[   67.790348][   T27] audit: type=1800 audit(1583997563.668:26): pid=8439 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   67.823972][   T27] audit: type=1800 audit(1583997563.678:27): pid=8439 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[   67.845372][   T27] audit: type=1800 audit(1583997563.678:28): pid=8439 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   68.406595][   T27] audit: type=1800 audit(1583997564.318:29): pid=8439 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.220' (ECDSA) to the list of known hosts.
2020/03/12 07:19:36 fuzzer started
syzkaller login: [   80.229675][ T8594] check_preemption_disabled: 1 callbacks suppressed
[   80.229688][ T8594] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8594
[   80.248043][ T8594] caller is __mod_memcg_state+0x27/0x1a0
[   80.253724][ T8594] CPU: 0 PID: 8594 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   80.263418][ T8594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   80.273475][ T8594] Call Trace:
[   80.276780][ T8594]  dump_stack+0x188/0x20d
[   80.281156][ T8594]  __this_cpu_preempt_check.cold+0x84/0x90
[   80.286991][ T8594]  __mod_memcg_state+0x27/0x1a0
[   80.291873][ T8594]  split_huge_page_to_list+0x124b/0x3380
[   80.297558][ T8594]  ? mark_held_locks+0xe0/0xe0
[   80.302345][ T8594]  ? lock_downgrade+0x7f0/0x7f0
[   80.307226][ T8594]  ? can_split_huge_page+0x480/0x480
[   80.312528][ T8594]  ? pmd_val+0x7c/0xf0
[   80.316601][ T8594]  ? pmd_pfn+0x125/0x1c0
[   80.320871][ T8594]  ? enabled_store+0x190/0x190
[   80.325640][ T8594]  madvise_free_huge_pmd+0x873/0xb90
[   80.331069][ T8594]  madvise_free_pte_range+0x6ff/0x2650
[   80.336539][ T8594]  ? _raw_spin_unlock_irqrestore+0x9b/0xe0
[   80.342349][ T8594]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   80.349398][ T8594]  __walk_page_range+0xcfb/0x2070
[   80.354444][ T8594]  ? walk_page_test+0x78/0x180
[   80.359207][ T8594]  walk_page_range+0x1bd/0x3a0
[   80.363974][ T8594]  ? __walk_page_range+0x2070/0x2070
[   80.369349][ T8594]  ? madvise_free_single_vma+0x2c1/0x550
[   80.374985][ T8594]  madvise_free_single_vma+0x384/0x550
[   80.380447][ T8594]  ? madvise_pageout+0x3b0/0x3b0
[   80.385996][ T8594]  ? lock_acquire+0x197/0x420
[   80.390697][ T8594]  ? userfaultfd_remove+0xf0/0x2b0
[   80.395814][ T8594]  ? vmacache_find+0x62/0x300
[   80.400508][ T8594]  ? find_vma+0x2b/0x170
[   80.404851][ T8594]  do_madvise+0x5ba/0x1b80
[   80.409269][ T8594]  ? lock_downgrade+0x7f0/0x7f0
[   80.414128][ T8594]  ? madvise_free_pte_range+0x2650/0x2650
[   80.419860][ T8594]  ? ktime_get+0x1f8/0x2f0
[   80.424279][ T8594]  ? __x64_sys_futex+0x376/0x4f0
[   80.429307][ T8594]  ? switch_fpu_return+0x1db/0x4b0
[   80.434434][ T8594]  ? fpregs_mark_activate+0x320/0x320
[   80.439840][ T8594]  ? __x64_sys_madvise+0xae/0x120
[   80.444897][ T8594]  ? trace_hardirqs_on+0x55/0x220
[   80.449944][ T8594]  __x64_sys_madvise+0xae/0x120
[   80.454940][ T8594]  do_syscall_64+0xf6/0x7d0
[   80.459460][ T8594]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   80.465482][ T8594] RIP: 0033:0x460bf7
[   80.469393][ T8594] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   80.489020][ T8594] RSP: 002b:000000c0000dde70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   80.497442][ T8594] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   80.505414][ T8594] RDX: 0000000000000008 RSI: 0000000000012000 RDI: 000000c00025e000
[   80.513397][ T8594] RBP: 000000c0000ddeb0 R08: 000000c000200000 R09: 000000c000270000
[   80.521376][ T8594] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000002
[   80.529366][ T8594] R13: 00007f66b407d6d0 R14: 0000000000000004 R15: 00000000000000df
[   80.537538][ T8594] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8594
[   80.546428][ T8594] caller is __mod_memcg_state+0xca/0x1a0
[   80.552123][ T8594] CPU: 0 PID: 8594 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   80.561599][ T8594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   80.571652][ T8594] Call Trace:
[   80.575040][ T8594]  dump_stack+0x188/0x20d
[   80.579394][ T8594]  __this_cpu_preempt_check.cold+0x84/0x90
[   80.585217][ T8594]  __mod_memcg_state+0xca/0x1a0
[   80.590097][ T8594]  split_huge_page_to_list+0x124b/0x3380
[   80.595743][ T8594]  ? mark_held_locks+0xe0/0xe0
[   80.600509][ T8594]  ? lock_downgrade+0x7f0/0x7f0
[   80.605395][ T8594]  ? can_split_huge_page+0x480/0x480
[   80.610677][ T8594]  ? pmd_val+0x7c/0xf0
[   80.614847][ T8594]  ? pmd_pfn+0x125/0x1c0
[   80.619086][ T8594]  ? enabled_store+0x190/0x190
[   80.623854][ T8594]  madvise_free_huge_pmd+0x873/0xb90
[   80.629147][ T8594]  madvise_free_pte_range+0x6ff/0x2650
[   80.634611][ T8594]  ? _raw_spin_unlock_irqrestore+0x9b/0xe0
[   80.640416][ T8594]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   80.647280][ T8594]  __walk_page_range+0xcfb/0x2070
[   80.652331][ T8594]  ? walk_page_test+0x78/0x180
[   80.657236][ T8594]  walk_page_range+0x1bd/0x3a0
[   80.662187][ T8594]  ? __walk_page_range+0x2070/0x2070
[   80.667489][ T8594]  ? madvise_free_single_vma+0x2c1/0x550
[   80.673173][ T8594]  madvise_free_single_vma+0x384/0x550
[   80.678666][ T8594]  ? madvise_pageout+0x3b0/0x3b0
[   80.683619][ T8594]  ? lock_acquire+0x197/0x420
[   80.688471][ T8594]  ? userfaultfd_remove+0xf0/0x2b0
[   80.693601][ T8594]  ? vmacache_find+0x62/0x300
[   80.698418][ T8594]  ? find_vma+0x2b/0x170
[   80.702715][ T8594]  do_madvise+0x5ba/0x1b80
[   80.707224][ T8594]  ? lock_downgrade+0x7f0/0x7f0
[   80.712095][ T8594]  ? madvise_free_pte_range+0x2650/0x2650
[   80.717824][ T8594]  ? ktime_get+0x1f8/0x2f0
[   80.722253][ T8594]  ? __x64_sys_futex+0x376/0x4f0
[   80.727223][ T8594]  ? switch_fpu_return+0x1db/0x4b0
[   80.732336][ T8594]  ? fpregs_mark_activate+0x320/0x320
[   80.737868][ T8594]  ? __x64_sys_madvise+0xae/0x120
[   80.743197][ T8594]  ? trace_hardirqs_on+0x55/0x220
[   80.748250][ T8594]  __x64_sys_madvise+0xae/0x120
[   80.753270][ T8594]  do_syscall_64+0xf6/0x7d0
[   80.760255][ T8594]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   80.766430][ T8594] RIP: 0033:0x460bf7
[   80.770431][ T8594] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   80.790418][ T8594] RSP: 002b:000000c0000dde70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   80.799070][ T8594] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   80.807166][ T8594] RDX: 0000000000000008 RSI: 0000000000012000 RDI: 000000c00025e000
[   80.815279][ T8594] RBP: 000000c0000ddeb0 R08: 000000c000200000 R09: 000000c000270000
[   80.823263][ T8594] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000002
[   80.831419][ T8594] R13: 00007f66b407d6d0 R14: 0000000000000004 R15: 00000000000000df
[   80.840226][ T8594] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8594
[   80.849270][ T8594] caller is __mod_memcg_state+0x87/0x1a0
[   80.856330][ T8594] CPU: 0 PID: 8594 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   80.865886][ T8594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   80.875935][ T8594] Call Trace:
[   80.879324][ T8594]  dump_stack+0x188/0x20d
[   80.883662][ T8594]  __this_cpu_preempt_check.cold+0x84/0x90
[   80.889464][ T8594]  __mod_memcg_state+0x87/0x1a0
[   80.894320][ T8594]  split_huge_page_to_list+0x124b/0x3380
[   80.900308][ T8594]  ? mark_held_locks+0xe0/0xe0
[   80.905079][ T8594]  ? lock_downgrade+0x7f0/0x7f0
[   80.909930][ T8594]  ? can_split_huge_page+0x480/0x480
[   80.915497][ T8594]  ? pmd_val+0x7c/0xf0
[   80.919577][ T8594]  ? pmd_pfn+0x125/0x1c0
[   80.924038][ T8594]  ? enabled_store+0x190/0x190
[   80.928980][ T8594]  madvise_free_huge_pmd+0x873/0xb90
[   80.934361][ T8594]  madvise_free_pte_range+0x6ff/0x2650
[   80.939823][ T8594]  ? _raw_spin_unlock_irqrestore+0x9b/0xe0
[   80.945633][ T8594]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   80.952312][ T8594]  __walk_page_range+0xcfb/0x2070
[   80.957355][ T8594]  ? walk_page_test+0x78/0x180
[   80.962128][ T8594]  walk_page_range+0x1bd/0x3a0
[   80.967009][ T8594]  ? __walk_page_range+0x2070/0x2070
[   80.972310][ T8594]  ? madvise_free_single_vma+0x2c1/0x550
[   80.978028][ T8594]  madvise_free_single_vma+0x384/0x550
[   80.983581][ T8594]  ? madvise_pageout+0x3b0/0x3b0
[   80.988529][ T8594]  ? lock_acquire+0x197/0x420
[   80.993229][ T8594]  ? userfaultfd_remove+0xf0/0x2b0
[   80.998547][ T8594]  ? vmacache_find+0x62/0x300
[   81.003234][ T8594]  ? find_vma+0x2b/0x170
[   81.007509][ T8594]  do_madvise+0x5ba/0x1b80
[   81.011948][ T8594]  ? lock_downgrade+0x7f0/0x7f0
[   81.016823][ T8594]  ? madvise_free_pte_range+0x2650/0x2650
[   81.022798][ T8594]  ? ktime_get+0x1f8/0x2f0
[   81.027406][ T8594]  ? __x64_sys_futex+0x376/0x4f0
[   81.032374][ T8594]  ? switch_fpu_return+0x1db/0x4b0
[   81.037507][ T8594]  ? fpregs_mark_activate+0x320/0x320
[   81.042891][ T8594]  ? __x64_sys_madvise+0xae/0x120
[   81.048093][ T8594]  ? trace_hardirqs_on+0x55/0x220
[   81.053115][ T8594]  __x64_sys_madvise+0xae/0x120
[   81.057975][ T8594]  do_syscall_64+0xf6/0x7d0
[   81.062509][ T8594]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   81.068412][ T8594] RIP: 0033:0x460bf7
[   81.072306][ T8594] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   81.091924][ T8594] RSP: 002b:000000c0000dde70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   81.100335][ T8594] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   81.108389][ T8594] RDX: 0000000000000008 RSI: 0000000000012000 RDI: 000000c00025e000
[   81.116359][ T8594] RBP: 000000c0000ddeb0 R08: 000000c000200000 R09: 000000c000270000
[   81.124325][ T8594] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000002
[   81.132293][ T8594] R13: 00007f66b407d6d0 R14: 0000000000000004 R15: 00000000000000df
2020/03/12 07:19:38 connecting to host at 10.128.0.26:44525
2020/03/12 07:19:38 checking machine...
2020/03/12 07:19:38 checking revisions...
2020/03/12 07:19:38 testing simple program...
[   82.447249][ T8605] IPVS: ftp: loaded support on port[0] = 21
2020/03/12 07:19:38 building call list...
[   82.549791][ T8609] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8609
[   82.558957][ T8609] caller is __mod_memcg_state+0x27/0x1a0
[   82.564659][ T8609] CPU: 0 PID: 8609 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   82.574278][ T8609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   82.584344][ T8609] Call Trace:
[   82.587651][ T8609]  dump_stack+0x188/0x20d
[   82.592080][ T8609]  __this_cpu_preempt_check.cold+0x84/0x90
[   82.597914][ T8609]  __mod_memcg_state+0x27/0x1a0
[   82.602783][ T8609]  split_huge_page_to_list+0x124b/0x3380
[   82.608793][ T8609]  ? mark_held_locks+0xe0/0xe0
[   82.613569][ T8609]  ? can_split_huge_page+0x480/0x480
[   82.618875][ T8609]  ? pmd_val+0x7c/0xf0
[   82.622944][ T8609]  ? pmd_pfn+0x125/0x1c0
[   82.627197][ T8609]  ? enabled_store+0x190/0x190
[   82.631973][ T8609]  madvise_free_huge_pmd+0x873/0xb90
[   82.637274][ T8609]  madvise_free_pte_range+0x6ff/0x2650
[   82.642740][ T8609]  ? kmem_cache_free+0x7f/0x320
[   82.647592][ T8609]  ? do_madvise+0xbb3/0x1b80
[   82.652270][ T8609]  ? __x64_sys_madvise+0xae/0x120
[   82.657496][ T8609]  ? mem_cgroup_uncharge+0xf0/0xf0
[   82.662762][ T8609]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   82.669443][ T8609]  __walk_page_range+0xcfb/0x2070
[   82.674573][ T8609]  ? walk_page_test+0x78/0x180
[   82.679545][ T8609]  walk_page_range+0x1bd/0x3a0
[   82.684332][ T8609]  ? __walk_page_range+0x2070/0x2070
[   82.689642][ T8609]  ? madvise_free_single_vma+0x2c1/0x550
[   82.695302][ T8609]  madvise_free_single_vma+0x384/0x550
[   82.700750][ T8609]  ? madvise_pageout+0x3b0/0x3b0
[   82.705673][ T8609]  ? lock_acquire+0x197/0x420
[   82.710334][ T8609]  ? userfaultfd_remove+0xf0/0x2b0
[   82.715429][ T8609]  ? vmacache_find+0x62/0x300
[   82.720086][ T8609]  ? vmacache_update+0xce/0x140
[   82.724916][ T8609]  ? find_vma+0x2b/0x170
[   82.729147][ T8609]  do_madvise+0x5ba/0x1b80
[   82.733549][ T8609]  ? unuse_pde+0x2c/0x80
[   82.737783][ T8609]  ? madvise_free_pte_range+0x2650/0x2650
[   82.743509][ T8609]  ? wait_for_completion+0x3c0/0x3c0
[   82.748782][ T8609]  ? fput_many+0x2f/0x1a0
[   82.753093][ T8609]  ? ksys_read+0x19f/0x250
[   82.757493][ T8609]  ? kernel_write+0x120/0x120
[   82.762155][ T8609]  ? __x64_sys_madvise+0xae/0x120
[   82.767270][ T8609]  ? trace_hardirqs_on+0x55/0x220
[   82.772275][ T8609]  __x64_sys_madvise+0xae/0x120
[   82.777140][ T8609]  do_syscall_64+0xf6/0x7d0
[   82.781655][ T8609]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   82.787557][ T8609] RIP: 0033:0x460bf7
[   82.791456][ T8609] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   82.811679][ T8609] RSP: 002b:000000c00031dc50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   82.820095][ T8609] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   82.828060][ T8609] RDX: 0000000000000008 RSI: 0000000000002000 RDI: 000000c0001ca000
[   82.836031][ T8609] RBP: 000000c00031dc90 R08: 000000c000000000 R09: 000000c0001cc000
[   82.844022][ T8609] R10: 000000000003fe00 R11: 0000000000000246 R12: 000000000000001f
[   82.852086][ T8609] R13: 0000000000000000 R14: 0000000000ac7968 R15: 0000000000000000
[   82.860198][ T8609] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8609
[   82.870297][ T8609] caller is __mod_memcg_state+0xca/0x1a0
[   82.875930][ T8609] CPU: 0 PID: 8609 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   82.885374][ T8609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   82.895434][ T8609] Call Trace:
[   82.898744][ T8609]  dump_stack+0x188/0x20d
[   82.903109][ T8609]  __this_cpu_preempt_check.cold+0x84/0x90
[   82.908937][ T8609]  __mod_memcg_state+0xca/0x1a0
[   82.913812][ T8609]  split_huge_page_to_list+0x124b/0x3380
[   82.919449][ T8609]  ? mark_held_locks+0xe0/0xe0
[   82.924225][ T8609]  ? can_split_huge_page+0x480/0x480
[   82.929507][ T8609]  ? pmd_val+0x7c/0xf0
[   82.933575][ T8609]  ? pmd_pfn+0x125/0x1c0
[   82.937822][ T8609]  ? enabled_store+0x190/0x190
[   82.942598][ T8609]  madvise_free_huge_pmd+0x873/0xb90
[   82.947896][ T8609]  madvise_free_pte_range+0x6ff/0x2650
[   82.953371][ T8609]  ? kmem_cache_free+0x7f/0x320
[   82.958223][ T8609]  ? do_madvise+0xbb3/0x1b80
[   82.962811][ T8609]  ? __x64_sys_madvise+0xae/0x120
[   82.967843][ T8609]  ? mem_cgroup_uncharge+0xf0/0xf0
[   82.972953][ T8609]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   82.979629][ T8609]  __walk_page_range+0xcfb/0x2070
[   82.984682][ T8609]  ? walk_page_test+0x78/0x180
[   82.989447][ T8609]  walk_page_range+0x1bd/0x3a0
[   82.994209][ T8609]  ? __walk_page_range+0x2070/0x2070
[   82.999496][ T8609]  ? madvise_free_single_vma+0x2c1/0x550
[   83.005136][ T8609]  madvise_free_single_vma+0x384/0x550
[   83.010640][ T8609]  ? madvise_pageout+0x3b0/0x3b0
[   83.015603][ T8609]  ? lock_acquire+0x197/0x420
[   83.020299][ T8609]  ? userfaultfd_remove+0xf0/0x2b0
[   83.025434][ T8609]  ? vmacache_find+0x62/0x300
[   83.030112][ T8609]  ? vmacache_update+0xce/0x140
[   83.034983][ T8609]  ? find_vma+0x2b/0x170
[   83.039251][ T8609]  do_madvise+0x5ba/0x1b80
[   83.043788][ T8609]  ? unuse_pde+0x2c/0x80
[   83.048045][ T8609]  ? madvise_free_pte_range+0x2650/0x2650
[   83.053868][ T8609]  ? wait_for_completion+0x3c0/0x3c0
[   83.059149][ T8609]  ? fput_many+0x2f/0x1a0
[   83.063481][ T8609]  ? ksys_read+0x19f/0x250
[   83.067897][ T8609]  ? kernel_write+0x120/0x120
[   83.072570][ T8609]  ? __x64_sys_madvise+0xae/0x120
[   83.077577][ T8609]  ? trace_hardirqs_on+0x55/0x220
[   83.082583][ T8609]  __x64_sys_madvise+0xae/0x120
[   83.087441][ T8609]  do_syscall_64+0xf6/0x7d0
[   83.091946][ T8609]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   83.097856][ T8609] RIP: 0033:0x460bf7
[   83.101747][ T8609] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   83.121336][ T8609] RSP: 002b:000000c00031dc50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   83.130079][ T8609] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   83.138156][ T8609] RDX: 0000000000000008 RSI: 0000000000002000 RDI: 000000c0001ca000
[   83.146123][ T8609] RBP: 000000c00031dc90 R08: 000000c000000000 R09: 000000c0001cc000
[   83.154097][ T8609] R10: 000000000003fe00 R11: 0000000000000246 R12: 000000000000001f
[   83.162146][ T8609] R13: 0000000000000000 R14: 0000000000ac7968 R15: 0000000000000000
[   83.170197][ T8609] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8609
[   83.179256][ T8609] caller is __mod_memcg_state+0x87/0x1a0
[   83.184957][ T8609] CPU: 0 PID: 8609 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   83.194437][ T8609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   83.204495][ T8609] Call Trace:
[   83.207801][ T8609]  dump_stack+0x188/0x20d
[   83.212147][ T8609]  __this_cpu_preempt_check.cold+0x84/0x90
[   83.217956][ T8609]  __mod_memcg_state+0x87/0x1a0
[   83.222993][ T8609]  split_huge_page_to_list+0x124b/0x3380
[   83.228637][ T8609]  ? mark_held_locks+0xe0/0xe0
[   83.233422][ T8609]  ? can_split_huge_page+0x480/0x480
[   83.238723][ T8609]  ? pmd_val+0x7c/0xf0
[   83.242793][ T8609]  ? pmd_pfn+0x125/0x1c0
[   83.247041][ T8609]  ? enabled_store+0x190/0x190
[   83.251818][ T8609]  madvise_free_huge_pmd+0x873/0xb90
[   83.257226][ T8609]  madvise_free_pte_range+0x6ff/0x2650
[   83.262690][ T8609]  ? kmem_cache_free+0x7f/0x320
[   83.267538][ T8609]  ? do_madvise+0xbb3/0x1b80
[   83.272143][ T8609]  ? __x64_sys_madvise+0xae/0x120
[   83.277181][ T8609]  ? mem_cgroup_uncharge+0xf0/0xf0
[   83.282310][ T8609]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   83.289016][ T8609]  __walk_page_range+0xcfb/0x2070
[   83.294057][ T8609]  ? walk_page_test+0x78/0x180
[   83.298824][ T8609]  walk_page_range+0x1bd/0x3a0
[   83.303604][ T8609]  ? __walk_page_range+0x2070/0x2070
[   83.308893][ T8609]  ? madvise_free_single_vma+0x2c1/0x550
[   83.314558][ T8609]  madvise_free_single_vma+0x384/0x550
[   83.320103][ T8609]  ? madvise_pageout+0x3b0/0x3b0
[   83.325067][ T8609]  ? lock_acquire+0x197/0x420
[   83.329752][ T8609]  ? userfaultfd_remove+0xf0/0x2b0
[   83.334869][ T8609]  ? vmacache_find+0x62/0x300
[   83.339542][ T8609]  ? vmacache_update+0xce/0x140
[   83.344389][ T8609]  ? find_vma+0x2b/0x170
[   83.348621][ T8609]  do_madvise+0x5ba/0x1b80
[   83.353044][ T8609]  ? unuse_pde+0x2c/0x80
[   83.357280][ T8609]  ? madvise_free_pte_range+0x2650/0x2650
[   83.363001][ T8609]  ? wait_for_completion+0x3c0/0x3c0
[   83.368274][ T8609]  ? fput_many+0x2f/0x1a0
[   83.372759][ T8609]  ? ksys_read+0x19f/0x250
[   83.377156][ T8609]  ? kernel_write+0x120/0x120
[   83.381818][ T8609]  ? __x64_sys_madvise+0xae/0x120
[   83.386856][ T8609]  ? trace_hardirqs_on+0x55/0x220
[   83.391876][ T8609]  __x64_sys_madvise+0xae/0x120
[   83.396833][ T8609]  do_syscall_64+0xf6/0x7d0
[   83.401340][ T8609]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   83.407233][ T8609] RIP: 0033:0x460bf7
[   83.411241][ T8609] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   83.430858][ T8609] RSP: 002b:000000c00031dc50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   83.439287][ T8609] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   83.447373][ T8609] RDX: 0000000000000008 RSI: 0000000000002000 RDI: 000000c0001ca000
[   83.455348][ T8609] RBP: 000000c00031dc90 R08: 000000c000000000 R09: 000000c0001cc000
[   83.463363][ T8609] R10: 000000000003fe00 R11: 0000000000000246 R12: 000000000000001f
[   83.471332][ T8609] R13: 0000000000000000 R14: 0000000000ac7968 R15: 0000000000000000
[   83.669242][ T8591] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8591
[   83.678427][ T8591] caller is __mod_memcg_state+0x27/0x1a0
[   83.684099][ T8591] CPU: 0 PID: 8591 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   83.693730][ T8591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   83.703786][ T8591] Call Trace:
[   83.707071][ T8591]  dump_stack+0x188/0x20d
[   83.711409][ T8591]  __this_cpu_preempt_check.cold+0x84/0x90
[   83.717352][ T8591]  __mod_memcg_state+0x27/0x1a0
[   83.722194][ T8591]  split_huge_page_to_list+0x124b/0x3380
[   83.727829][ T8591]  ? mark_held_locks+0xe0/0xe0
[   83.732598][ T8591]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   83.738059][ T8591]  ? can_split_huge_page+0x480/0x480
[   83.743334][ T8591]  ? pmd_val+0x7c/0xf0
[   83.747513][ T8591]  ? pmd_pfn+0x125/0x1c0
[   83.751742][ T8591]  ? enabled_store+0x190/0x190
[   83.756498][ T8591]  madvise_free_huge_pmd+0x873/0xb90
[   83.761785][ T8591]  madvise_free_pte_range+0x6ff/0x2650
[   83.767238][ T8591]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   83.773916][ T8591]  __walk_page_range+0xcfb/0x2070
[   83.779131][ T8591]  ? walk_page_test+0x78/0x180
[   83.784090][ T8591]  walk_page_range+0x1bd/0x3a0
[   83.788862][ T8591]  ? __walk_page_range+0x2070/0x2070
[   83.794148][ T8591]  ? madvise_free_single_vma+0x2c1/0x550
[   83.799790][ T8591]  madvise_free_single_vma+0x384/0x550
[   83.805238][ T8591]  ? madvise_pageout+0x3b0/0x3b0
[   83.810284][ T8591]  ? lock_acquire+0x197/0x420
[   83.815061][ T8591]  ? userfaultfd_remove+0xf0/0x2b0
[   83.820255][ T8591]  ? vmacache_find+0x62/0x300
[   83.825068][ T8591]  ? find_vma+0x2b/0x170
[   83.829312][ T8591]  do_madvise+0x5ba/0x1b80
[   83.833753][ T8591]  ? unuse_pde+0x2c/0x80
[   83.838001][ T8591]  ? madvise_free_pte_range+0x2650/0x2650
[   83.843708][ T8591]  ? __x64_sys_futex+0x376/0x4f0
[   83.848750][ T8591]  ? fput_many+0x2f/0x1a0
[   83.853489][ T8591]  ? do_futex+0x1b10/0x1b10
[   83.858118][ T8591]  ? ksys_read+0x19f/0x250
[   83.862536][ T8591]  ? kernel_write+0x120/0x120
[   83.867223][ T8591]  ? __x64_sys_madvise+0xae/0x120
[   83.872229][ T8591]  ? trace_hardirqs_on+0x55/0x220
[   83.877247][ T8591]  __x64_sys_madvise+0xae/0x120
[   83.882083][ T8591]  do_syscall_64+0xf6/0x7d0
[   83.886579][ T8591]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   83.892452][ T8591] RIP: 0033:0x460bf7
[   83.896346][ T8591] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   83.916479][ T8591] RSP: 002b:000000c0000dfc50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   83.925138][ T8591] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   83.933196][ T8591] RDX: 0000000000000008 RSI: 0000000000080000 RDI: 000000c0003fc000
[   83.941234][ T8591] RBP: 000000c0000dfc90 R08: 000000c000200000 R09: 000000c00047c000
[   83.949185][ T8591] R10: 00000000001ffe00 R11: 0000000000000246 R12: 000000000149eea0
[   83.957144][ T8591] R13: 0000000000e8da20 R14: 0000000000000000 R15: 0000000000000000
[   83.965218][ T8591] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8591
[   83.974109][ T8591] caller is __mod_memcg_state+0xca/0x1a0
[   83.979811][ T8591] CPU: 0 PID: 8591 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   83.989323][ T8591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   84.001286][ T8591] Call Trace:
[   84.004799][ T8591]  dump_stack+0x188/0x20d
[   84.009247][ T8591]  __this_cpu_preempt_check.cold+0x84/0x90
[   84.015189][ T8591]  __mod_memcg_state+0xca/0x1a0
[   84.020152][ T8591]  split_huge_page_to_list+0x124b/0x3380
[   84.026251][ T8591]  ? mark_held_locks+0xe0/0xe0
[   84.031288][ T8591]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   84.037054][ T8591]  ? can_split_huge_page+0x480/0x480
[   84.046163][ T8591]  ? pmd_val+0x7c/0xf0
[   84.050242][ T8591]  ? pmd_pfn+0x125/0x1c0
[   84.054822][ T8591]  ? enabled_store+0x190/0x190
[   84.059598][ T8591]  madvise_free_huge_pmd+0x873/0xb90
[   84.064874][ T8591]  madvise_free_pte_range+0x6ff/0x2650
[   84.070340][ T8591]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   84.077093][ T8591]  __walk_page_range+0xcfb/0x2070
[   84.082107][ T8591]  ? walk_page_test+0x78/0x180
[   84.086850][ T8591]  walk_page_range+0x1bd/0x3a0
[   84.091610][ T8591]  ? __walk_page_range+0x2070/0x2070
[   84.097325][ T8591]  ? madvise_free_single_vma+0x2c1/0x550
[   84.102962][ T8591]  madvise_free_single_vma+0x384/0x550
[   84.108402][ T8591]  ? madvise_pageout+0x3b0/0x3b0
[   84.113354][ T8591]  ? lock_acquire+0x197/0x420
[   84.118014][ T8591]  ? userfaultfd_remove+0xf0/0x2b0
[   84.123120][ T8591]  ? vmacache_find+0x62/0x300
[   84.127838][ T8591]  ? find_vma+0x2b/0x170
[   84.132490][ T8591]  do_madvise+0x5ba/0x1b80
[   84.136898][ T8591]  ? unuse_pde+0x2c/0x80
[   84.141237][ T8591]  ? madvise_free_pte_range+0x2650/0x2650
[   84.146958][ T8591]  ? __x64_sys_futex+0x376/0x4f0
[   84.151878][ T8591]  ? fput_many+0x2f/0x1a0
[   84.156219][ T8591]  ? do_futex+0x1b10/0x1b10
[   84.160978][ T8591]  ? ksys_read+0x19f/0x250
[   84.165502][ T8591]  ? kernel_write+0x120/0x120
[   84.170636][ T8591]  ? __x64_sys_madvise+0xae/0x120
[   84.175749][ T8591]  ? trace_hardirqs_on+0x55/0x220
[   84.180777][ T8591]  __x64_sys_madvise+0xae/0x120
[   84.185619][ T8591]  do_syscall_64+0xf6/0x7d0
[   84.190103][ T8591]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   84.195981][ T8591] RIP: 0033:0x460bf7
[   84.199876][ T8591] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   84.220568][ T8591] RSP: 002b:000000c0000dfc50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   84.228977][ T8591] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   84.238755][ T8591] RDX: 0000000000000008 RSI: 0000000000080000 RDI: 000000c0003fc000
[   84.246815][ T8591] RBP: 000000c0000dfc90 R08: 000000c000200000 R09: 000000c00047c000
[   84.255036][ T8591] R10: 00000000001ffe00 R11: 0000000000000246 R12: 000000000149eea0
[   84.263738][ T8591] R13: 0000000000e8da20 R14: 0000000000000000 R15: 0000000000000000
[   84.272154][ T8591] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8591
[   84.281380][ T8591] caller is __mod_memcg_state+0x87/0x1a0
[   84.287196][ T8591] CPU: 0 PID: 8591 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   84.296684][ T8591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   84.308995][ T8591] Call Trace:
[   84.312349][ T8591]  dump_stack+0x188/0x20d
[   84.316683][ T8591]  __this_cpu_preempt_check.cold+0x84/0x90
[   84.322487][ T8591]  __mod_memcg_state+0x87/0x1a0
[   84.327456][ T8591]  split_huge_page_to_list+0x124b/0x3380
[   84.333103][ T8591]  ? mark_held_locks+0xe0/0xe0
[   84.337848][ T8591]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   84.343289][ T8591]  ? can_split_huge_page+0x480/0x480
[   84.348551][ T8591]  ? pmd_val+0x7c/0xf0
[   84.352736][ T8591]  ? pmd_pfn+0x125/0x1c0
[   84.356973][ T8591]  ? enabled_store+0x190/0x190
[   84.361839][ T8591]  madvise_free_huge_pmd+0x873/0xb90
[   84.368599][ T8591]  madvise_free_pte_range+0x6ff/0x2650
[   84.374049][ T8591]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   84.380708][ T8591]  __walk_page_range+0xcfb/0x2070
[   84.385735][ T8591]  ? walk_page_test+0x78/0x180
[   84.390492][ T8591]  walk_page_range+0x1bd/0x3a0
[   84.395593][ T8591]  ? __walk_page_range+0x2070/0x2070
[   84.400869][ T8591]  ? madvise_free_single_vma+0x2c1/0x550
[   84.406497][ T8591]  madvise_free_single_vma+0x384/0x550
[   84.411952][ T8591]  ? madvise_pageout+0x3b0/0x3b0
[   84.416991][ T8591]  ? lock_acquire+0x197/0x420
[   84.421773][ T8591]  ? userfaultfd_remove+0xf0/0x2b0
[   84.426980][ T8591]  ? vmacache_find+0x62/0x300
[   84.431655][ T8591]  ? find_vma+0x2b/0x170
[   84.435893][ T8591]  do_madvise+0x5ba/0x1b80
[   84.440293][ T8591]  ? unuse_pde+0x2c/0x80
[   84.444532][ T8591]  ? madvise_free_pte_range+0x2650/0x2650
[   84.450237][ T8591]  ? __x64_sys_futex+0x376/0x4f0
[   84.455172][ T8591]  ? fput_many+0x2f/0x1a0
[   84.459499][ T8591]  ? do_futex+0x1b10/0x1b10
[   84.467721][ T8591]  ? ksys_read+0x19f/0x250
[   84.472137][ T8591]  ? kernel_write+0x120/0x120
[   84.477032][ T8591]  ? __x64_sys_madvise+0xae/0x120
[   84.482180][ T8591]  ? trace_hardirqs_on+0x55/0x220
[   84.487231][ T8591]  __x64_sys_madvise+0xae/0x120
[   84.492317][ T8591]  do_syscall_64+0xf6/0x7d0
[   84.496811][ T8591]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   84.502821][ T8591] RIP: 0033:0x460bf7
[   84.506711][ T8591] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   84.526310][ T8591] RSP: 002b:000000c0000dfc50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   84.534887][ T8591] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   84.543038][ T8591] RDX: 0000000000000008 RSI: 0000000000080000 RDI: 000000c0003fc000
[   84.551006][ T8591] RBP: 000000c0000dfc90 R08: 000000c000200000 R09: 000000c00047c000
[   84.559356][ T8591] R10: 00000000001ffe00 R11: 0000000000000246 R12: 000000000149eea0
[   84.567514][ T8591] R13: 0000000000e8da20 R14: 0000000000000000 R15: 0000000000000000
[   84.590307][  T238] tipc: TX() has been purged, node left!
[   85.146148][ T8593] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8593
[   85.155575][ T8593] caller is __mod_memcg_state+0x27/0x1a0
[   85.161239][ T8593] CPU: 0 PID: 8593 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   85.170805][ T8593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   85.181484][ T8593] Call Trace:
[   85.184776][ T8593]  dump_stack+0x188/0x20d
[   85.189114][ T8593]  __this_cpu_preempt_check.cold+0x84/0x90
[   85.194938][ T8593]  __mod_memcg_state+0x27/0x1a0
[   85.199951][ T8593]  split_huge_page_to_list+0x124b/0x3380
[   85.205598][ T8593]  ? mark_held_locks+0xe0/0xe0
[   85.210700][ T8593]  ? release_pages+0x656/0x19b0
[   85.215535][ T8593]  ? can_split_huge_page+0x480/0x480
[   85.220812][ T8593]  ? pmd_val+0x7c/0xf0
[   85.224861][ T8593]  ? pmd_pfn+0x125/0x1c0
[   85.229171][ T8593]  ? enabled_store+0x190/0x190
[   85.233922][ T8593]  madvise_free_huge_pmd+0x873/0xb90
[   85.239209][ T8593]  madvise_free_pte_range+0x6ff/0x2650
executing program
[   85.244667][ T8593]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   85.251451][ T8593]  __walk_page_range+0xcfb/0x2070
[   85.256580][ T8593]  ? walk_page_test+0x78/0x180
[   85.261693][ T8593]  walk_page_range+0x1bd/0x3a0
[   85.266463][ T8593]  ? __walk_page_range+0x2070/0x2070
[   85.271857][ T8593]  ? madvise_free_single_vma+0x2c1/0x550
[   85.277789][ T8593]  madvise_free_single_vma+0x384/0x550
[   85.283252][ T8593]  ? madvise_pageout+0x3b0/0x3b0
[   85.288207][ T8593]  ? lock_acquire+0x197/0x420
[   85.292878][ T8593]  ? userfaultfd_remove+0xf0/0x2b0
[   85.298099][ T8593]  ? vmacache_find+0x62/0x300
[   85.302786][ T8593]  ? vmacache_update+0xce/0x140
[   85.307715][ T8593]  ? find_vma+0x2b/0x170
[   85.311978][ T8593]  do_madvise+0x5ba/0x1b80
[   85.316503][ T8593]  ? unuse_pde+0x2c/0x80
[   85.320815][ T8593]  ? madvise_free_pte_range+0x2650/0x2650
[   85.326709][ T8593]  ? __x64_sys_futex+0x376/0x4f0
[   85.331642][ T8593]  ? fput_many+0x2f/0x1a0
[   85.335992][ T8593]  ? do_futex+0x1b10/0x1b10
[   85.340760][ T8593]  ? ksys_read+0x19f/0x250
[   85.345271][ T8593]  ? kernel_write+0x120/0x120
[   85.350036][ T8593]  ? __x64_sys_madvise+0xae/0x120
[   85.355156][ T8593]  ? trace_hardirqs_on+0x55/0x220
[   85.360156][ T8593]  __x64_sys_madvise+0xae/0x120
[   85.364996][ T8593]  do_syscall_64+0xf6/0x7d0
[   85.374402][ T8593]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   85.380772][ T8593] RIP: 0033:0x460bf7
[   85.384668][ T8593] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   85.404357][ T8593] RSP: 002b:000000c0000d9c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   85.412761][ T8593] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   85.420713][ T8593] RDX: 0000000000000008 RSI: 0000000000200000 RDI: 000000c00057c000
[   85.428663][ T8593] RBP: 000000c0000d9c90 R08: 000000c000400000 R09: 000000c00077c000
[   85.439464][ T8593] R10: 00000000007ffe00 R11: 0000000000000246 R12: 000000000149cec0
[   85.447490][ T8593] R13: 0000000000e8da20 R14: 0000000000000000 R15: 0000000000000000
[   85.455511][ T8593] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8593
[   85.464392][ T8593] caller is __mod_memcg_state+0xca/0x1a0
[   85.470338][ T8593] CPU: 0 PID: 8593 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   85.480045][ T8593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   85.490280][ T8593] Call Trace:
[   85.493566][ T8593]  dump_stack+0x188/0x20d
[   85.497881][ T8593]  __this_cpu_preempt_check.cold+0x84/0x90
[   85.503671][ T8593]  __mod_memcg_state+0xca/0x1a0
[   85.508508][ T8593]  split_huge_page_to_list+0x124b/0x3380
[   85.514220][ T8593]  ? mark_held_locks+0xe0/0xe0
[   85.518967][ T8593]  ? release_pages+0x656/0x19b0
[   85.523807][ T8593]  ? can_split_huge_page+0x480/0x480
[   85.529195][ T8593]  ? pmd_val+0x7c/0xf0
[   85.533448][ T8593]  ? pmd_pfn+0x125/0x1c0
[   85.537686][ T8593]  ? enabled_store+0x190/0x190
[   85.542453][ T8593]  madvise_free_huge_pmd+0x873/0xb90
[   85.547740][ T8593]  madvise_free_pte_range+0x6ff/0x2650
[   85.553199][ T8593]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   85.560005][ T8593]  __walk_page_range+0xcfb/0x2070
[   85.565039][ T8593]  ? walk_page_test+0x78/0x180
[   85.569788][ T8593]  walk_page_range+0x1bd/0x3a0
[   85.574548][ T8593]  ? __walk_page_range+0x2070/0x2070
[   85.579819][ T8593]  ? madvise_free_single_vma+0x2c1/0x550
[   85.585886][ T8593]  madvise_free_single_vma+0x384/0x550
[   85.591337][ T8593]  ? madvise_pageout+0x3b0/0x3b0
[   85.596801][ T8593]  ? lock_acquire+0x197/0x420
[   85.601573][ T8593]  ? userfaultfd_remove+0xf0/0x2b0
[   85.606723][ T8593]  ? vmacache_find+0x62/0x300
[   85.611535][ T8593]  ? vmacache_update+0xce/0x140
[   85.616468][ T8593]  ? find_vma+0x2b/0x170
[   85.620699][ T8593]  do_madvise+0x5ba/0x1b80
[   85.625200][ T8593]  ? unuse_pde+0x2c/0x80
[   85.629927][ T8593]  ? madvise_free_pte_range+0x2650/0x2650
[   85.636674][ T8593]  ? __x64_sys_futex+0x376/0x4f0
[   85.641695][ T8593]  ? fput_many+0x2f/0x1a0
[   85.646025][ T8593]  ? do_futex+0x1b10/0x1b10
[   85.650533][ T8593]  ? ksys_read+0x19f/0x250
[   85.654960][ T8593]  ? kernel_write+0x120/0x120
[   85.659720][ T8593]  ? __x64_sys_madvise+0xae/0x120
[   85.664753][ T8593]  ? trace_hardirqs_on+0x55/0x220
[   85.670348][ T8593]  __x64_sys_madvise+0xae/0x120
[   85.675508][ T8593]  do_syscall_64+0xf6/0x7d0
[   85.680011][ T8593]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   85.685917][ T8593] RIP: 0033:0x460bf7
[   85.689978][ T8593] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   85.710102][ T8593] RSP: 002b:000000c0000d9c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   85.718884][ T8593] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   85.726928][ T8593] RDX: 0000000000000008 RSI: 0000000000200000 RDI: 000000c00057c000
[   85.734883][ T8593] RBP: 000000c0000d9c90 R08: 000000c000400000 R09: 000000c00077c000
[   85.743066][ T8593] R10: 00000000007ffe00 R11: 0000000000000246 R12: 000000000149cec0
[   85.751126][ T8593] R13: 0000000000e8da20 R14: 0000000000000000 R15: 0000000000000000
[   85.759191][ T8593] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8593
[   85.768292][ T8593] caller is __mod_memcg_state+0x87/0x1a0
[   85.774053][ T8593] CPU: 0 PID: 8593 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   85.783494][ T8593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   85.793585][ T8593] Call Trace:
[   85.796864][ T8593]  dump_stack+0x188/0x20d
[   85.801180][ T8593]  __this_cpu_preempt_check.cold+0x84/0x90
[   85.806976][ T8593]  __mod_memcg_state+0x87/0x1a0
[   85.811940][ T8593]  split_huge_page_to_list+0x124b/0x3380
[   85.817564][ T8593]  ? mark_held_locks+0xe0/0xe0
[   85.822314][ T8593]  ? release_pages+0x656/0x19b0
[   85.827177][ T8593]  ? can_split_huge_page+0x480/0x480
[   85.832629][ T8593]  ? pmd_val+0x7c/0xf0
[   85.836704][ T8593]  ? pmd_pfn+0x125/0x1c0
[   85.841050][ T8593]  ? enabled_store+0x190/0x190
[   85.845879][ T8593]  madvise_free_huge_pmd+0x873/0xb90
[   85.851254][ T8593]  madvise_free_pte_range+0x6ff/0x2650
[   85.856717][ T8593]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   85.863466][ T8593]  __walk_page_range+0xcfb/0x2070
[   85.868497][ T8593]  ? walk_page_test+0x78/0x180
[   85.873497][ T8593]  walk_page_range+0x1bd/0x3a0
[   85.878247][ T8593]  ? __walk_page_range+0x2070/0x2070
[   85.883544][ T8593]  ? madvise_free_single_vma+0x2c1/0x550
[   85.889173][ T8593]  madvise_free_single_vma+0x384/0x550
[   85.894725][ T8593]  ? madvise_pageout+0x3b0/0x3b0
[   85.899642][ T8593]  ? lock_acquire+0x197/0x420
[   85.904401][ T8593]  ? userfaultfd_remove+0xf0/0x2b0
[   85.909608][ T8593]  ? vmacache_find+0x62/0x300
[   85.914357][ T8593]  ? vmacache_update+0xce/0x140
[   85.919305][ T8593]  ? find_vma+0x2b/0x170
[   85.923548][ T8593]  do_madvise+0x5ba/0x1b80
[   85.928051][ T8593]  ? unuse_pde+0x2c/0x80
[   85.932309][ T8593]  ? madvise_free_pte_range+0x2650/0x2650
[   85.938011][ T8593]  ? __x64_sys_futex+0x376/0x4f0
[   85.942934][ T8593]  ? fput_many+0x2f/0x1a0
[   85.947514][ T8593]  ? do_futex+0x1b10/0x1b10
[   85.951995][ T8593]  ? ksys_read+0x19f/0x250
[   85.956391][ T8593]  ? kernel_write+0x120/0x120
[   85.961074][ T8593]  ? __x64_sys_madvise+0xae/0x120
[   85.966074][ T8593]  ? trace_hardirqs_on+0x55/0x220
[   85.971222][ T8593]  __x64_sys_madvise+0xae/0x120
[   85.976099][ T8593]  do_syscall_64+0xf6/0x7d0
[   85.980597][ T8593]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   85.986754][ T8593] RIP: 0033:0x460bf7
[   85.991160][ T8593] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   86.011481][ T8593] RSP: 002b:000000c0000d9c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   86.020080][ T8593] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   86.028296][ T8593] RDX: 0000000000000008 RSI: 0000000000200000 RDI: 000000c00057c000
[   86.036342][ T8593] RBP: 000000c0000d9c90 R08: 000000c000400000 R09: 000000c00077c000
[   86.044302][ T8593] R10: 00000000007ffe00 R11: 0000000000000246 R12: 000000000149cec0
[   86.052343][ T8593] R13: 0000000000e8da20 R14: 0000000000000000 R15: 0000000000000000
[   86.400709][ T8593] ------------[ cut here ]------------
[   86.406663][ T8593] WARNING: CPU: 1 PID: 8593 at sound/core/oss/pcm_plugin.c:126 snd_pcm_plug_alloc+0x29a/0x330
[   86.417147][ T8593] Kernel panic - not syncing: panic_on_warn set ...
[   86.424137][ T8593] CPU: 1 PID: 8593 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   86.434005][ T8593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   86.444857][ T8593] Call Trace:
[   86.448159][ T8593]  dump_stack+0x188/0x20d
[   86.453190][ T8593]  ? snd_pcm_plug_alloc+0x1c0/0x330
[   86.458685][ T8593]  panic+0x2e3/0x75c
[   86.462584][ T8593]  ? add_taint.cold+0x16/0x16
[   86.467305][ T8593]  ? printk+0xba/0xed
[   86.471311][ T8593]  ? kmsg_dump_rewind_nolock+0xd9/0xd9
[   86.476754][ T8593]  ? __warn.cold+0x14/0x35
[   86.481315][ T8593]  ? __warn+0xd5/0x1c8
[   86.485513][ T8593]  ? snd_pcm_plug_alloc+0x29a/0x330
[   86.490878][ T8593]  __warn.cold+0x2f/0x35
[   86.495278][ T8593]  ? snd_pcm_plug_alloc+0x29a/0x330
[   86.500481][ T8593]  report_bug+0x27b/0x2f0
[   86.504812][ T8593]  do_error_trap+0x12b/0x220
[   86.510447][ T8593]  ? snd_pcm_plug_alloc+0x29a/0x330
[   86.515633][ T8593]  do_invalid_op+0x32/0x40
[   86.520461][ T8593]  ? snd_pcm_plug_alloc+0x29a/0x330
[   86.525635][ T8593]  invalid_op+0x23/0x30
[   86.529787][ T8593] RIP: 0010:snd_pcm_plug_alloc+0x29a/0x330
[   86.535572][ T8593] Code: ff ff 45 31 e4 e8 b6 09 80 fb 44 89 e0 5b 5d 41 5c 41 5d 41 5e c3 e8 a5 09 80 fb 0f 0b 41 bc fa ff ff ff eb e0 e8 96 09 80 fb <0f> 0b 41 bc fa ff ff ff eb d1 e8 87 09 80 fb 0f 0b 41 bc fa ff ff
[   86.555165][ T8593] RSP: 0018:ffffc90002137b88 EFLAGS: 00010293
[   86.561220][ T8593] RAX: ffff888094b74340 RBX: ffff8880a117d500 RCX: ffffffff85f2bb56
[   86.569199][ T8593] RDX: 0000000000000000 RSI: ffffffff85f2bcda RDI: 0000000000000007
[   86.577160][ T8593] RBP: 0000000000000000 R08: ffff888094b74340 R09: ffffed1042aaf11f
[   86.585572][ T8593] R10: ffff8882155788f3 R11: ffffed1042aaf11e R12: ffff8880a117d558
[   86.593524][ T8593] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff888215578800
[   86.601581][ T8593]  ? snd_pcm_plug_alloc+0x116/0x330
[   86.606811][ T8593]  ? snd_pcm_plug_alloc+0x29a/0x330
[   86.612152][ T8593]  ? snd_pcm_plug_alloc+0x29a/0x330
[   86.617546][ T8593]  snd_pcm_oss_change_params_locked+0x1c05/0x34b0
[   86.624374][ T8593]  ? _snd_pcm_hw_param_set.constprop.0+0x510/0x510
[   86.631020][ T8593]  ? trace_hardirqs_off+0x50/0x220
[   86.636234][ T8593]  ? trace_hardirqs_on+0x55/0x220
[   86.641295][ T8593]  ? snd_pcm_oss_sync.isra.0+0x7d0/0x7d0
[   86.647800][ T8593]  snd_pcm_oss_change_params+0x76/0xd0
[   86.653672][ T8593]  snd_pcm_oss_make_ready+0xb7/0x170
[   86.659337][ T8593]  snd_pcm_oss_sync.isra.0+0x1be/0x7d0
[   86.664783][ T8593]  ? snd_pcm_oss_sync.isra.0+0x7d0/0x7d0
[   86.670417][ T8593]  snd_pcm_oss_release+0x210/0x280
[   86.675841][ T8593]  __fput+0x2da/0x850
[   86.679964][ T8593]  task_work_run+0xf4/0x1b0
[   86.684851][ T8593]  exit_to_usermode_loop+0x2fa/0x360
[   86.690205][ T8593]  do_syscall_64+0x6b1/0x7d0
[   86.694811][ T8593]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   86.701324][ T8593] RIP: 0033:0x4afb40
[   86.705234][ T8593] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30
[   86.724827][ T8593] RSP: 002b:000000c0001ab588 EFLAGS: 00000212 ORIG_RAX: 0000000000000003
[   86.733230][ T8593] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40
[   86.741201][ T8593] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   86.750559][ T8593] RBP: 000000c0001ab5c8 R08: 0000000000000000 R09: 0000000000000000
[   86.758520][ T8593] R10: 0000000000000000 R11: 0000000000000212 R12: 0000000000000003
[   86.766486][ T8593] R13: 0000000000000002 R14: 0000000000000200 R15: 0000000000000000
[   86.776670][ T8593] Kernel Offset: disabled
[   86.781026][ T8593] Rebooting in 86400 seconds..