.284881][ T8694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   77.294928][ T8694] Call Trace:
[   77.298490][ T8694]  dump_stack+0x188/0x20d
[   77.302820][ T8694]  __this_cpu_preempt_check.cold+0x84/0x90
[   77.308618][ T8694]  __mod_memcg_state+0x27/0x1a0
[   77.313471][ T8694]  split_huge_page_to_list+0x124b/0x3380
[   77.319108][ T8694]  ? mark_held_locks+0xe0/0xe0
[   77.323890][ T8694]  ? lock_downgrade+0x7f0/0x7f0
[   77.328739][ T8694]  ? can_split_huge_page+0x480/0x480
[   77.334022][ T8694]  ? pmd_val+0x7c/0xf0
[   77.338093][ T8694]  ? pmd_pfn+0x125/0x1c0
[   77.342334][ T8694]  ? enabled_store+0x190/0x190
[   77.347188][ T8694]  madvise_free_huge_pmd+0x873/0xb90
[   77.352476][ T8694]  madvise_free_pte_range+0x6ff/0x2650
[   77.357934][ T8694]  ? mem_cgroup_uncharge+0xf0/0xf0
[   77.363046][ T8694]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   77.369718][ T8694]  __walk_page_range+0xcfb/0x2070
[   77.375030][ T8694]  ? walk_page_test+0x78/0x180
[   77.379790][ T8694]  walk_page_range+0x1bd/0x3a0
[   77.384552][ T8694]  ? __walk_page_range+0x2070/0x2070
[   77.389836][ T8694]  ? madvise_free_single_vma+0x2c1/0x550
[   77.395474][ T8694]  madvise_free_single_vma+0x384/0x550
[   77.400928][ T8694]  ? madvise_pageout+0x3b0/0x3b0
[   77.405953][ T8694]  ? lock_acquire+0x197/0x420
[   77.410636][ T8694]  ? userfaultfd_remove+0xf0/0x2b0
[   77.415759][ T8694]  ? vmacache_find+0x62/0x300
[   77.420444][ T8694]  ? find_vma+0x2b/0x170
[   77.424714][ T8694]  do_madvise+0x5ba/0x1b80
[   77.429148][ T8694]  ? lock_downgrade+0x7f0/0x7f0
[   77.434014][ T8694]  ? madvise_free_pte_range+0x2650/0x2650
[   77.439741][ T8694]  ? ktime_get+0x1f8/0x2f0
[   77.444162][ T8694]  ? __x64_sys_futex+0x376/0x4f0
[   77.449108][ T8694]  ? switch_fpu_return+0x1db/0x4b0
[   77.454213][ T8694]  ? fpregs_mark_activate+0x320/0x320
[   77.459584][ T8694]  ? __x64_sys_madvise+0xae/0x120
[   77.464602][ T8694]  ? trace_hardirqs_on+0x55/0x220
[   77.469705][ T8694]  __x64_sys_madvise+0xae/0x120
[   77.475013][ T8694]  do_syscall_64+0xf6/0x7d0
[   77.479526][ T8694]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   77.485433][ T8694] RIP: 0033:0x460bf7
[   77.489332][ T8694] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   77.509029][ T8694] RSP: 002b:000000c0000e1e70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   77.517443][ T8694] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   77.525418][ T8694] RDX: 0000000000000008 RSI: 0000000000012000 RDI: 000000c00025e000
[   77.533392][ T8694] RBP: 000000c0000e1eb0 R08: 000000c000200000 R09: 000000c000270000
[   77.541365][ T8694] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000002
[   77.550806][ T8694] R13: 00007f67f876c6d0 R14: 0000000000000004 R15: 00000000000000df
[   77.558932][ T8694] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8694
[   77.567832][ T8694] caller is __mod_memcg_state+0xca/0x1a0
[   77.573508][ T8694] CPU: 0 PID: 8694 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   77.582954][ T8694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   77.594563][ T8694] Call Trace:
[   77.597861][ T8694]  dump_stack+0x188/0x20d
[   77.602213][ T8694]  __this_cpu_preempt_check.cold+0x84/0x90
[   77.608014][ T8694]  __mod_memcg_state+0xca/0x1a0
[   77.612864][ T8694]  split_huge_page_to_list+0x124b/0x3380
[   77.618499][ T8694]  ? mark_held_locks+0xe0/0xe0
[   77.623261][ T8694]  ? lock_downgrade+0x7f0/0x7f0
[   77.628109][ T8694]  ? can_split_huge_page+0x480/0x480
[   77.633407][ T8694]  ? pmd_val+0x7c/0xf0
[   77.637471][ T8694]  ? pmd_pfn+0x125/0x1c0
[   77.641708][ T8694]  ? enabled_store+0x190/0x190
[   77.646478][ T8694]  madvise_free_huge_pmd+0x873/0xb90
[   77.651767][ T8694]  madvise_free_pte_range+0x6ff/0x2650
[   77.657225][ T8694]  ? mem_cgroup_uncharge+0xf0/0xf0
[   77.662333][ T8694]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   77.669007][ T8694]  __walk_page_range+0xcfb/0x2070
[   77.674043][ T8694]  ? walk_page_test+0x78/0x180
[   77.678803][ T8694]  walk_page_range+0x1bd/0x3a0
[   77.683568][ T8694]  ? __walk_page_range+0x2070/0x2070
[   77.688886][ T8694]  ? madvise_free_single_vma+0x2c1/0x550
[   77.694529][ T8694]  madvise_free_single_vma+0x384/0x550
[   77.700151][ T8694]  ? madvise_pageout+0x3b0/0x3b0
[   77.705099][ T8694]  ? lock_acquire+0x197/0x420
[   77.709790][ T8694]  ? userfaultfd_remove+0xf0/0x2b0
[   77.714938][ T8694]  ? vmacache_find+0x62/0x300
[   77.719632][ T8694]  ? find_vma+0x2b/0x170
[   77.723902][ T8694]  do_madvise+0x5ba/0x1b80
[   77.728353][ T8694]  ? lock_downgrade+0x7f0/0x7f0
[   77.733226][ T8694]  ? madvise_free_pte_range+0x2650/0x2650
[   77.738959][ T8694]  ? ktime_get+0x1f8/0x2f0
[   77.743384][ T8694]  ? __x64_sys_futex+0x376/0x4f0
[   77.748338][ T8694]  ? switch_fpu_return+0x1db/0x4b0
[   77.753490][ T8694]  ? fpregs_mark_activate+0x320/0x320
[   77.758964][ T8694]  ? __x64_sys_madvise+0xae/0x120
[   77.764125][ T8694]  ? trace_hardirqs_on+0x55/0x220
[   77.769153][ T8694]  __x64_sys_madvise+0xae/0x120
[   77.774191][ T8694]  do_syscall_64+0xf6/0x7d0
[   77.778700][ T8694]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   77.784603][ T8694] RIP: 0033:0x460bf7
[   77.788507][ T8694] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   77.808125][ T8694] RSP: 002b:000000c0000e1e70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   77.816563][ T8694] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   77.824543][ T8694] RDX: 0000000000000008 RSI: 0000000000012000 RDI: 000000c00025e000
[   77.832527][ T8694] RBP: 000000c0000e1eb0 R08: 000000c000200000 R09: 000000c000270000
[   77.840530][ T8694] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000002
[   77.848723][ T8694] R13: 00007f67f876c6d0 R14: 0000000000000004 R15: 00000000000000df
[   77.856841][ T8694] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8694
[   77.865936][ T8694] caller is __mod_memcg_state+0x87/0x1a0
[   77.871577][ T8694] CPU: 0 PID: 8694 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   77.881026][ T8694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   77.891086][ T8694] Call Trace:
[   77.894396][ T8694]  dump_stack+0x188/0x20d
[   77.898741][ T8694]  __this_cpu_preempt_check.cold+0x84/0x90
[   77.904570][ T8694]  __mod_memcg_state+0x87/0x1a0
[   77.909432][ T8694]  split_huge_page_to_list+0x124b/0x3380
[   77.915092][ T8694]  ? mark_held_locks+0xe0/0xe0
[   77.919866][ T8694]  ? lock_downgrade+0x7f0/0x7f0
[   77.924729][ T8694]  ? can_split_huge_page+0x480/0x480
[   77.930034][ T8694]  ? pmd_val+0x7c/0xf0
[   77.934115][ T8694]  ? pmd_pfn+0x125/0x1c0
[   77.938368][ T8694]  ? enabled_store+0x190/0x190
[   77.943151][ T8694]  madvise_free_huge_pmd+0x873/0xb90
[   77.948700][ T8694]  madvise_free_pte_range+0x6ff/0x2650
[   77.954191][ T8694]  ? mem_cgroup_uncharge+0xf0/0xf0
[   77.959308][ T8694]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   77.966009][ T8694]  __walk_page_range+0xcfb/0x2070
[   77.971065][ T8694]  ? walk_page_test+0x78/0x180
[   77.976092][ T8694]  walk_page_range+0x1bd/0x3a0
[   77.980859][ T8694]  ? __walk_page_range+0x2070/0x2070
[   77.986167][ T8694]  ? madvise_free_single_vma+0x2c1/0x550
[   77.991822][ T8694]  madvise_free_single_vma+0x384/0x550
[   77.997326][ T8694]  ? madvise_pageout+0x3b0/0x3b0
[   78.002292][ T8694]  ? lock_acquire+0x197/0x420
[   78.006975][ T8694]  ? userfaultfd_remove+0xf0/0x2b0
[   78.012110][ T8694]  ? vmacache_find+0x62/0x300
[   78.016912][ T8694]  ? find_vma+0x2b/0x170
[   78.021182][ T8694]  do_madvise+0x5ba/0x1b80
[   78.025701][ T8694]  ? lock_downgrade+0x7f0/0x7f0
[   78.030587][ T8694]  ? madvise_free_pte_range+0x2650/0x2650
[   78.036309][ T8694]  ? ktime_get+0x1f8/0x2f0
[   78.040748][ T8694]  ? __x64_sys_futex+0x376/0x4f0
[   78.045693][ T8694]  ? switch_fpu_return+0x1db/0x4b0
[   78.050899][ T8694]  ? fpregs_mark_activate+0x320/0x320
[   78.056288][ T8694]  ? __x64_sys_madvise+0xae/0x120
[   78.061334][ T8694]  ? trace_hardirqs_on+0x55/0x220
[   78.066367][ T8694]  __x64_sys_madvise+0xae/0x120
[   78.071245][ T8694]  do_syscall_64+0xf6/0x7d0
[   78.075763][ T8694]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   78.081667][ T8694] RIP: 0033:0x460bf7
[   78.085566][ T8694] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   78.105168][ T8694] RSP: 002b:000000c0000e1e70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   78.113574][ T8694] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   78.121539][ T8694] RDX: 0000000000000008 RSI: 0000000000012000 RDI: 000000c00025e000
[   78.129504][ T8694] RBP: 000000c0000e1eb0 R08: 000000c000200000 R09: 000000c000270000
[   78.137474][ T8694] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000002
[   78.145623][ T8694] R13: 00007f67f876c6d0 R14: 0000000000000004 R15: 00000000000000df
2020/03/12 07:19:44 connecting to host at 10.128.0.26:43827
2020/03/12 07:19:44 checking machine...
2020/03/12 07:19:44 checking revisions...
2020/03/12 07:19:44 testing simple program...
[   79.383785][ T8707] IPVS: ftp: loaded support on port[0] = 21
2020/03/12 07:19:44 building call list...
[   79.493319][ T8712] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8712
[   79.502312][ T8712] caller is __mod_memcg_state+0x27/0x1a0
[   79.508116][ T8712] CPU: 0 PID: 8712 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   79.517777][ T8712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   79.528024][ T8712] Call Trace:
[   79.531338][ T8712]  dump_stack+0x188/0x20d
[   79.535689][ T8712]  __this_cpu_preempt_check.cold+0x84/0x90
[   79.541598][ T8712]  __mod_memcg_state+0x27/0x1a0
[   79.546565][ T8712]  split_huge_page_to_list+0x124b/0x3380
[   79.552416][ T8712]  ? mark_held_locks+0xe0/0xe0
[   79.557890][ T8712]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   79.563356][ T8712]  ? can_split_huge_page+0x480/0x480
[   79.568915][ T8712]  ? pmd_val+0x7c/0xf0
[   79.573596][ T8712]  ? pmd_pfn+0x125/0x1c0
[   79.577877][ T8712]  ? enabled_store+0x190/0x190
[   79.582637][ T8712]  madvise_free_huge_pmd+0x873/0xb90
[   79.588005][ T8712]  madvise_free_pte_range+0x6ff/0x2650
[   79.593456][ T8712]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   79.601675][ T8712]  __walk_page_range+0xcfb/0x2070
[   79.607262][ T8712]  ? walk_page_test+0x78/0x180
[   79.612859][ T8712]  walk_page_range+0x1bd/0x3a0
[   79.617746][ T8712]  ? __walk_page_range+0x2070/0x2070
[   79.623599][ T8712]  ? madvise_free_single_vma+0x2c1/0x550
[   79.630697][ T8712]  madvise_free_single_vma+0x384/0x550
[   79.636994][ T8712]  ? madvise_pageout+0x3b0/0x3b0
[   79.641929][ T8712]  ? lock_acquire+0x197/0x420
[   79.646614][ T8712]  ? userfaultfd_remove+0xf0/0x2b0
[   79.652133][ T8712]  ? vmacache_find+0x62/0x300
[   79.656794][ T8712]  ? vmacache_update+0xce/0x140
[   79.661890][ T8712]  ? find_vma+0x2b/0x170
[   79.667153][ T8712]  do_madvise+0x5ba/0x1b80
[   79.671781][ T8712]  ? unuse_pde+0x2c/0x80
[   79.676415][ T8712]  ? madvise_free_pte_range+0x2650/0x2650
[   79.682964][ T8712]  ? wait_for_completion+0x3c0/0x3c0
[   79.689012][ T8712]  ? fput_many+0x2f/0x1a0
[   79.693388][ T8712]  ? ksys_read+0x19f/0x250
[   79.698180][ T8712]  ? kernel_write+0x120/0x120
[   79.703213][ T8712]  ? __x64_sys_madvise+0xae/0x120
[   79.711282][ T8712]  ? trace_hardirqs_on+0x55/0x220
[   79.716364][ T8712]  __x64_sys_madvise+0xae/0x120
[   79.721818][ T8712]  do_syscall_64+0xf6/0x7d0
[   79.726548][ T8712]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   79.732922][ T8712] RIP: 0033:0x460bf7
[   79.737398][ T8712] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   79.757848][ T8712] RSP: 002b:000000c0000e7c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   79.767162][ T8712] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   79.775139][ T8712] RDX: 0000000000000008 RSI: 0000000000008000 RDI: 000000c000410000
[   79.783099][ T8712] RBP: 000000c0000e7c90 R08: 000000c000400000 R09: 000000c000418000
[   79.791936][ T8712] R10: 000000000001fe00 R11: 0000000000000246 R12: 00000000004338c0
[   79.800862][ T8712] R13: 0000000000000000 R14: 0000000000ac7968 R15: 0000000000000000
[   79.808955][ T8712] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8712
[   79.817875][ T8712] caller is __mod_memcg_state+0xca/0x1a0
[   79.823539][ T8712] CPU: 0 PID: 8712 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   79.834558][ T8712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   79.844797][ T8712] Call Trace:
[   79.848273][ T8712]  dump_stack+0x188/0x20d
[   79.852653][ T8712]  __this_cpu_preempt_check.cold+0x84/0x90
[   79.858579][ T8712]  __mod_memcg_state+0xca/0x1a0
[   79.863904][ T8712]  split_huge_page_to_list+0x124b/0x3380
[   79.870632][ T8712]  ? mark_held_locks+0xe0/0xe0
[   79.875600][ T8712]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   79.881295][ T8712]  ? can_split_huge_page+0x480/0x480
[   79.886943][ T8712]  ? pmd_val+0x7c/0xf0
[   79.891950][ T8712]  ? pmd_pfn+0x125/0x1c0
[   79.896895][ T8712]  ? enabled_store+0x190/0x190
[   79.901765][ T8712]  madvise_free_huge_pmd+0x873/0xb90
[   79.907154][ T8712]  madvise_free_pte_range+0x6ff/0x2650
[   79.912619][ T8712]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   79.919482][ T8712]  __walk_page_range+0xcfb/0x2070
[   79.924563][ T8712]  ? walk_page_test+0x78/0x180
[   79.929752][ T8712]  walk_page_range+0x1bd/0x3a0
[   79.934686][ T8712]  ? __walk_page_range+0x2070/0x2070
[   79.941068][ T8712]  ? madvise_free_single_vma+0x2c1/0x550
[   79.946996][ T8712]  madvise_free_single_vma+0x384/0x550
[   79.952767][ T8712]  ? madvise_pageout+0x3b0/0x3b0
[   79.957702][ T8712]  ? lock_acquire+0x197/0x420
[   79.962391][ T8712]  ? userfaultfd_remove+0xf0/0x2b0
[   79.967519][ T8712]  ? vmacache_find+0x62/0x300
[   79.972659][ T8712]  ? vmacache_update+0xce/0x140
[   79.978306][ T8712]  ? find_vma+0x2b/0x170
[   79.982561][ T8712]  do_madvise+0x5ba/0x1b80
[   79.986968][ T8712]  ? unuse_pde+0x2c/0x80
[   79.991729][ T8712]  ? madvise_free_pte_range+0x2650/0x2650
[   79.997430][ T8712]  ? wait_for_completion+0x3c0/0x3c0
[   80.002721][ T8712]  ? fput_many+0x2f/0x1a0
[   80.007044][ T8712]  ? ksys_read+0x19f/0x250
[   80.011445][ T8712]  ? kernel_write+0x120/0x120
[   80.016368][ T8712]  ? __x64_sys_madvise+0xae/0x120
[   80.021509][ T8712]  ? trace_hardirqs_on+0x55/0x220
[   80.026526][ T8712]  __x64_sys_madvise+0xae/0x120
[   80.031364][ T8712]  do_syscall_64+0xf6/0x7d0
[   80.035865][ T8712]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   80.041753][ T8712] RIP: 0033:0x460bf7
[   80.045641][ T8712] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   80.065346][ T8712] RSP: 002b:000000c0000e7c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   80.073750][ T8712] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   80.081825][ T8712] RDX: 0000000000000008 RSI: 0000000000008000 RDI: 000000c000410000
[   80.089796][ T8712] RBP: 000000c0000e7c90 R08: 000000c000400000 R09: 000000c000418000
[   80.097891][ T8712] R10: 000000000001fe00 R11: 0000000000000246 R12: 00000000004338c0
[   80.105859][ T8712] R13: 0000000000000000 R14: 0000000000ac7968 R15: 0000000000000000
[   80.113902][ T8712] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8712
[   80.123084][ T8712] caller is __mod_memcg_state+0x87/0x1a0
[   80.128712][ T8712] CPU: 0 PID: 8712 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   80.138152][ T8712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   80.148208][ T8712] Call Trace:
[   80.151511][ T8712]  dump_stack+0x188/0x20d
[   80.156018][ T8712]  __this_cpu_preempt_check.cold+0x84/0x90
[   80.161821][ T8712]  __mod_memcg_state+0x87/0x1a0
[   80.166691][ T8712]  split_huge_page_to_list+0x124b/0x3380
[   80.172503][ T8712]  ? mark_held_locks+0xe0/0xe0
[   80.177316][ T8712]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   80.182898][ T8712]  ? can_split_huge_page+0x480/0x480
[   80.188194][ T8712]  ? pmd_val+0x7c/0xf0
[   80.192351][ T8712]  ? pmd_pfn+0x125/0x1c0
[   80.196600][ T8712]  ? enabled_store+0x190/0x190
[   80.201446][ T8712]  madvise_free_huge_pmd+0x873/0xb90
[   80.206756][ T8712]  madvise_free_pte_range+0x6ff/0x2650
[   80.212223][ T8712]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   80.218913][ T8712]  __walk_page_range+0xcfb/0x2070
[   80.223939][ T8712]  ? walk_page_test+0x78/0x180
[   80.228692][ T8712]  walk_page_range+0x1bd/0x3a0
[   80.233475][ T8712]  ? __walk_page_range+0x2070/0x2070
[   80.238741][ T8712]  ? madvise_free_single_vma+0x2c1/0x550
[   80.244385][ T8712]  madvise_free_single_vma+0x384/0x550
[   80.249823][ T8712]  ? madvise_pageout+0x3b0/0x3b0
[   80.254737][ T8712]  ? lock_acquire+0x197/0x420
[   80.259400][ T8712]  ? userfaultfd_remove+0xf0/0x2b0
[   80.264491][ T8712]  ? vmacache_find+0x62/0x300
[   80.269162][ T8712]  ? vmacache_update+0xce/0x140
[   80.274002][ T8712]  ? find_vma+0x2b/0x170
[   80.278243][ T8712]  do_madvise+0x5ba/0x1b80
[   80.282647][ T8712]  ? unuse_pde+0x2c/0x80
[   80.286974][ T8712]  ? madvise_free_pte_range+0x2650/0x2650
[   80.292672][ T8712]  ? wait_for_completion+0x3c0/0x3c0
[   80.297939][ T8712]  ? fput_many+0x2f/0x1a0
[   80.302247][ T8712]  ? ksys_read+0x19f/0x250
[   80.306640][ T8712]  ? kernel_write+0x120/0x120
[   80.311300][ T8712]  ? __x64_sys_madvise+0xae/0x120
[   80.316309][ T8712]  ? trace_hardirqs_on+0x55/0x220
[   80.321329][ T8712]  __x64_sys_madvise+0xae/0x120
[   80.326161][ T8712]  do_syscall_64+0xf6/0x7d0
[   80.330649][ T8712]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   80.336537][ T8712] RIP: 0033:0x460bf7
[   80.340423][ T8712] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   80.360025][ T8712] RSP: 002b:000000c0000e7c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   80.368440][ T8712] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   80.376397][ T8712] RDX: 0000000000000008 RSI: 0000000000008000 RDI: 000000c000410000
[   80.384356][ T8712] RBP: 000000c0000e7c90 R08: 000000c000400000 R09: 000000c000418000
[   80.392318][ T8712] R10: 000000000001fe00 R11: 0000000000000246 R12: 00000000004338c0
[   80.400294][ T8712] R13: 0000000000000000 R14: 0000000000ac7968 R15: 0000000000000000
[   80.424710][ T8712] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8712
[   80.433926][ T8712] caller is __mod_memcg_state+0x27/0x1a0
[   80.439943][ T8712] CPU: 1 PID: 8712 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   80.449407][ T8712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   80.459465][ T8712] Call Trace:
[   80.462781][ T8712]  dump_stack+0x188/0x20d
[   80.467129][ T8712]  __this_cpu_preempt_check.cold+0x84/0x90
[   80.472982][ T8712]  __mod_memcg_state+0x27/0x1a0
[   80.477838][ T8712]  split_huge_page_to_list+0x124b/0x3380
[   80.483475][ T8712]  ? mark_held_locks+0xe0/0xe0
[   80.488252][ T8712]  ? can_split_huge_page+0x480/0x480
[   80.493878][ T8712]  ? pmd_val+0x7c/0xf0
[   80.497945][ T8712]  ? pmd_pfn+0x125/0x1c0
[   80.502219][ T8712]  ? enabled_store+0x190/0x190
[   80.507118][ T8712]  madvise_free_huge_pmd+0x873/0xb90
[   80.512452][ T8712]  madvise_free_pte_range+0x6ff/0x2650
[   80.517938][ T8712]  ? kmem_cache_free+0x7f/0x320
[   80.522997][ T8712]  ? do_madvise+0xbb3/0x1b80
[   80.527595][ T8712]  ? __x64_sys_madvise+0xae/0x120
[   80.532629][ T8712]  ? mem_cgroup_uncharge+0xf0/0xf0
[   80.537742][ T8712]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   80.544434][ T8712]  __walk_page_range+0xcfb/0x2070
[   80.549471][ T8712]  ? walk_page_test+0x78/0x180
[   80.554236][ T8712]  walk_page_range+0x1bd/0x3a0
[   80.559180][ T8712]  ? __walk_page_range+0x2070/0x2070
[   80.564465][ T8712]  ? madvise_free_single_vma+0x2c1/0x550
[   80.570115][ T8712]  madvise_free_single_vma+0x384/0x550
[   80.575574][ T8712]  ? madvise_pageout+0x3b0/0x3b0
[   80.580515][ T8712]  ? lock_acquire+0x197/0x420
[   80.585196][ T8712]  ? userfaultfd_remove+0xf0/0x2b0
[   80.590304][ T8712]  ? vmacache_find+0x62/0x300
[   80.597349][ T8712]  ? vmacache_update+0xce/0x140
[   80.602293][ T8712]  ? find_vma+0x2b/0x170
[   80.606550][ T8712]  do_madvise+0x5ba/0x1b80
[   80.610978][ T8712]  ? unuse_pde+0x2c/0x80
[   80.615232][ T8712]  ? madvise_free_pte_range+0x2650/0x2650
[   80.620950][ T8712]  ? wait_for_completion+0x3c0/0x3c0
[   80.626328][ T8712]  ? fput_many+0x2f/0x1a0
[   80.631101][ T8712]  ? ksys_read+0x19f/0x250
[   80.635509][ T8712]  ? kernel_write+0x120/0x120
[   80.641316][ T8712]  ? __x64_sys_madvise+0xae/0x120
[   80.646335][ T8712]  ? trace_hardirqs_on+0x55/0x220
[   80.651351][ T8712]  __x64_sys_madvise+0xae/0x120
[   80.656386][ T8712]  do_syscall_64+0xf6/0x7d0
[   80.660892][ T8712]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   80.666869][ T8712] RIP: 0033:0x460bf7
[   80.670768][ T8712] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   80.690365][ T8712] RSP: 002b:000000c0000e7c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   80.698904][ T8712] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   80.706879][ T8712] RDX: 0000000000000008 RSI: 0000000000072000 RDI: 000000c0001d6000
[   80.714851][ T8712] RBP: 000000c0000e7c90 R08: 000000c000000000 R09: 000000c000248000
[   80.723189][ T8712] R10: 000000000003fe00 R11: 0000000000000246 R12: 000000000000001f
[   80.731170][ T8712] R13: 0000000000000000 R14: 0000000000ac7968 R15: 0000000000000000
[   80.739221][ T8712] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8712
[   80.748095][ T8712] caller is __mod_memcg_state+0xca/0x1a0
[   80.753747][ T8712] CPU: 1 PID: 8712 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   80.763186][ T8712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   80.773246][ T8712] Call Trace:
[   80.776542][ T8712]  dump_stack+0x188/0x20d
[   80.780876][ T8712]  __this_cpu_preempt_check.cold+0x84/0x90
[   80.786680][ T8712]  __mod_memcg_state+0xca/0x1a0
[   80.791532][ T8712]  split_huge_page_to_list+0x124b/0x3380
[   80.797179][ T8712]  ? mark_held_locks+0xe0/0xe0
[   80.801945][ T8712]  ? can_split_huge_page+0x480/0x480
[   80.807242][ T8712]  ? pmd_val+0x7c/0xf0
[   80.811313][ T8712]  ? pmd_pfn+0x125/0x1c0
[   80.815551][ T8712]  ? enabled_store+0x190/0x190
[   80.820331][ T8712]  madvise_free_huge_pmd+0x873/0xb90
[   80.825826][ T8712]  madvise_free_pte_range+0x6ff/0x2650
[   80.831287][ T8712]  ? kmem_cache_free+0x7f/0x320
[   80.836133][ T8712]  ? do_madvise+0xbb3/0x1b80
[   80.840723][ T8712]  ? __x64_sys_madvise+0xae/0x120
[   80.845745][ T8712]  ? mem_cgroup_uncharge+0xf0/0xf0
[   80.850852][ T8712]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   80.857523][ T8712]  __walk_page_range+0xcfb/0x2070
[   80.862563][ T8712]  ? walk_page_test+0x78/0x180
[   80.867325][ T8712]  walk_page_range+0x1bd/0x3a0
[   80.872106][ T8712]  ? __walk_page_range+0x2070/0x2070
[   80.877395][ T8712]  ? madvise_free_single_vma+0x2c1/0x550
[   80.883029][ T8712]  madvise_free_single_vma+0x384/0x550
[   80.888485][ T8712]  ? madvise_pageout+0x3b0/0x3b0
[   80.893431][ T8712]  ? lock_acquire+0x197/0x420
[   80.898111][ T8712]  ? userfaultfd_remove+0xf0/0x2b0
[   80.903231][ T8712]  ? vmacache_find+0x62/0x300
[   80.907907][ T8712]  ? vmacache_update+0xce/0x140
[   80.912750][ T8712]  ? find_vma+0x2b/0x170
[   80.916995][ T8712]  do_madvise+0x5ba/0x1b80
[   80.921636][ T8712]  ? unuse_pde+0x2c/0x80
[   80.925902][ T8712]  ? madvise_free_pte_range+0x2650/0x2650
[   80.931650][ T8712]  ? wait_for_completion+0x3c0/0x3c0
[   80.937747][ T8712]  ? fput_many+0x2f/0x1a0
[   80.942078][ T8712]  ? ksys_read+0x19f/0x250
[   80.946493][ T8712]  ? kernel_write+0x120/0x120
[   80.951171][ T8712]  ? __x64_sys_madvise+0xae/0x120
[   80.956189][ T8712]  ? trace_hardirqs_on+0x55/0x220
[   80.961216][ T8712]  __x64_sys_madvise+0xae/0x120
[   80.966078][ T8712]  do_syscall_64+0xf6/0x7d0
[   80.970583][ T8712]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   80.976471][ T8712] RIP: 0033:0x460bf7
[   80.980361][ T8712] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   80.999963][ T8712] RSP: 002b:000000c0000e7c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   81.008374][ T8712] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   81.016340][ T8712] RDX: 0000000000000008 RSI: 0000000000072000 RDI: 000000c0001d6000
[   81.024652][ T8712] RBP: 000000c0000e7c90 R08: 000000c000000000 R09: 000000c000248000
[   81.032704][ T8712] R10: 000000000003fe00 R11: 0000000000000246 R12: 000000000000001f
[   81.040757][ T8712] R13: 0000000000000000 R14: 0000000000ac7968 R15: 0000000000000000
[   81.048796][ T8712] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8712
[   81.057868][ T8712] caller is __mod_memcg_state+0x87/0x1a0
[   81.063535][ T8712] CPU: 1 PID: 8712 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   81.072984][ T8712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   81.083049][ T8712] Call Trace:
[   81.086375][ T8712]  dump_stack+0x188/0x20d
[   81.090741][ T8712]  __this_cpu_preempt_check.cold+0x84/0x90
[   81.096660][ T8712]  __mod_memcg_state+0x87/0x1a0
[   81.101542][ T8712]  split_huge_page_to_list+0x124b/0x3380
[   81.107217][ T8712]  ? mark_held_locks+0xe0/0xe0
[   81.112003][ T8712]  ? can_split_huge_page+0x480/0x480
[   81.117314][ T8712]  ? pmd_val+0x7c/0xf0
[   81.121397][ T8712]  ? pmd_pfn+0x125/0x1c0
[   81.125657][ T8712]  ? enabled_store+0x190/0x190
[   81.130428][ T8712]  madvise_free_huge_pmd+0x873/0xb90
[   81.135735][ T8712]  madvise_free_pte_range+0x6ff/0x2650
[   81.141651][ T8712]  ? kmem_cache_free+0x7f/0x320
[   81.146542][ T8712]  ? do_madvise+0xbb3/0x1b80
[   81.151128][ T8712]  ? __x64_sys_madvise+0xae/0x120
[   81.156162][ T8712]  ? mem_cgroup_uncharge+0xf0/0xf0
[   81.161269][ T8712]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   81.167941][ T8712]  __walk_page_range+0xcfb/0x2070
[   81.173172][ T8712]  ? walk_page_test+0x78/0x180
[   81.177948][ T8712]  walk_page_range+0x1bd/0x3a0
[   81.182729][ T8712]  ? __walk_page_range+0x2070/0x2070
[   81.188053][ T8712]  ? madvise_free_single_vma+0x2c1/0x550
[   81.193704][ T8712]  madvise_free_single_vma+0x384/0x550
[   81.199181][ T8712]  ? madvise_pageout+0x3b0/0x3b0
[   81.204313][ T8712]  ? lock_acquire+0x197/0x420
[   81.208996][ T8712]  ? userfaultfd_remove+0xf0/0x2b0
[   81.214131][ T8712]  ? vmacache_find+0x62/0x300
[   81.218811][ T8712]  ? vmacache_update+0xce/0x140
[   81.223707][ T8712]  ? find_vma+0x2b/0x170
[   81.227952][ T8712]  do_madvise+0x5ba/0x1b80
[   81.232759][ T8712]  ? unuse_pde+0x2c/0x80
[   81.237129][ T8712]  ? madvise_free_pte_range+0x2650/0x2650
[   81.242887][ T8712]  ? wait_for_completion+0x3c0/0x3c0
[   81.248535][ T8712]  ? fput_many+0x2f/0x1a0
[   81.252881][ T8712]  ? ksys_read+0x19f/0x250
[   81.257299][ T8712]  ? kernel_write+0x120/0x120
[   81.261995][ T8712]  ? __x64_sys_madvise+0xae/0x120
[   81.267055][ T8712]  ? trace_hardirqs_on+0x55/0x220
[   81.272102][ T8712]  __x64_sys_madvise+0xae/0x120
[   81.276968][ T8712]  do_syscall_64+0xf6/0x7d0
[   81.281505][ T8712]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   81.287412][ T8712] RIP: 0033:0x460bf7
[   81.291340][ T8712] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   81.314274][ T8712] RSP: 002b:000000c0000e7c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   81.322690][ T8712] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   81.330664][ T8712] RDX: 0000000000000008 RSI: 0000000000072000 RDI: 000000c0001d6000
[   81.338636][ T8712] RBP: 000000c0000e7c90 R08: 000000c000000000 R09: 000000c000248000
[   81.346691][ T8712] R10: 000000000003fe00 R11: 0000000000000246 R12: 000000000000001f
[   81.354659][ T8712] R13: 0000000000000000 R14: 0000000000ac7968 R15: 0000000000000000
[   81.542969][    T7] tipc: TX() has been purged, node left!
[   82.129560][ T8712] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8712
[   82.138669][ T8712] caller is __mod_memcg_state+0x27/0x1a0
[   82.144363][ T8712] CPU: 0 PID: 8712 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   82.154290][ T8712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   82.164369][ T8712] Call Trace:
[   82.167757][ T8712]  dump_stack+0x188/0x20d
[   82.172089][ T8712]  __this_cpu_preempt_check.cold+0x84/0x90
[   82.177882][ T8712]  __mod_memcg_state+0x27/0x1a0
[   82.182723][ T8712]  split_huge_page_to_list+0x124b/0x3380
[   82.188353][ T8712]  ? mark_held_locks+0xe0/0xe0
[   82.193103][ T8712]  ? release_pages+0x656/0x19b0
[   82.197953][ T8712]  ? can_split_huge_page+0x480/0x480
[   82.203213][ T8712]  ? pmd_val+0x7c/0xf0
[   82.207275][ T8712]  ? pmd_pfn+0x125/0x1c0
[   82.211515][ T8712]  ? enabled_store+0x190/0x190
[   82.216410][ T8712]  madvise_free_huge_pmd+0x873/0xb90
[   82.221689][ T8712]  madvise_free_pte_range+0x6ff/0x2650
[   82.227147][ T8712]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   82.233807][ T8712]  __walk_page_range+0xcfb/0x2070
[   82.238899][ T8712]  ? walk_page_test+0x78/0x180
[   82.243759][ T8712]  walk_page_range+0x1bd/0x3a0
[   82.248567][ T8712]  ? __walk_page_range+0x2070/0x2070
[   82.254275][ T8712]  ? madvise_free_single_vma+0x2c1/0x550
[   82.259916][ T8712]  madvise_free_single_vma+0x384/0x550
[   82.265464][ T8712]  ? madvise_pageout+0x3b0/0x3b0
[   82.270393][ T8712]  ? lock_acquire+0x197/0x420
[   82.275054][ T8712]  ? userfaultfd_remove+0xf0/0x2b0
[   82.280151][ T8712]  ? vmacache_find+0x62/0x300
[   82.284812][ T8712]  ? vmacache_update+0xce/0x140
[   82.289643][ T8712]  ? find_vma+0x2b/0x170
[   82.293878][ T8712]  do_madvise+0x5ba/0x1b80
[   82.298276][ T8712]  ? unuse_pde+0x2c/0x80
[   82.302515][ T8712]  ? madvise_free_pte_range+0x2650/0x2650
[   82.308241][ T8712]  ? __x64_sys_futex+0x376/0x4f0
[   82.313176][ T8712]  ? fput_many+0x2f/0x1a0
[   82.317513][ T8712]  ? do_futex+0x1b10/0x1b10
[   82.322000][ T8712]  ? ksys_read+0x19f/0x250
[   82.326415][ T8712]  ? kernel_write+0x120/0x120
[   82.331310][ T8712]  ? __x64_sys_madvise+0xae/0x120
[   82.336331][ T8712]  ? trace_hardirqs_on+0x55/0x220
[   82.341386][ T8712]  __x64_sys_madvise+0xae/0x120
[   82.346278][ T8712]  do_syscall_64+0xf6/0x7d0
[   82.350780][ T8712]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   82.356870][ T8712] RIP: 0033:0x460bf7
[   82.360766][ T8712] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
executing program
[   82.380363][ T8712] RSP: 002b:000000c0000e7c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   82.388821][ T8712] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   82.396923][ T8712] RDX: 0000000000000008 RSI: 0000000000200000 RDI: 000000c0005d0000
[   82.404886][ T8712] RBP: 000000c0000e7c90 R08: 000000c000400000 R09: 000000c0007d0000
[   82.412851][ T8712] R10: 00000000007ffe00 R11: 0000000000000246 R12: 0000000000000000
[   82.420812][ T8712] R13: 00007f67f876c6d0 R14: 0000000000000001 R15: 0000000000000001
[   82.428898][ T8712] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8712
[   82.438659][ T8712] caller is __mod_memcg_state+0xca/0x1a0
[   82.444313][ T8712] CPU: 0 PID: 8712 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   82.453769][ T8712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   82.463814][ T8712] Call Trace:
[   82.467443][ T8712]  dump_stack+0x188/0x20d
[   82.471759][ T8712]  __this_cpu_preempt_check.cold+0x84/0x90
[   82.477544][ T8712]  __mod_memcg_state+0xca/0x1a0
[   82.482374][ T8712]  split_huge_page_to_list+0x124b/0x3380
[   82.487999][ T8712]  ? mark_held_locks+0xe0/0xe0
[   82.492745][ T8712]  ? release_pages+0x656/0x19b0
[   82.497577][ T8712]  ? can_split_huge_page+0x480/0x480
[   82.502937][ T8712]  ? pmd_val+0x7c/0xf0
[   82.506996][ T8712]  ? pmd_pfn+0x125/0x1c0
[   82.511222][ T8712]  ? enabled_store+0x190/0x190
[   82.516487][ T8712]  madvise_free_huge_pmd+0x873/0xb90
[   82.521756][ T8712]  madvise_free_pte_range+0x6ff/0x2650
[   82.527201][ T8712]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   82.533857][ T8712]  __walk_page_range+0xcfb/0x2070
[   82.538863][ T8712]  ? walk_page_test+0x78/0x180
[   82.543602][ T8712]  walk_page_range+0x1bd/0x3a0
[   82.548360][ T8712]  ? __walk_page_range+0x2070/0x2070
[   82.553624][ T8712]  ? madvise_free_single_vma+0x2c1/0x550
[   82.559232][ T8712]  madvise_free_single_vma+0x384/0x550
[   82.564668][ T8712]  ? madvise_pageout+0x3b0/0x3b0
[   82.569593][ T8712]  ? lock_acquire+0x197/0x420
[   82.574258][ T8712]  ? userfaultfd_remove+0xf0/0x2b0
[   82.579353][ T8712]  ? vmacache_find+0x62/0x300
[   82.584035][ T8712]  ? vmacache_update+0xce/0x140
[   82.588893][ T8712]  ? find_vma+0x2b/0x170
[   82.593138][ T8712]  do_madvise+0x5ba/0x1b80
[   82.597663][ T8712]  ? unuse_pde+0x2c/0x80
[   82.601919][ T8712]  ? madvise_free_pte_range+0x2650/0x2650
[   82.608506][ T8712]  ? __x64_sys_futex+0x376/0x4f0
[   82.613820][ T8712]  ? fput_many+0x2f/0x1a0
[   82.618498][ T8712]  ? do_futex+0x1b10/0x1b10
[   82.622997][ T8712]  ? ksys_read+0x19f/0x250
[   82.627486][ T8712]  ? kernel_write+0x120/0x120
[   82.632627][ T8712]  ? __x64_sys_madvise+0xae/0x120
[   82.637804][ T8712]  ? trace_hardirqs_on+0x55/0x220
[   82.642935][ T8712]  __x64_sys_madvise+0xae/0x120
[   82.647790][ T8712]  do_syscall_64+0xf6/0x7d0
[   82.652290][ T8712]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   82.659118][ T8712] RIP: 0033:0x460bf7
[   82.663003][ T8712] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   82.683906][ T8712] RSP: 002b:000000c0000e7c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   82.692315][ T8712] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   82.700815][ T8712] RDX: 0000000000000008 RSI: 0000000000200000 RDI: 000000c0005d0000
[   82.709851][ T8712] RBP: 000000c0000e7c90 R08: 000000c000400000 R09: 000000c0007d0000
[   82.717901][ T8712] R10: 00000000007ffe00 R11: 0000000000000246 R12: 0000000000000000
[   82.726557][ T8712] R13: 00007f67f876c6d0 R14: 0000000000000001 R15: 0000000000000001
[   82.734670][ T8712] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8712
[   82.745065][ T8712] caller is __mod_memcg_state+0x87/0x1a0
[   82.750686][ T8712] CPU: 0 PID: 8712 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   82.760202][ T8712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   82.770238][ T8712] Call Trace:
[   82.773516][ T8712]  dump_stack+0x188/0x20d
[   82.777838][ T8712]  __this_cpu_preempt_check.cold+0x84/0x90
[   82.783799][ T8712]  __mod_memcg_state+0x87/0x1a0
[   82.789112][ T8712]  split_huge_page_to_list+0x124b/0x3380
[   82.794729][ T8712]  ? mark_held_locks+0xe0/0xe0
[   82.800022][ T8712]  ? release_pages+0x656/0x19b0
[   82.804859][ T8712]  ? can_split_huge_page+0x480/0x480
[   82.810476][ T8712]  ? pmd_val+0x7c/0xf0
[   82.814540][ T8712]  ? pmd_pfn+0x125/0x1c0
[   82.818766][ T8712]  ? enabled_store+0x190/0x190
[   82.823530][ T8712]  madvise_free_huge_pmd+0x873/0xb90
[   82.828817][ T8712]  madvise_free_pte_range+0x6ff/0x2650
[   82.834444][ T8712]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   82.841520][ T8712]  __walk_page_range+0xcfb/0x2070
[   82.846636][ T8712]  ? walk_page_test+0x78/0x180
[   82.851675][ T8712]  walk_page_range+0x1bd/0x3a0
[   82.856866][ T8712]  ? __walk_page_range+0x2070/0x2070
[   82.862821][ T8712]  ? madvise_free_single_vma+0x2c1/0x550
[   82.869019][ T8712]  madvise_free_single_vma+0x384/0x550
[   82.874500][ T8712]  ? madvise_pageout+0x3b0/0x3b0
[   82.879439][ T8712]  ? lock_acquire+0x197/0x420
[   82.884156][ T8712]  ? userfaultfd_remove+0xf0/0x2b0
[   82.889308][ T8712]  ? vmacache_find+0x62/0x300
[   82.893987][ T8712]  ? vmacache_update+0xce/0x140
[   82.898820][ T8712]  ? find_vma+0x2b/0x170
[   82.903864][ T8712]  do_madvise+0x5ba/0x1b80
[   82.908358][ T8712]  ? unuse_pde+0x2c/0x80
[   82.912588][ T8712]  ? madvise_free_pte_range+0x2650/0x2650
[   82.918326][ T8712]  ? __x64_sys_futex+0x376/0x4f0
[   82.923264][ T8712]  ? fput_many+0x2f/0x1a0
[   82.927590][ T8712]  ? do_futex+0x1b10/0x1b10
[   82.932070][ T8712]  ? ksys_read+0x19f/0x250
[   82.936495][ T8712]  ? kernel_write+0x120/0x120
[   82.941164][ T8712]  ? __x64_sys_madvise+0xae/0x120
[   82.946180][ T8712]  ? trace_hardirqs_on+0x55/0x220
[   82.951215][ T8712]  __x64_sys_madvise+0xae/0x120
[   82.956069][ T8712]  do_syscall_64+0xf6/0x7d0
[   82.960733][ T8712]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   82.966615][ T8712] RIP: 0033:0x460bf7
[   82.970490][ T8712] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   82.991186][ T8712] RSP: 002b:000000c0000e7c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   82.999683][ T8712] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   83.007694][ T8712] RDX: 0000000000000008 RSI: 0000000000200000 RDI: 000000c0005d0000
[   83.015995][ T8712] RBP: 000000c0000e7c90 R08: 000000c000400000 R09: 000000c0007d0000
[   83.023959][ T8712] R10: 00000000007ffe00 R11: 0000000000000246 R12: 0000000000000000
[   83.031929][ T8712] R13: 00007f67f876c6d0 R14: 0000000000000001 R15: 0000000000000001
[   83.375203][ T8712] ------------[ cut here ]------------
[   83.380863][ T8712] WARNING: CPU: 1 PID: 8712 at sound/core/oss/pcm_plugin.c:126 snd_pcm_plug_alloc+0x29a/0x330
[   83.391137][ T8712] Kernel panic - not syncing: panic_on_warn set ...
[   83.397735][ T8712] CPU: 1 PID: 8712 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   83.407276][ T8712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   83.417326][ T8712] Call Trace:
[   83.420618][ T8712]  dump_stack+0x188/0x20d
[   83.425070][ T8712]  ? snd_pcm_plug_alloc+0x1c0/0x330
[   83.430436][ T8712]  panic+0x2e3/0x75c
[   83.434676][ T8712]  ? add_taint.cold+0x16/0x16
[   83.439350][ T8712]  ? printk+0xba/0xed
[   83.443313][ T8712]  ? kmsg_dump_rewind_nolock+0xd9/0xd9
[   83.448751][ T8712]  ? __warn.cold+0x14/0x35
[   83.453144][ T8712]  ? __warn+0xd5/0x1c8
[   83.457194][ T8712]  ? snd_pcm_plug_alloc+0x29a/0x330
[   83.462398][ T8712]  __warn.cold+0x2f/0x35
[   83.466748][ T8712]  ? snd_pcm_plug_alloc+0x29a/0x330
[   83.472369][ T8712]  report_bug+0x27b/0x2f0
[   83.476957][ T8712]  do_error_trap+0x12b/0x220
[   83.481565][ T8712]  ? snd_pcm_plug_alloc+0x29a/0x330
[   83.486776][ T8712]  do_invalid_op+0x32/0x40
[   83.491183][ T8712]  ? snd_pcm_plug_alloc+0x29a/0x330
[   83.496531][ T8712]  invalid_op+0x23/0x30
[   83.500698][ T8712] RIP: 0010:snd_pcm_plug_alloc+0x29a/0x330
[   83.506870][ T8712] Code: ff ff 45 31 e4 e8 b6 09 80 fb 44 89 e0 5b 5d 41 5c 41 5d 41 5e c3 e8 a5 09 80 fb 0f 0b 41 bc fa ff ff ff eb e0 e8 96 09 80 fb <0f> 0b 41 bc fa ff ff ff eb d1 e8 87 09 80 fb 0f 0b 41 bc fa ff ff
[   83.526466][ T8712] RSP: 0018:ffffc90002057b88 EFLAGS: 00010293
[   83.532575][ T8712] RAX: ffff8880a8122040 RBX: ffff8880a2075b00 RCX: ffffffff85f2bb56
[   83.540556][ T8712] RDX: 0000000000000000 RSI: ffffffff85f2bcda RDI: 0000000000000007
[   83.548530][ T8712] RBP: 0000000000000000 R08: ffff8880a8122040 R09: ffffed101339a81f
[   83.556482][ T8712] R10: ffff888099cd40f3 R11: ffffed101339a81e R12: ffff8880a2075b58
[   83.564838][ T8712] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff888099cd4000
[   83.572840][ T8712]  ? snd_pcm_plug_alloc+0x116/0x330
[   83.578069][ T8712]  ? snd_pcm_plug_alloc+0x29a/0x330
[   83.583388][ T8712]  ? snd_pcm_plug_alloc+0x29a/0x330
[   83.588584][ T8712]  snd_pcm_oss_change_params_locked+0x1c05/0x34b0
[   83.594990][ T8712]  ? _snd_pcm_hw_param_set.constprop.0+0x510/0x510
[   83.601480][ T8712]  ? trace_hardirqs_off+0x50/0x220
[   83.606571][ T8712]  ? trace_hardirqs_on+0x55/0x220
[   83.611572][ T8712]  ? snd_pcm_oss_sync.isra.0+0x7d0/0x7d0
[   83.617194][ T8712]  snd_pcm_oss_change_params+0x76/0xd0
[   83.622629][ T8712]  snd_pcm_oss_make_ready+0xb7/0x170
[   83.627898][ T8712]  snd_pcm_oss_sync.isra.0+0x1be/0x7d0
[   83.633393][ T8712]  ? snd_pcm_oss_sync.isra.0+0x7d0/0x7d0
[   83.642174][ T8712]  snd_pcm_oss_release+0x210/0x280
[   83.647281][ T8712]  __fput+0x2da/0x850
[   83.651262][ T8712]  task_work_run+0xf4/0x1b0
[   83.655756][ T8712]  exit_to_usermode_loop+0x2fa/0x360
[   83.661036][ T8712]  do_syscall_64+0x6b1/0x7d0
[   83.665630][ T8712]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   83.671534][ T8712] RIP: 0033:0x4afb40
[   83.675475][ T8712] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30
[   83.695121][ T8712] RSP: 002b:000000c00007f588 EFLAGS: 00000212 ORIG_RAX: 0000000000000003
[   83.703542][ T8712] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40
[   83.711506][ T8712] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   83.719453][ T8712] RBP: 000000c00007f5c8 R08: 0000000000000000 R09: 0000000000000000
[   83.727401][ T8712] R10: 0000000000000000 R11: 0000000000000212 R12: 0000000000000004
[   83.735363][ T8712] R13: 0000000000000003 R14: 0000000000000200 R15: 0000000000000000
[   83.744761][ T8712] Kernel Offset: disabled
[   83.749400][ T8712] Rebooting in 86400 seconds..