[ 61.048829][ T27] audit: type=1800 audit(1583997557.734:29): pid=8322 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.219' (ECDSA) to the list of known hosts. 2020/03/12 07:19:27 fuzzer started syzkaller login: [ 71.104476][ T8479] check_preemption_disabled: 1 callbacks suppressed [ 71.104488][ T8479] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8479 [ 71.120279][ T8479] caller is __mod_memcg_state+0x27/0x1a0 [ 71.125960][ T8479] CPU: 1 PID: 8479 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 71.135415][ T8479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.145470][ T8479] Call Trace: [ 71.148778][ T8479] dump_stack+0x188/0x20d [ 71.153141][ T8479] __this_cpu_preempt_check.cold+0x84/0x90 [ 71.158966][ T8479] __mod_memcg_state+0x27/0x1a0 [ 71.163826][ T8479] split_huge_page_to_list+0x124b/0x3380 [ 71.169486][ T8479] ? mark_held_locks+0xe0/0xe0 [ 71.174275][ T8479] ? lock_downgrade+0x7f0/0x7f0 [ 71.179137][ T8479] ? can_split_huge_page+0x480/0x480 [ 71.184423][ T8479] ? pmd_val+0x7c/0xf0 [ 71.188492][ T8479] ? pmd_pfn+0x125/0x1c0 [ 71.192729][ T8479] ? enabled_store+0x190/0x190 [ 71.197506][ T8479] madvise_free_huge_pmd+0x873/0xb90 [ 71.202799][ T8479] madvise_free_pte_range+0x6ff/0x2650 [ 71.208265][ T8479] ? mem_cgroup_uncharge+0xf0/0xf0 [ 71.213375][ T8479] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 71.220053][ T8479] __walk_page_range+0xcfb/0x2070 [ 71.225085][ T8479] ? walk_page_test+0x78/0x180 [ 71.229849][ T8479] walk_page_range+0x1bd/0x3a0 [ 71.234641][ T8479] ? __walk_page_range+0x2070/0x2070 [ 71.239936][ T8479] ? madvise_free_single_vma+0x2c1/0x550 [ 71.245571][ T8479] madvise_free_single_vma+0x384/0x550 [ 71.251041][ T8479] ? madvise_pageout+0x3b0/0x3b0 [ 71.255987][ T8479] ? lock_acquire+0x197/0x420 [ 71.261271][ T8479] ? userfaultfd_remove+0xf0/0x2b0 [ 71.266382][ T8479] ? vmacache_find+0x62/0x300 [ 71.271063][ T8479] ? find_vma+0x2b/0x170 [ 71.275835][ T8479] do_madvise+0x5ba/0x1b80 [ 71.280246][ T8479] ? lock_downgrade+0x7f0/0x7f0 [ 71.285123][ T8479] ? madvise_free_pte_range+0x2650/0x2650 [ 71.290841][ T8479] ? ktime_get+0x1f8/0x2f0 [ 71.295257][ T8479] ? __x64_sys_futex+0x376/0x4f0 [ 71.300194][ T8479] ? switch_fpu_return+0x1db/0x4b0 [ 71.305319][ T8479] ? fpregs_mark_activate+0x320/0x320 [ 71.310790][ T8479] ? __x64_sys_madvise+0xae/0x120 [ 71.315810][ T8479] ? trace_hardirqs_on+0x55/0x220 [ 71.320851][ T8479] __x64_sys_madvise+0xae/0x120 [ 71.325716][ T8479] do_syscall_64+0xf6/0x7d0 [ 71.330231][ T8479] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 71.336121][ T8479] RIP: 0033:0x460bf7 [ 71.340011][ T8479] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 71.359608][ T8479] RSP: 002b:000000c00004fe70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 71.368055][ T8479] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 71.376023][ T8479] RDX: 0000000000000008 RSI: 000000000000a000 RDI: 000000c0002b4000 [ 71.383997][ T8479] RBP: 000000c00004feb0 R08: 000000c000200000 R09: 000000c0002be000 [ 71.391979][ T8479] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000002 [ 71.399953][ T8479] R13: 00007f911c61e008 R14: 0000000000000004 R15: 00000000000000df [ 71.407987][ T8479] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8479 [ 71.416870][ T8479] caller is __mod_memcg_state+0xca/0x1a0 [ 71.422501][ T8479] CPU: 1 PID: 8479 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 71.432010][ T8479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.442056][ T8479] Call Trace: [ 71.445353][ T8479] dump_stack+0x188/0x20d [ 71.449685][ T8479] __this_cpu_preempt_check.cold+0x84/0x90 [ 71.455488][ T8479] __mod_memcg_state+0xca/0x1a0 [ 71.460343][ T8479] split_huge_page_to_list+0x124b/0x3380 [ 71.467208][ T8479] ? mark_held_locks+0xe0/0xe0 [ 71.471995][ T8479] ? lock_downgrade+0x7f0/0x7f0 [ 71.476848][ T8479] ? can_split_huge_page+0x480/0x480 [ 71.482128][ T8479] ? pmd_val+0x7c/0xf0 [ 71.486196][ T8479] ? pmd_pfn+0x125/0x1c0 [ 71.490433][ T8479] ? enabled_store+0x190/0x190 [ 71.495209][ T8479] madvise_free_huge_pmd+0x873/0xb90 [ 71.500505][ T8479] madvise_free_pte_range+0x6ff/0x2650 [ 71.505968][ T8479] ? mem_cgroup_uncharge+0xf0/0xf0 [ 71.511083][ T8479] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 71.517776][ T8479] __walk_page_range+0xcfb/0x2070 [ 71.522847][ T8479] ? walk_page_test+0x78/0x180 [ 71.527629][ T8479] walk_page_range+0x1bd/0x3a0 [ 71.532402][ T8479] ? __walk_page_range+0x2070/0x2070 [ 71.537695][ T8479] ? madvise_free_single_vma+0x2c1/0x550 [ 71.543336][ T8479] madvise_free_single_vma+0x384/0x550 [ 71.548791][ T8479] ? madvise_pageout+0x3b0/0x3b0 [ 71.553727][ T8479] ? lock_acquire+0x197/0x420 [ 71.558399][ T8479] ? userfaultfd_remove+0xf0/0x2b0 [ 71.563524][ T8479] ? vmacache_find+0x62/0x300 [ 71.568214][ T8479] ? find_vma+0x2b/0x170 [ 71.572473][ T8479] do_madvise+0x5ba/0x1b80 [ 71.576987][ T8479] ? lock_downgrade+0x7f0/0x7f0 [ 71.581851][ T8479] ? madvise_free_pte_range+0x2650/0x2650 [ 71.587565][ T8479] ? ktime_get+0x1f8/0x2f0 [ 71.591982][ T8479] ? __x64_sys_futex+0x376/0x4f0 [ 71.596925][ T8479] ? switch_fpu_return+0x1db/0x4b0 [ 71.602033][ T8479] ? fpregs_mark_activate+0x320/0x320 [ 71.607458][ T8479] ? __x64_sys_madvise+0xae/0x120 [ 71.612473][ T8479] ? trace_hardirqs_on+0x55/0x220 [ 71.617500][ T8479] __x64_sys_madvise+0xae/0x120 [ 71.622362][ T8479] do_syscall_64+0xf6/0x7d0 [ 71.626870][ T8479] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 71.632758][ T8479] RIP: 0033:0x460bf7 [ 71.636652][ T8479] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 71.656261][ T8479] RSP: 002b:000000c00004fe70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 71.664678][ T8479] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 71.672733][ T8479] RDX: 0000000000000008 RSI: 000000000000a000 RDI: 000000c0002b4000 [ 71.680701][ T8479] RBP: 000000c00004feb0 R08: 000000c000200000 R09: 000000c0002be000 [ 71.688664][ T8479] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000002 [ 71.696896][ T8479] R13: 00007f911c61e008 R14: 0000000000000004 R15: 00000000000000df [ 71.704932][ T8479] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8479 [ 71.713960][ T8479] caller is __mod_memcg_state+0x87/0x1a0 [ 71.719632][ T8479] CPU: 1 PID: 8479 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 71.729095][ T8479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.739146][ T8479] Call Trace: [ 71.742440][ T8479] dump_stack+0x188/0x20d [ 71.746771][ T8479] __this_cpu_preempt_check.cold+0x84/0x90 [ 71.752712][ T8479] __mod_memcg_state+0x87/0x1a0 [ 71.757585][ T8479] split_huge_page_to_list+0x124b/0x3380 [ 71.763254][ T8479] ? mark_held_locks+0xe0/0xe0 [ 71.768025][ T8479] ? lock_downgrade+0x7f0/0x7f0 [ 71.772882][ T8479] ? can_split_huge_page+0x480/0x480 [ 71.778427][ T8479] ? pmd_val+0x7c/0xf0 [ 71.782510][ T8479] ? pmd_pfn+0x125/0x1c0 [ 71.786762][ T8479] ? enabled_store+0x190/0x190 [ 71.791548][ T8479] madvise_free_huge_pmd+0x873/0xb90 [ 71.796880][ T8479] madvise_free_pte_range+0x6ff/0x2650 [ 71.802347][ T8479] ? mem_cgroup_uncharge+0xf0/0xf0 [ 71.807466][ T8479] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 71.814147][ T8479] __walk_page_range+0xcfb/0x2070 [ 71.819272][ T8479] ? walk_page_test+0x78/0x180 [ 71.824059][ T8479] walk_page_range+0x1bd/0x3a0 [ 71.828820][ T8479] ? __walk_page_range+0x2070/0x2070 [ 71.834109][ T8479] ? madvise_free_single_vma+0x2c1/0x550 [ 71.839743][ T8479] madvise_free_single_vma+0x384/0x550 [ 71.845200][ T8479] ? madvise_pageout+0x3b0/0x3b0 [ 71.850139][ T8479] ? lock_acquire+0x197/0x420 [ 71.854811][ T8479] ? userfaultfd_remove+0xf0/0x2b0 [ 71.859927][ T8479] ? vmacache_find+0x62/0x300 [ 71.864602][ T8479] ? find_vma+0x2b/0x170 [ 71.868852][ T8479] do_madvise+0x5ba/0x1b80 [ 71.873444][ T8479] ? lock_downgrade+0x7f0/0x7f0 [ 71.878306][ T8479] ? madvise_free_pte_range+0x2650/0x2650 [ 71.884021][ T8479] ? ktime_get+0x1f8/0x2f0 [ 71.889107][ T8479] ? __x64_sys_futex+0x376/0x4f0 [ 71.894054][ T8479] ? switch_fpu_return+0x1db/0x4b0 [ 71.899171][ T8479] ? fpregs_mark_activate+0x320/0x320 [ 71.904542][ T8479] ? __x64_sys_madvise+0xae/0x120 [ 71.909557][ T8479] ? trace_hardirqs_on+0x55/0x220 [ 71.914575][ T8479] __x64_sys_madvise+0xae/0x120 [ 71.919436][ T8479] do_syscall_64+0xf6/0x7d0 [ 71.923939][ T8479] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 71.929821][ T8479] RIP: 0033:0x460bf7 [ 71.933742][ T8479] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 71.953344][ T8479] RSP: 002b:000000c00004fe70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 71.961763][ T8479] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 71.969739][ T8479] RDX: 0000000000000008 RSI: 000000000000a000 RDI: 000000c0002b4000 [ 71.977810][ T8479] RBP: 000000c00004feb0 R08: 000000c000200000 R09: 000000c0002be000 [ 71.985787][ T8479] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000002 [ 71.993769][ T8479] R13: 00007f911c61e008 R14: 0000000000000004 R15: 00000000000000df [ 72.007767][ T8479] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8479 [ 72.016796][ T8479] caller is __mod_memcg_state+0x27/0x1a0 [ 72.022451][ T8479] CPU: 0 PID: 8479 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 72.032270][ T8479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 72.042423][ T8479] Call Trace: [ 72.045713][ T8479] dump_stack+0x188/0x20d [ 72.050045][ T8479] __this_cpu_preempt_check.cold+0x84/0x90 [ 72.055885][ T8479] __mod_memcg_state+0x27/0x1a0 [ 72.061351][ T8479] split_huge_page_to_list+0x124b/0x3380 [ 72.067189][ T8479] ? mark_held_locks+0xe0/0xe0 [ 72.071966][ T8479] ? can_split_huge_page+0x480/0x480 [ 72.077351][ T8479] ? pmd_val+0x7c/0xf0 [ 72.081606][ T8479] ? pmd_pfn+0x125/0x1c0 [ 72.085868][ T8479] ? enabled_store+0x190/0x190 [ 72.090643][ T8479] madvise_free_huge_pmd+0x873/0xb90 [ 72.095920][ T8479] madvise_free_pte_range+0x6ff/0x2650 [ 72.101467][ T8479] ? kmem_cache_free+0x7f/0x320 [ 72.106311][ T8479] ? do_madvise+0xbb3/0x1b80 [ 72.110893][ T8479] ? __x64_sys_madvise+0xae/0x120 [ 72.115918][ T8479] ? mem_cgroup_uncharge+0xf0/0xf0 [ 72.121040][ T8479] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 72.127719][ T8479] __walk_page_range+0xcfb/0x2070 [ 72.132913][ T8479] ? walk_page_test+0x78/0x180 [ 72.137657][ T8479] walk_page_range+0x1bd/0x3a0 [ 72.142423][ T8479] ? __walk_page_range+0x2070/0x2070 [ 72.147695][ T8479] ? madvise_free_single_vma+0x2c1/0x550 [ 72.153400][ T8479] madvise_free_single_vma+0x384/0x550 [ 72.158842][ T8479] ? madvise_pageout+0x3b0/0x3b0 [ 72.163849][ T8479] ? lock_acquire+0x197/0x420 [ 72.168507][ T8479] ? userfaultfd_remove+0xf0/0x2b0 [ 72.173600][ T8479] ? vmacache_find+0x62/0x300 [ 72.178277][ T8479] ? vmacache_update+0xce/0x140 [ 72.183139][ T8479] ? find_vma+0x2b/0x170 [ 72.187399][ T8479] do_madvise+0x5ba/0x1b80 [ 72.191808][ T8479] ? lock_downgrade+0x7f0/0x7f0 [ 72.196674][ T8479] ? madvise_free_pte_range+0x2650/0x2650 [ 72.202378][ T8479] ? ktime_get+0x1f8/0x2f0 [ 72.206798][ T8479] ? __x64_sys_futex+0x376/0x4f0 [ 72.212061][ T8479] ? switch_fpu_return+0x1db/0x4b0 [ 72.217172][ T8479] ? fpregs_mark_activate+0x320/0x320 [ 72.222551][ T8479] ? __x64_sys_madvise+0xae/0x120 [ 72.227659][ T8479] ? trace_hardirqs_on+0x55/0x220 [ 72.232680][ T8479] __x64_sys_madvise+0xae/0x120 [ 72.237530][ T8479] do_syscall_64+0xf6/0x7d0 [ 72.242036][ T8479] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 72.247996][ T8479] RIP: 0033:0x460bf7 [ 72.251874][ T8479] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 72.271908][ T8479] RSP: 002b:000000c00004fe70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 72.280666][ T8479] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 72.288625][ T8479] RDX: 0000000000000008 RSI: 000000000007c000 RDI: 000000c000162000 [ 72.296584][ T8479] RBP: 000000c00004feb0 R08: 000000c000000000 R09: 000000c0001de000 [ 72.304537][ T8479] R10: 0000000000000001 R11: 0000000000000246 R12: 00000000000000f1 [ 72.312614][ T8479] R13: 0000000000000000 R14: 0000000000ac7968 R15: 0000000000000000 [ 72.320671][ T8479] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8479 [ 72.329539][ T8479] caller is __mod_memcg_state+0xca/0x1a0 [ 72.335190][ T8479] CPU: 0 PID: 8479 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 72.344806][ T8479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 72.354851][ T8479] Call Trace: [ 72.360575][ T8479] dump_stack+0x188/0x20d [ 72.364915][ T8479] __this_cpu_preempt_check.cold+0x84/0x90 [ 72.370733][ T8479] __mod_memcg_state+0xca/0x1a0 [ 72.375862][ T8479] split_huge_page_to_list+0x124b/0x3380 [ 72.381529][ T8479] ? mark_held_locks+0xe0/0xe0 [ 72.386336][ T8479] ? can_split_huge_page+0x480/0x480 [ 72.391620][ T8479] ? pmd_val+0x7c/0xf0 [ 72.395950][ T8479] ? pmd_pfn+0x125/0x1c0 [ 72.400189][ T8479] ? enabled_store+0x190/0x190 [ 72.404975][ T8479] madvise_free_huge_pmd+0x873/0xb90 [ 72.410266][ T8479] madvise_free_pte_range+0x6ff/0x2650 [ 72.415807][ T8479] ? kmem_cache_free+0x7f/0x320 [ 72.420662][ T8479] ? do_madvise+0xbb3/0x1b80 [ 72.425247][ T8479] ? __x64_sys_madvise+0xae/0x120 [ 72.430271][ T8479] ? mem_cgroup_uncharge+0xf0/0xf0 [ 72.435383][ T8479] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 72.442057][ T8479] __walk_page_range+0xcfb/0x2070 [ 72.447116][ T8479] ? walk_page_test+0x78/0x180 [ 72.451919][ T8479] walk_page_range+0x1bd/0x3a0 [ 72.457402][ T8479] ? __walk_page_range+0x2070/0x2070 [ 72.462709][ T8479] ? madvise_free_single_vma+0x2c1/0x550 [ 72.468350][ T8479] madvise_free_single_vma+0x384/0x550 [ 72.473807][ T8479] ? madvise_pageout+0x3b0/0x3b0 [ 72.478832][ T8479] ? lock_acquire+0x197/0x420 [ 72.483516][ T8479] ? userfaultfd_remove+0xf0/0x2b0 [ 72.488627][ T8479] ? vmacache_find+0x62/0x300 [ 72.493303][ T8479] ? vmacache_update+0xce/0x140 [ 72.498165][ T8479] ? find_vma+0x2b/0x170 [ 72.502410][ T8479] do_madvise+0x5ba/0x1b80 [ 72.506825][ T8479] ? lock_downgrade+0x7f0/0x7f0 [ 72.511695][ T8479] ? madvise_free_pte_range+0x2650/0x2650 [ 72.517409][ T8479] ? ktime_get+0x1f8/0x2f0 [ 72.521826][ T8479] ? __x64_sys_futex+0x376/0x4f0 [ 72.526764][ T8479] ? switch_fpu_return+0x1db/0x4b0 [ 72.531875][ T8479] ? fpregs_mark_activate+0x320/0x320 [ 72.537247][ T8479] ? __x64_sys_madvise+0xae/0x120 [ 72.542267][ T8479] ? trace_hardirqs_on+0x55/0x220 [ 72.547294][ T8479] __x64_sys_madvise+0xae/0x120 [ 72.552155][ T8479] do_syscall_64+0xf6/0x7d0 [ 72.556747][ T8479] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 72.562639][ T8479] RIP: 0033:0x460bf7 [ 72.566535][ T8479] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 72.586394][ T8479] RSP: 002b:000000c00004fe70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 72.594800][ T8479] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 72.602792][ T8479] RDX: 0000000000000008 RSI: 000000000007c000 RDI: 000000c000162000 [ 72.610756][ T8479] RBP: 000000c00004feb0 R08: 000000c000000000 R09: 000000c0001de000 [ 72.618720][ T8479] R10: 0000000000000001 R11: 0000000000000246 R12: 00000000000000f1 [ 72.626686][ T8479] R13: 0000000000000000 R14: 0000000000ac7968 R15: 0000000000000000 [ 72.635142][ T8479] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8479 [ 72.644248][ T8479] caller is __mod_memcg_state+0x87/0x1a0 [ 72.649936][ T8479] CPU: 0 PID: 8479 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 72.659556][ T8479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 72.669689][ T8479] Call Trace: [ 72.672991][ T8479] dump_stack+0x188/0x20d [ 72.677320][ T8479] __this_cpu_preempt_check.cold+0x84/0x90 [ 72.683132][ T8479] __mod_memcg_state+0x87/0x1a0 [ 72.687997][ T8479] split_huge_page_to_list+0x124b/0x3380 [ 72.693630][ T8479] ? mark_held_locks+0xe0/0xe0 [ 72.698461][ T8479] ? can_split_huge_page+0x480/0x480 [ 72.703756][ T8479] ? pmd_val+0x7c/0xf0 [ 72.707847][ T8479] ? pmd_pfn+0x125/0x1c0 [ 72.712090][ T8479] ? enabled_store+0x190/0x190 [ 72.717000][ T8479] madvise_free_huge_pmd+0x873/0xb90 [ 72.722300][ T8479] madvise_free_pte_range+0x6ff/0x2650 [ 72.727790][ T8479] ? kmem_cache_free+0x7f/0x320 [ 72.732639][ T8479] ? do_madvise+0xbb3/0x1b80 [ 72.737224][ T8479] ? __x64_sys_madvise+0xae/0x120 [ 72.742259][ T8479] ? mem_cgroup_uncharge+0xf0/0xf0 [ 72.747814][ T8479] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 72.754501][ T8479] __walk_page_range+0xcfb/0x2070 [ 72.759582][ T8479] ? walk_page_test+0x78/0x180 [ 72.764352][ T8479] walk_page_range+0x1bd/0x3a0 [ 72.769117][ T8479] ? __walk_page_range+0x2070/0x2070 [ 72.774411][ T8479] ? madvise_free_single_vma+0x2c1/0x550 [ 72.780055][ T8479] madvise_free_single_vma+0x384/0x550 [ 72.785520][ T8479] ? madvise_pageout+0x3b0/0x3b0 [ 72.790455][ T8479] ? lock_acquire+0x197/0x420 [ 72.795129][ T8479] ? userfaultfd_remove+0xf0/0x2b0 [ 72.800240][ T8479] ? vmacache_find+0x62/0x300 [ 72.804908][ T8479] ? vmacache_update+0xce/0x140 [ 72.809755][ T8479] ? find_vma+0x2b/0x170 [ 72.813997][ T8479] do_madvise+0x5ba/0x1b80 [ 72.818409][ T8479] ? lock_downgrade+0x7f0/0x7f0 [ 72.823285][ T8479] ? madvise_free_pte_range+0x2650/0x2650 [ 72.829020][ T8479] ? ktime_get+0x1f8/0x2f0 [ 72.833443][ T8479] ? __x64_sys_futex+0x376/0x4f0 [ 72.838403][ T8479] ? switch_fpu_return+0x1db/0x4b0 [ 72.843524][ T8479] ? fpregs_mark_activate+0x320/0x320 [ 72.849003][ T8479] ? __x64_sys_madvise+0xae/0x120 [ 72.854195][ T8479] ? trace_hardirqs_on+0x55/0x220 [ 72.859215][ T8479] __x64_sys_madvise+0xae/0x120 [ 72.864066][ T8479] do_syscall_64+0xf6/0x7d0 [ 72.868583][ T8479] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 72.874479][ T8479] RIP: 0033:0x460bf7 [ 72.878380][ T8479] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 72.898257][ T8479] RSP: 002b:000000c00004fe70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 72.906702][ T8479] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 72.914760][ T8479] RDX: 0000000000000008 RSI: 000000000007c000 RDI: 000000c000162000 [ 72.922832][ T8479] RBP: 000000c00004feb0 R08: 000000c000000000 R09: 000000c0001de000 [ 72.930804][ T8479] R10: 0000000000000001 R11: 0000000000000246 R12: 00000000000000f1 [ 72.938814][ T8479] R13: 0000000000000000 R14: 0000000000ac7968 R15: 0000000000000000 [ 73.054402][ T8479] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8479 [ 73.063456][ T8479] caller is __mod_memcg_state+0x27/0x1a0 [ 73.069123][ T8479] CPU: 0 PID: 8479 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 73.078566][ T8479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 73.088613][ T8479] Call Trace: [ 73.092002][ T8479] dump_stack+0x188/0x20d [ 73.096321][ T8479] __this_cpu_preempt_check.cold+0x84/0x90 [ 73.102111][ T8479] __mod_memcg_state+0x27/0x1a0 [ 73.106963][ T8479] split_huge_page_to_list+0x124b/0x3380 [ 73.112591][ T8479] ? mark_held_locks+0xe0/0xe0 [ 73.117343][ T8479] ? can_split_huge_page+0x480/0x480 [ 73.122603][ T8479] ? pmd_val+0x7c/0xf0 [ 73.126652][ T8479] ? pmd_pfn+0x125/0x1c0 [ 73.130872][ T8479] ? enabled_store+0x190/0x190 [ 73.135615][ T8479] madvise_free_huge_pmd+0x873/0xb90 [ 73.140882][ T8479] madvise_free_pte_range+0x6ff/0x2650 [ 73.146320][ T8479] ? __sched_text_start+0x8/0x8 [ 73.151174][ T8479] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 73.157849][ T8479] __walk_page_range+0xcfb/0x2070 [ 73.163004][ T8479] ? walk_page_test+0x78/0x180 [ 73.167773][ T8479] walk_page_range+0x1bd/0x3a0 [ 73.172524][ T8479] ? __walk_page_range+0x2070/0x2070 [ 73.177798][ T8479] ? madvise_free_single_vma+0x2c1/0x550 [ 73.183431][ T8479] madvise_free_single_vma+0x384/0x550 [ 73.188885][ T8479] ? madvise_pageout+0x3b0/0x3b0 [ 73.193861][ T8479] ? lock_acquire+0x197/0x420 [ 73.198516][ T8479] ? userfaultfd_remove+0xf0/0x2b0 [ 73.203606][ T8479] ? vmacache_find+0x62/0x300 [ 73.208262][ T8479] ? find_vma+0x2b/0x170 [ 73.212488][ T8479] do_madvise+0x5ba/0x1b80 [ 73.216933][ T8479] ? madvise_free_pte_range+0x2650/0x2650 [ 73.222641][ T8479] ? __x64_sys_futex+0x376/0x4f0 [ 73.227577][ T8479] ? switch_fpu_return+0x1db/0x4b0 [ 73.232665][ T8479] ? fpregs_mark_activate+0x320/0x320 [ 73.238063][ T8479] ? __x64_sys_madvise+0xae/0x120 [ 73.243065][ T8479] ? trace_hardirqs_on+0x55/0x220 [ 73.248068][ T8479] __x64_sys_madvise+0xae/0x120 [ 73.252902][ T8479] do_syscall_64+0xf6/0x7d0 [ 73.257388][ T8479] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 73.263256][ T8479] RIP: 0033:0x460bf7 [ 73.267127][ T8479] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 73.286765][ T8479] RSP: 002b:000000c00004fe70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 73.295185][ T8479] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 73.303147][ T8479] RDX: 0000000000000008 RSI: 000000000000a000 RDI: 000000c000400000 [ 73.311103][ T8479] RBP: 000000c00004feb0 R08: 0000000000000000 R09: 000000c00040a000 [ 73.319058][ T8479] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000002 [ 73.327005][ T8479] R13: 00007f911c61e6d0 R14: 0000000000000004 R15: 00000000000000df [ 73.335040][ T8479] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8479 [ 73.343888][ T8479] caller is __mod_memcg_state+0xca/0x1a0 [ 73.349538][ T8479] CPU: 0 PID: 8479 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 73.358992][ T8479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 73.369028][ T8479] Call Trace: [ 73.372300][ T8479] dump_stack+0x188/0x20d [ 73.376623][ T8479] __this_cpu_preempt_check.cold+0x84/0x90 [ 73.382409][ T8479] __mod_memcg_state+0xca/0x1a0 [ 73.387242][ T8479] split_huge_page_to_list+0x124b/0x3380 [ 73.392867][ T8479] ? mark_held_locks+0xe0/0xe0 [ 73.397624][ T8479] ? can_split_huge_page+0x480/0x480 [ 73.402899][ T8479] ? pmd_val+0x7c/0xf0 [ 73.406947][ T8479] ? pmd_pfn+0x125/0x1c0 [ 73.411166][ T8479] ? enabled_store+0x190/0x190 [ 73.415907][ T8479] madvise_free_huge_pmd+0x873/0xb90 [ 73.421191][ T8479] madvise_free_pte_range+0x6ff/0x2650 [ 73.426641][ T8479] ? __sched_text_start+0x8/0x8 [ 73.431488][ T8479] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 73.438160][ T8479] __walk_page_range+0xcfb/0x2070 [ 73.443181][ T8479] ? walk_page_test+0x78/0x180 [ 73.447951][ T8479] walk_page_range+0x1bd/0x3a0 [ 73.452715][ T8479] ? __walk_page_range+0x2070/0x2070 [ 73.457987][ T8479] ? madvise_free_single_vma+0x2c1/0x550 [ 73.463620][ T8479] madvise_free_single_vma+0x384/0x550 [ 73.469063][ T8479] ? madvise_pageout+0x3b0/0x3b0 [ 73.473981][ T8479] ? lock_acquire+0x197/0x420 [ 73.478635][ T8479] ? userfaultfd_remove+0xf0/0x2b0 [ 73.483730][ T8479] ? vmacache_find+0x62/0x300 [ 73.488384][ T8479] ? find_vma+0x2b/0x170 [ 73.492625][ T8479] do_madvise+0x5ba/0x1b80 [ 73.497028][ T8479] ? madvise_free_pte_range+0x2650/0x2650 [ 73.502732][ T8479] ? __x64_sys_futex+0x376/0x4f0 [ 73.507667][ T8479] ? switch_fpu_return+0x1db/0x4b0 [ 73.512830][ T8479] ? fpregs_mark_activate+0x320/0x320 [ 73.518190][ T8479] ? __x64_sys_madvise+0xae/0x120 [ 73.523205][ T8479] ? trace_hardirqs_on+0x55/0x220 [ 73.528212][ T8479] __x64_sys_madvise+0xae/0x120 [ 73.533051][ T8479] do_syscall_64+0xf6/0x7d0 [ 73.537536][ T8479] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 73.543408][ T8479] RIP: 0033:0x460bf7 [ 73.547281][ T8479] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 73.566881][ T8479] RSP: 002b:000000c00004fe70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 73.575288][ T8479] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 73.583250][ T8479] RDX: 0000000000000008 RSI: 000000000000a000 RDI: 000000c000400000 [ 73.591214][ T8479] RBP: 000000c00004feb0 R08: 0000000000000000 R09: 000000c00040a000 [ 73.599164][ T8479] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000002 [ 73.607117][ T8479] R13: 00007f911c61e6d0 R14: 0000000000000004 R15: 00000000000000df [ 73.615152][ T8479] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8479 [ 73.624180][ T8479] caller is __mod_memcg_state+0x87/0x1a0 [ 73.629838][ T8479] CPU: 0 PID: 8479 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 73.639280][ T8479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 73.649316][ T8479] Call Trace: [ 73.652591][ T8479] dump_stack+0x188/0x20d [ 73.656900][ T8479] __this_cpu_preempt_check.cold+0x84/0x90 [ 73.662690][ T8479] __mod_memcg_state+0x87/0x1a0 [ 73.667520][ T8479] split_huge_page_to_list+0x124b/0x3380 [ 73.673149][ T8479] ? mark_held_locks+0xe0/0xe0 [ 73.677906][ T8479] ? can_split_huge_page+0x480/0x480 [ 73.683166][ T8479] ? pmd_val+0x7c/0xf0 [ 73.687211][ T8479] ? pmd_pfn+0x125/0x1c0 [ 73.691427][ T8479] ? enabled_store+0x190/0x190 [ 73.696183][ T8479] madvise_free_huge_pmd+0x873/0xb90 [ 73.701465][ T8479] madvise_free_pte_range+0x6ff/0x2650 [ 73.706904][ T8479] ? __sched_text_start+0x8/0x8 [ 73.711746][ T8479] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 73.718407][ T8479] __walk_page_range+0xcfb/0x2070 [ 73.723416][ T8479] ? walk_page_test+0x78/0x180 [ 73.728172][ T8479] walk_page_range+0x1bd/0x3a0 [ 73.732915][ T8479] ? __walk_page_range+0x2070/0x2070 [ 73.738180][ T8479] ? madvise_free_single_vma+0x2c1/0x550 [ 73.743793][ T8479] madvise_free_single_vma+0x384/0x550 [ 73.749231][ T8479] ? madvise_pageout+0x3b0/0x3b0 [ 73.754161][ T8479] ? lock_acquire+0x197/0x420 [ 73.758812][ T8479] ? userfaultfd_remove+0xf0/0x2b0 [ 73.763907][ T8479] ? vmacache_find+0x62/0x300 [ 73.768563][ T8479] ? find_vma+0x2b/0x170 [ 73.772807][ T8479] do_madvise+0x5ba/0x1b80 [ 73.777287][ T8479] ? madvise_free_pte_range+0x2650/0x2650 [ 73.783109][ T8479] ? __x64_sys_futex+0x376/0x4f0 [ 73.788036][ T8479] ? switch_fpu_return+0x1db/0x4b0 [ 73.793145][ T8479] ? fpregs_mark_activate+0x320/0x320 [ 73.798500][ T8479] ? __x64_sys_madvise+0xae/0x120 [ 73.803503][ T8479] ? trace_hardirqs_on+0x55/0x220 [ 73.808503][ T8479] __x64_sys_madvise+0xae/0x120 [ 73.813354][ T8479] do_syscall_64+0xf6/0x7d0 [ 73.817841][ T8479] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 73.823726][ T8479] RIP: 0033:0x460bf7 [ 73.827603][ T8479] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 73.847191][ T8479] RSP: 002b:000000c00004fe70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 73.855607][ T8479] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 73.863573][ T8479] RDX: 0000000000000008 RSI: 000000000000a000 RDI: 000000c000400000 [ 73.873812][ T8479] RBP: 000000c00004feb0 R08: 0000000000000000 R09: 000000c00040a000 [ 73.881950][ T8479] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000002 [ 73.889911][ T8479] R13: 00007f911c61e6d0 R14: 0000000000000004 R15: 00000000000000df 2020/03/12 07:19:32 connecting to host at 10.128.0.26:39953 2020/03/12 07:19:32 checking machine... 2020/03/12 07:19:32 checking revisions... 2020/03/12 07:19:32 testing simple program... [ 75.773959][ T8492] IPVS: ftp: loaded support on port[0] = 21 2020/03/12 07:19:32 building call list... [ 76.094996][ T286] tipc: TX() has been purged, node left! [ 76.645667][ T8475] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8475 [ 76.654662][ T8475] caller is __mod_memcg_state+0x27/0x1a0 [ 76.660400][ T8475] CPU: 0 PID: 8475 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 76.669952][ T8475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 76.680031][ T8475] Call Trace: [ 76.683310][ T8475] dump_stack+0x188/0x20d [ 76.687621][ T8475] __this_cpu_preempt_check.cold+0x84/0x90 [ 76.693430][ T8475] __mod_memcg_state+0x27/0x1a0 [ 76.698290][ T8475] split_huge_page_to_list+0x124b/0x3380 [ 76.703905][ T8475] ? mark_held_locks+0xe0/0xe0 [ 76.708645][ T8475] ? release_pages+0x656/0x19b0 [ 76.713585][ T8475] ? can_split_huge_page+0x480/0x480 [ 76.718874][ T8475] ? pmd_val+0x7c/0xf0 [ 76.722938][ T8475] ? pmd_pfn+0x125/0x1c0 [ 76.727164][ T8475] ? enabled_store+0x190/0x190 [ 76.731915][ T8475] madvise_free_huge_pmd+0x873/0xb90 [ 76.737200][ T8475] madvise_free_pte_range+0x6ff/0x2650 [ 76.742653][ T8475] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 76.749329][ T8475] __walk_page_range+0xcfb/0x2070 [ 76.754445][ T8475] ? walk_page_test+0x78/0x180 [ 76.759187][ T8475] walk_page_range+0x1bd/0x3a0 [ 76.763941][ T8475] ? __walk_page_range+0x2070/0x2070 [ 76.769205][ T8475] ? madvise_free_single_vma+0x2c1/0x550 [ 76.774835][ T8475] madvise_free_single_vma+0x384/0x550 [ 76.780275][ T8475] ? madvise_pageout+0x3b0/0x3b0 [ 76.785191][ T8475] ? lock_acquire+0x197/0x420 [ 76.789846][ T8475] ? userfaultfd_remove+0xf0/0x2b0 [ 76.794942][ T8475] ? vmacache_find+0x62/0x300 [ 76.799596][ T8475] ? vmacache_update+0xce/0x140 [ 76.804423][ T8475] ? find_vma+0x2b/0x170 [ 76.808647][ T8475] do_madvise+0x5ba/0x1b80 [ 76.813056][ T8475] ? unuse_pde+0x2c/0x80 [ 76.817303][ T8475] ? madvise_free_pte_range+0x2650/0x2650 [ 76.823003][ T8475] ? __x64_sys_futex+0x376/0x4f0 [ 76.827941][ T8475] ? fput_many+0x2f/0x1a0 [ 76.832249][ T8475] ? do_futex+0x1b10/0x1b10 [ 76.836741][ T8475] ? ksys_read+0x19f/0x250 [ 76.841146][ T8475] ? kernel_write+0x120/0x120 [ 76.845802][ T8475] ? __x64_sys_madvise+0xae/0x120 [ 76.850800][ T8475] ? trace_hardirqs_on+0x55/0x220 [ 76.855816][ T8475] __x64_sys_madvise+0xae/0x120 [ 76.860660][ T8475] do_syscall_64+0xf6/0x7d0 [ 76.865156][ T8475] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 76.871024][ T8475] RIP: 0033:0x460bf7 [ 76.874899][ T8475] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 76.894493][ T8475] RSP: 002b:000000c000053c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 76.902890][ T8475] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 76.910845][ T8475] RDX: 0000000000000008 RSI: 0000000000200000 RDI: 000000c000572000 [ 76.918800][ T8475] RBP: 000000c000053c90 R08: 000000c000400000 R09: 000000c000772000 [ 76.926961][ T8475] R10: 00000000007ffe00 R11: 0000000000000246 R12: 0000000000000002 [ 76.934926][ T8475] R13: 0000000000e8da20 R14: 000000000045ecf0 R15: 0000000000000000 [ 76.943011][ T8475] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8475 [ 76.951908][ T8475] caller is __mod_memcg_state+0xca/0x1a0 [ 76.957564][ T8475] CPU: 0 PID: 8475 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 76.967021][ T8475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 76.977151][ T8475] Call Trace: [ 76.980453][ T8475] dump_stack+0x188/0x20d [ 76.984773][ T8475] __this_cpu_preempt_check.cold+0x84/0x90 [ 76.991369][ T8475] __mod_memcg_state+0xca/0x1a0 [ 76.996210][ T8475] split_huge_page_to_list+0x124b/0x3380 [ 77.001828][ T8475] ? mark_held_locks+0xe0/0xe0 [ 77.006573][ T8475] ? release_pages+0x656/0x19b0 [ 77.011428][ T8475] ? can_split_huge_page+0x480/0x480 [ 77.016692][ T8475] ? pmd_val+0x7c/0xf0 [ 77.020737][ T8475] ? pmd_pfn+0x125/0x1c0 [ 77.024958][ T8475] ? enabled_store+0x190/0x190 [ 77.029705][ T8475] madvise_free_huge_pmd+0x873/0xb90 [ 77.034975][ T8475] madvise_free_pte_range+0x6ff/0x2650 [ 77.040421][ T8475] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 77.047074][ T8475] __walk_page_range+0xcfb/0x2070 [ 77.052097][ T8475] ? walk_page_test+0x78/0x180 [ 77.056840][ T8475] walk_page_range+0x1bd/0x3a0 [ 77.061591][ T8475] ? __walk_page_range+0x2070/0x2070 [ 77.066870][ T8475] ? madvise_free_single_vma+0x2c1/0x550 [ 77.072483][ T8475] madvise_free_single_vma+0x384/0x550 [ 77.077935][ T8475] ? madvise_pageout+0x3b0/0x3b0 [ 77.082851][ T8475] ? lock_acquire+0x197/0x420 [ 77.087522][ T8475] ? userfaultfd_remove+0xf0/0x2b0 [ 77.092615][ T8475] ? vmacache_find+0x62/0x300 [ 77.097268][ T8475] ? vmacache_update+0xce/0x140 [ 77.102111][ T8475] ? find_vma+0x2b/0x170 [ 77.106352][ T8475] do_madvise+0x5ba/0x1b80 [ 77.110768][ T8475] ? unuse_pde+0x2c/0x80 [ 77.115012][ T8475] ? madvise_free_pte_range+0x2650/0x2650 [ 77.120724][ T8475] ? __x64_sys_futex+0x376/0x4f0 [ 77.125651][ T8475] ? fput_many+0x2f/0x1a0 [ 77.129980][ T8475] ? do_futex+0x1b10/0x1b10 [ 77.134479][ T8475] ? ksys_read+0x19f/0x250 [ 77.138901][ T8475] ? kernel_write+0x120/0x120 [ 77.143562][ T8475] ? __x64_sys_madvise+0xae/0x120 [ 77.148601][ T8475] ? trace_hardirqs_on+0x55/0x220 [ 77.153618][ T8475] __x64_sys_madvise+0xae/0x120 [ 77.158473][ T8475] do_syscall_64+0xf6/0x7d0 [ 77.162985][ T8475] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 77.168964][ T8475] RIP: 0033:0x460bf7 [ 77.172882][ T8475] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 77.192476][ T8475] RSP: 002b:000000c000053c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 77.200868][ T8475] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 77.208882][ T8475] RDX: 0000000000000008 RSI: 0000000000200000 RDI: 000000c000572000 [ 77.216832][ T8475] RBP: 000000c000053c90 R08: 000000c000400000 R09: 000000c000772000 [ 77.224907][ T8475] R10: 00000000007ffe00 R11: 0000000000000246 R12: 0000000000000002 [ 77.232867][ T8475] R13: 0000000000e8da20 R14: 000000000045ecf0 R15: 0000000000000000 [ 77.240912][ T8475] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8475 [ 77.249969][ T8475] caller is __mod_memcg_state+0x87/0x1a0 [ 77.255618][ T8475] CPU: 0 PID: 8475 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 77.265071][ T8475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 77.275106][ T8475] Call Trace: [ 77.278381][ T8475] dump_stack+0x188/0x20d [ 77.282696][ T8475] __this_cpu_preempt_check.cold+0x84/0x90 [ 77.288517][ T8475] __mod_memcg_state+0x87/0x1a0 [ 77.293347][ T8475] split_huge_page_to_list+0x124b/0x3380 [ 77.298960][ T8475] ? mark_held_locks+0xe0/0xe0 [ 77.303698][ T8475] ? release_pages+0x656/0x19b0 [ 77.308541][ T8475] ? can_split_huge_page+0x480/0x480 [ 77.313803][ T8475] ? pmd_val+0x7c/0xf0 [ 77.317857][ T8475] ? pmd_pfn+0x125/0x1c0 [ 77.322090][ T8475] ? enabled_store+0x190/0x190 [ 77.326834][ T8475] madvise_free_huge_pmd+0x873/0xb90 [ 77.332121][ T8475] madvise_free_pte_range+0x6ff/0x2650 [ 77.337561][ T8475] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 77.344318][ T8475] __walk_page_range+0xcfb/0x2070 [ 77.349330][ T8475] ? walk_page_test+0x78/0x180 [ 77.354070][ T8475] walk_page_range+0x1bd/0x3a0 [ 77.358825][ T8475] ? __walk_page_range+0x2070/0x2070 [ 77.364090][ T8475] ? madvise_free_single_vma+0x2c1/0x550 [ 77.369718][ T8475] madvise_free_single_vma+0x384/0x550 [ 77.375155][ T8475] ? madvise_pageout+0x3b0/0x3b0 [ 77.380072][ T8475] ? lock_acquire+0x197/0x420 [ 77.384725][ T8475] ? userfaultfd_remove+0xf0/0x2b0 [ 77.389913][ T8475] ? vmacache_find+0x62/0x300 [ 77.394580][ T8475] ? vmacache_update+0xce/0x140 [ 77.399414][ T8475] ? find_vma+0x2b/0x170 [ 77.403639][ T8475] do_madvise+0x5ba/0x1b80 [ 77.408037][ T8475] ? unuse_pde+0x2c/0x80 [ 77.412441][ T8475] ? madvise_free_pte_range+0x2650/0x2650 [ 77.418152][ T8475] ? __x64_sys_futex+0x376/0x4f0 [ 77.423077][ T8475] ? fput_many+0x2f/0x1a0 [ 77.427386][ T8475] ? do_futex+0x1b10/0x1b10 [ 77.431868][ T8475] ? ksys_read+0x19f/0x250 [ 77.436262][ T8475] ? kernel_write+0x120/0x120 [ 77.441160][ T8475] ? __x64_sys_madvise+0xae/0x120 [ 77.446246][ T8475] ? trace_hardirqs_on+0x55/0x220 [ 77.451263][ T8475] __x64_sys_madvise+0xae/0x120 [ 77.456120][ T8475] do_syscall_64+0xf6/0x7d0 [ 77.460610][ T8475] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 77.466480][ T8475] RIP: 0033:0x460bf7 [ 77.470384][ T8475] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 77.489968][ T8475] RSP: 002b:000000c000053c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 77.498358][ T8475] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 77.506310][ T8475] RDX: 0000000000000008 RSI: 0000000000200000 RDI: 000000c000572000 [ 77.514261][ T8475] RBP: 000000c000053c90 R08: 000000c000400000 R09: 000000c000772000 [ 77.522229][ T8475] R10: 00000000007ffe00 R11: 0000000000000246 R12: 0000000000000002 [ 77.530179][ T8475] R13: 0000000000e8da20 R14: 000000000045ecf0 R15: 0000000000000000 [ 77.869833][ T8475] ------------[ cut here ]------------ [ 77.875329][ T8475] WARNING: CPU: 1 PID: 8475 at sound/core/oss/pcm_plugin.c:126 snd_pcm_plug_alloc+0x29a/0x330 [ 77.885638][ T8475] Kernel panic - not syncing: panic_on_warn set ... [ 77.892481][ T8475] CPU: 1 PID: 8475 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 77.901925][ T8475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 77.911972][ T8475] Call Trace: [ 77.915257][ T8475] dump_stack+0x188/0x20d [ 77.919715][ T8475] ? snd_pcm_plug_alloc+0x1c0/0x330 [ 77.924907][ T8475] panic+0x2e3/0x75c [ 77.928798][ T8475] ? add_taint.cold+0x16/0x16 [ 77.933454][ T8475] ? printk+0xba/0xed [ 77.937435][ T8475] ? kmsg_dump_rewind_nolock+0xd9/0xd9 [ 77.942891][ T8475] ? __warn.cold+0x14/0x35 [ 77.947288][ T8475] ? __warn+0xd5/0x1c8 [ 77.951337][ T8475] ? snd_pcm_plug_alloc+0x29a/0x330 [ 77.956597][ T8475] __warn.cold+0x2f/0x35 [ 77.960851][ T8475] ? snd_pcm_plug_alloc+0x29a/0x330 [ 77.966104][ T8475] report_bug+0x27b/0x2f0 [ 77.970618][ T8475] do_error_trap+0x12b/0x220 [ 77.975974][ T8475] ? snd_pcm_plug_alloc+0x29a/0x330 [ 77.981168][ T8475] do_invalid_op+0x32/0x40 [ 77.985583][ T8475] ? snd_pcm_plug_alloc+0x29a/0x330 [ 77.990777][ T8475] invalid_op+0x23/0x30 [ 77.994965][ T8475] RIP: 0010:snd_pcm_plug_alloc+0x29a/0x330 [ 78.000916][ T8475] Code: ff ff 45 31 e4 e8 b6 09 80 fb 44 89 e0 5b 5d 41 5c 41 5d 41 5e c3 e8 a5 09 80 fb 0f 0b 41 bc fa ff ff ff eb e0 e8 96 09 80 fb <0f> 0b 41 bc fa ff ff ff eb d1 e8 87 09 80 fb 0f 0b 41 bc fa ff ff [ 78.020506][ T8475] RSP: 0018:ffffc90001c57b88 EFLAGS: 00010293 [ 78.026563][ T8475] RAX: ffff8880a3010540 RBX: ffff8880a603eb00 RCX: ffffffff85f2bb56 [ 78.034523][ T8475] RDX: 0000000000000000 RSI: ffffffff85f2bcda RDI: 0000000000000007 [ 78.042510][ T8475] RBP: 0000000000000000 R08: ffff8880a3010540 R09: ffffed1042aece1f [ 78.050594][ T8475] R10: ffff8882157670f3 R11: ffffed1042aece1e R12: ffff8880a603eb58 [ 78.058685][ T8475] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff888215767000 [ 78.066678][ T8475] ? snd_pcm_plug_alloc+0x116/0x330 [ 78.071852][ T8475] ? snd_pcm_plug_alloc+0x29a/0x330 [ 78.077031][ T8475] ? snd_pcm_plug_alloc+0x29a/0x330 [ 78.082226][ T8475] snd_pcm_oss_change_params_locked+0x1c05/0x34b0 [ 78.088637][ T8475] ? _snd_pcm_hw_param_set.constprop.0+0x510/0x510 [ 78.095130][ T8475] ? trace_hardirqs_off+0x50/0x220 [ 78.100225][ T8475] ? trace_hardirqs_on+0x55/0x220 [ 78.105329][ T8475] ? snd_pcm_oss_sync.isra.0+0x7d0/0x7d0 [ 78.110943][ T8475] snd_pcm_oss_change_params+0x76/0xd0 [ 78.116393][ T8475] snd_pcm_oss_make_ready+0xb7/0x170 [ 78.121654][ T8475] snd_pcm_oss_sync.isra.0+0x1be/0x7d0 [ 78.127181][ T8475] ? snd_pcm_oss_sync.isra.0+0x7d0/0x7d0 [ 78.132832][ T8475] snd_pcm_oss_release+0x210/0x280 [ 78.137923][ T8475] __fput+0x2da/0x850 [ 78.142041][ T8475] task_work_run+0xf4/0x1b0 [ 78.146539][ T8475] exit_to_usermode_loop+0x2fa/0x360 [ 78.151815][ T8475] do_syscall_64+0x6b1/0x7d0 [ 78.156387][ T8475] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 78.162292][ T8475] RIP: 0033:0x4afb40 [ 78.166181][ T8475] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 78.185902][ T8475] RSP: 002b:000000c0001e3588 EFLAGS: 00000212 ORIG_RAX: 0000000000000003 [ 78.195095][ T8475] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 78.203060][ T8475] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 78.211019][ T8475] RBP: 000000c0001e35c8 R08: 0000000000000000 R09: 0000000000000000 [ 78.218977][ T8475] R10: 0000000000000000 R11: 0000000000000212 R12: 0000000000000005 [ 78.226934][ T8475] R13: 0000000000000004 R14: 0000000000000200 R15: 0000000000000000 [ 78.236212][ T8475] Kernel Offset: disabled [ 78.240547][ T8475] Rebooting in 86400 seconds..