[   60.602651][   T27] audit: type=1800 audit(1583936651.951:27): pid=8263 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[   60.643788][   T27] audit: type=1800 audit(1583936651.951:28): pid=8263 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   61.143855][   T27] audit: type=1800 audit(1583936652.551:29): pid=8263 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   61.178270][   T27] audit: type=1800 audit(1583936652.551:30): pid=8263 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.1.2' (ECDSA) to the list of known hosts.
2020/03/11 14:24:19 fuzzer started
syzkaller login: [   68.331184][ T8419] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8419
[   68.340355][ T8419] caller is __mod_memcg_state+0x27/0x1a0
[   68.345991][ T8419] CPU: 0 PID: 8419 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   68.355431][ T8419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   68.365494][ T8419] Call Trace:
[   68.368797][ T8419]  dump_stack+0x188/0x20d
[   68.373115][ T8419]  __this_cpu_preempt_check.cold+0x84/0x90
[   68.378924][ T8419]  __mod_memcg_state+0x27/0x1a0
[   68.383775][ T8419]  split_huge_page_to_list+0x124b/0x3380
[   68.389412][ T8419]  ? mark_held_locks+0xe0/0xe0
[   68.394173][ T8419]  ? lock_downgrade+0x7f0/0x7f0
[   68.399020][ T8419]  ? can_split_huge_page+0x480/0x480
[   68.404304][ T8419]  ? pmd_val+0x7c/0xf0
[   68.408372][ T8419]  ? pmd_pfn+0x125/0x1c0
[   68.412614][ T8419]  ? enabled_store+0x190/0x190
[   68.417379][ T8419]  madvise_free_huge_pmd+0x873/0xb90
[   68.422667][ T8419]  madvise_free_pte_range+0x6ff/0x2650
[   68.428134][ T8419]  ? _raw_spin_unlock_irqrestore+0x9b/0xe0
[   68.433940][ T8419]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   68.440615][ T8419]  __walk_page_range+0xcfb/0x2070
[   68.445651][ T8419]  ? walk_page_test+0x78/0x180
[   68.450420][ T8419]  walk_page_range+0x1bd/0x3a0
[   68.455187][ T8419]  ? __walk_page_range+0x2070/0x2070
[   68.460476][ T8419]  ? madvise_free_single_vma+0x2c1/0x550
[   68.466160][ T8419]  madvise_free_single_vma+0x384/0x550
[   68.471614][ T8419]  ? madvise_pageout+0x3b0/0x3b0
[   68.476556][ T8419]  ? lock_acquire+0x197/0x420
[   68.481232][ T8419]  ? userfaultfd_remove+0xf0/0x2b0
[   68.486342][ T8419]  ? vmacache_find+0x62/0x300
[   68.491019][ T8419]  ? find_vma+0x2b/0x170
[   68.495612][ T8419]  do_madvise+0x5ba/0x1b80
[   68.500218][ T8419]  ? madvise_free_pte_range+0x2650/0x2650
[   68.505937][ T8419]  ? __x64_sys_futex+0x376/0x4f0
[   68.510961][ T8419]  ? do_futex+0x1b10/0x1b10
[   68.515549][ T8419]  ? switch_fpu_return+0x1db/0x4b0
[   68.520656][ T8419]  ? fpregs_mark_activate+0x320/0x320
[   68.526238][ T8419]  ? __x64_sys_madvise+0xae/0x120
[   68.531252][ T8419]  ? trace_hardirqs_on+0x55/0x220
[   68.536271][ T8419]  __x64_sys_madvise+0xae/0x120
[   68.541123][ T8419]  do_syscall_64+0xf6/0x7d0
[   68.545625][ T8419]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   68.551511][ T8419] RIP: 0033:0x460bf7
[   68.555401][ T8419] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   68.575084][ T8419] RSP: 002b:000000c0000ebe70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   68.583490][ T8419] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   68.591468][ T8419] RDX: 0000000000000008 RSI: 0000000000012000 RDI: 000000c00025e000
[   68.599434][ T8419] RBP: 000000c0000ebeb0 R08: 000000c000200000 R09: 000000c000270000
[   68.607399][ T8419] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000002
[   68.615361][ T8419] R13: 00007fa4dbb60008 R14: 0000000000000004 R15: 00000000000000df
[   68.623393][ T8419] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8419
[   68.632426][ T8419] caller is __mod_memcg_state+0xca/0x1a0
[   68.638049][ T8419] CPU: 0 PID: 8419 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   68.647488][ T8419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   68.657534][ T8419] Call Trace:
[   68.661050][ T8419]  dump_stack+0x188/0x20d
[   68.665384][ T8419]  __this_cpu_preempt_check.cold+0x84/0x90
[   68.671222][ T8419]  __mod_memcg_state+0xca/0x1a0
[   68.676208][ T8419]  split_huge_page_to_list+0x124b/0x3380
[   68.681856][ T8419]  ? mark_held_locks+0xe0/0xe0
[   68.686621][ T8419]  ? lock_downgrade+0x7f0/0x7f0
[   68.691478][ T8419]  ? can_split_huge_page+0x480/0x480
[   68.696760][ T8419]  ? pmd_val+0x7c/0xf0
[   68.700831][ T8419]  ? pmd_pfn+0x125/0x1c0
[   68.705068][ T8419]  ? enabled_store+0x190/0x190
[   68.709849][ T8419]  madvise_free_huge_pmd+0x873/0xb90
[   68.715140][ T8419]  madvise_free_pte_range+0x6ff/0x2650
[   68.720760][ T8419]  ? _raw_spin_unlock_irqrestore+0x9b/0xe0
[   68.726573][ T8419]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   68.733256][ T8419]  __walk_page_range+0xcfb/0x2070
[   68.738296][ T8419]  ? walk_page_test+0x78/0x180
[   68.743060][ T8419]  walk_page_range+0x1bd/0x3a0
[   68.747820][ T8419]  ? __walk_page_range+0x2070/0x2070
[   68.753110][ T8419]  ? madvise_free_single_vma+0x2c1/0x550
[   68.758747][ T8419]  madvise_free_single_vma+0x384/0x550
[   68.764230][ T8419]  ? madvise_pageout+0x3b0/0x3b0
[   68.769167][ T8419]  ? lock_acquire+0x197/0x420
[   68.773848][ T8419]  ? userfaultfd_remove+0xf0/0x2b0
[   68.778957][ T8419]  ? vmacache_find+0x62/0x300
[   68.783634][ T8419]  ? find_vma+0x2b/0x170
[   68.788049][ T8419]  do_madvise+0x5ba/0x1b80
[   68.792474][ T8419]  ? madvise_free_pte_range+0x2650/0x2650
[   68.798204][ T8419]  ? __x64_sys_futex+0x376/0x4f0
[   68.803136][ T8419]  ? do_futex+0x1b10/0x1b10
[   68.807636][ T8419]  ? switch_fpu_return+0x1db/0x4b0
[   68.812741][ T8419]  ? fpregs_mark_activate+0x320/0x320
[   68.818117][ T8419]  ? __x64_sys_madvise+0xae/0x120
[   68.823591][ T8419]  ? trace_hardirqs_on+0x55/0x220
[   68.828612][ T8419]  __x64_sys_madvise+0xae/0x120
[   68.833461][ T8419]  do_syscall_64+0xf6/0x7d0
[   68.837966][ T8419]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   68.843941][ T8419] RIP: 0033:0x460bf7
[   68.847832][ T8419] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   68.867433][ T8419] RSP: 002b:000000c0000ebe70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   68.875837][ T8419] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   68.883810][ T8419] RDX: 0000000000000008 RSI: 0000000000012000 RDI: 000000c00025e000
[   68.891794][ T8419] RBP: 000000c0000ebeb0 R08: 000000c000200000 R09: 000000c000270000
[   68.899778][ T8419] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000002
[   68.907801][ T8419] R13: 00007fa4dbb60008 R14: 0000000000000004 R15: 00000000000000df
[   68.915847][ T8419] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8419
[   68.924910][ T8419] caller is __mod_memcg_state+0x87/0x1a0
[   68.930566][ T8419] CPU: 0 PID: 8419 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   68.940008][ T8419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   68.950052][ T8419] Call Trace:
[   68.953341][ T8419]  dump_stack+0x188/0x20d
[   68.957678][ T8419]  __this_cpu_preempt_check.cold+0x84/0x90
[   68.963483][ T8419]  __mod_memcg_state+0x87/0x1a0
[   68.968379][ T8419]  split_huge_page_to_list+0x124b/0x3380
[   68.974027][ T8419]  ? mark_held_locks+0xe0/0xe0
[   68.978794][ T8419]  ? lock_downgrade+0x7f0/0x7f0
[   68.983644][ T8419]  ? can_split_huge_page+0x480/0x480
[   68.988923][ T8419]  ? pmd_val+0x7c/0xf0
[   68.992988][ T8419]  ? pmd_pfn+0x125/0x1c0
[   68.997487][ T8419]  ? enabled_store+0x190/0x190
[   69.002275][ T8419]  madvise_free_huge_pmd+0x873/0xb90
[   69.007601][ T8419]  madvise_free_pte_range+0x6ff/0x2650
[   69.013089][ T8419]  ? _raw_spin_unlock_irqrestore+0x9b/0xe0
[   69.018916][ T8419]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   69.025598][ T8419]  __walk_page_range+0xcfb/0x2070
[   69.030642][ T8419]  ? walk_page_test+0x78/0x180
[   69.035410][ T8419]  walk_page_range+0x1bd/0x3a0
[   69.040172][ T8419]  ? __walk_page_range+0x2070/0x2070
[   69.045458][ T8419]  ? madvise_free_single_vma+0x2c1/0x550
[   69.051095][ T8419]  madvise_free_single_vma+0x384/0x550
[   69.056556][ T8419]  ? madvise_pageout+0x3b0/0x3b0
[   69.061491][ T8419]  ? lock_acquire+0x197/0x420
[   69.066162][ T8419]  ? userfaultfd_remove+0xf0/0x2b0
[   69.071276][ T8419]  ? vmacache_find+0x62/0x300
[   69.075956][ T8419]  ? find_vma+0x2b/0x170
[   69.080197][ T8419]  do_madvise+0x5ba/0x1b80
[   69.084620][ T8419]  ? madvise_free_pte_range+0x2650/0x2650
[   69.090352][ T8419]  ? __x64_sys_futex+0x376/0x4f0
[   69.095287][ T8419]  ? do_futex+0x1b10/0x1b10
[   69.099972][ T8419]  ? switch_fpu_return+0x1db/0x4b0
[   69.105077][ T8419]  ? fpregs_mark_activate+0x320/0x320
[   69.110440][ T8419]  ? __x64_sys_madvise+0xae/0x120
[   69.115457][ T8419]  ? trace_hardirqs_on+0x55/0x220
[   69.120585][ T8419]  __x64_sys_madvise+0xae/0x120
[   69.125429][ T8419]  do_syscall_64+0xf6/0x7d0
[   69.129924][ T8419]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   69.135826][ T8419] RIP: 0033:0x460bf7
[   69.139705][ T8419] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   69.159297][ T8419] RSP: 002b:000000c0000ebe70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   69.169168][ T8419] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   69.177119][ T8419] RDX: 0000000000000008 RSI: 0000000000012000 RDI: 000000c00025e000
[   69.185070][ T8419] RBP: 000000c0000ebeb0 R08: 000000c000200000 R09: 000000c000270000
[   69.193170][ T8419] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000002
[   69.201246][ T8419] R13: 00007fa4dbb60008 R14: 0000000000000004 R15: 00000000000000df
2020/03/11 14:24:22 connecting to host at 10.128.0.26:36835
2020/03/11 14:24:22 checking machine...
2020/03/11 14:24:22 checking revisions...
2020/03/11 14:24:22 testing simple program...
[   71.152069][ T8434] IPVS: ftp: loaded support on port[0] = 21
2020/03/11 14:24:22 building call list...
[   71.218827][ T8415] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8415
[   71.227898][ T8415] caller is __mod_memcg_state+0x27/0x1a0
[   71.233589][ T8415] CPU: 1 PID: 8415 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   71.243127][ T8415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   71.253177][ T8415] Call Trace:
[   71.256468][ T8415]  dump_stack+0x188/0x20d
[   71.260816][ T8415]  __this_cpu_preempt_check.cold+0x84/0x90
[   71.266653][ T8415]  __mod_memcg_state+0x27/0x1a0
[   71.271706][ T8415]  split_huge_page_to_list+0x124b/0x3380
[   71.277436][ T8415]  ? mark_held_locks+0xe0/0xe0
[   71.282371][ T8415]  ? can_split_huge_page+0x480/0x480
[   71.287688][ T8415]  ? pmd_val+0x7c/0xf0
[   71.291757][ T8415]  ? pmd_pfn+0x125/0x1c0
[   71.296013][ T8415]  ? enabled_store+0x190/0x190
[   71.301569][ T8415]  madvise_free_huge_pmd+0x873/0xb90
[   71.307296][ T8415]  madvise_free_pte_range+0x6ff/0x2650
[   71.312787][ T8415]  ? kmem_cache_free+0x7f/0x320
[   71.317724][ T8415]  ? do_madvise+0xbb3/0x1b80
[   71.322311][ T8415]  ? __x64_sys_madvise+0xae/0x120
[   71.327337][ T8415]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   71.334098][ T8415]  __walk_page_range+0xcfb/0x2070
[   71.339140][ T8415]  ? walk_page_test+0x78/0x180
[   71.343914][ T8415]  walk_page_range+0x1bd/0x3a0
[   71.348860][ T8415]  ? __walk_page_range+0x2070/0x2070
[   71.354153][ T8415]  ? madvise_free_single_vma+0x2c1/0x550
[   71.359804][ T8415]  madvise_free_single_vma+0x384/0x550
[   71.365275][ T8415]  ? madvise_pageout+0x3b0/0x3b0
[   71.370249][ T8415]  ? lock_acquire+0x197/0x420
[   71.374933][ T8415]  ? userfaultfd_remove+0xf0/0x2b0
[   71.380322][ T8415]  ? vmacache_find+0x62/0x300
[   71.385008][ T8415]  ? vmacache_update+0xce/0x140
[   71.389863][ T8415]  ? find_vma+0x2b/0x170
[   71.394125][ T8415]  do_madvise+0x5ba/0x1b80
[   71.398559][ T8415]  ? lock_downgrade+0x7f0/0x7f0
[   71.403427][ T8415]  ? madvise_free_pte_range+0x2650/0x2650
[   71.409147][ T8415]  ? ktime_get+0x1f8/0x2f0
[   71.413565][ T8415]  ? __x64_sys_futex+0x376/0x4f0
[   71.418512][ T8415]  ? switch_fpu_return+0x1db/0x4b0
[   71.423745][ T8415]  ? fpregs_mark_activate+0x320/0x320
[   71.429120][ T8415]  ? __x64_sys_madvise+0xae/0x120
[   71.434137][ T8415]  ? trace_hardirqs_on+0x55/0x220
[   71.439167][ T8415]  __x64_sys_madvise+0xae/0x120
[   71.444024][ T8415]  do_syscall_64+0xf6/0x7d0
[   71.448533][ T8415]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   71.454594][ T8415] RIP: 0033:0x460bf7
[   71.458497][ T8415] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   71.478301][ T8415] RSP: 002b:00007ffe35ae5050 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   71.486839][ T8415] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   71.494824][ T8415] RDX: 0000000000000008 RSI: 0000000000002000 RDI: 000000c0001fe000
[   71.502913][ T8415] RBP: 00007ffe35ae5090 R08: 000000c000000000 R09: 000000c000200000
[   71.512017][ T8415] R10: 00007fffffffffff R11: 0000000000000246 R12: 00000000004338c0
[   71.519997][ T8415] R13: 0000000000000000 R14: 0000000000ac7968 R15: 0000000000000000
[   71.528291][ T8415] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8415
[   71.537190][ T8415] caller is __mod_memcg_state+0xca/0x1a0
[   71.542860][ T8415] CPU: 1 PID: 8415 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   71.552320][ T8415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   71.562378][ T8415] Call Trace:
[   71.565682][ T8415]  dump_stack+0x188/0x20d
[   71.570014][ T8415]  __this_cpu_preempt_check.cold+0x84/0x90
[   71.575819][ T8415]  __mod_memcg_state+0xca/0x1a0
[   71.580673][ T8415]  split_huge_page_to_list+0x124b/0x3380
[   71.586362][ T8415]  ? mark_held_locks+0xe0/0xe0
[   71.591128][ T8415]  ? can_split_huge_page+0x480/0x480
[   71.596511][ T8415]  ? pmd_val+0x7c/0xf0
[   71.600585][ T8415]  ? pmd_pfn+0x125/0x1c0
[   71.604821][ T8415]  ? enabled_store+0x190/0x190
[   71.609604][ T8415]  madvise_free_huge_pmd+0x873/0xb90
[   71.615006][ T8415]  madvise_free_pte_range+0x6ff/0x2650
[   71.620462][ T8415]  ? kmem_cache_free+0x7f/0x320
[   71.625307][ T8415]  ? do_madvise+0xbb3/0x1b80
[   71.629892][ T8415]  ? __x64_sys_madvise+0xae/0x120
[   71.634953][ T8415]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   71.641641][ T8415]  __walk_page_range+0xcfb/0x2070
[   71.646675][ T8415]  ? walk_page_test+0x78/0x180
[   71.651450][ T8415]  walk_page_range+0x1bd/0x3a0
[   71.656214][ T8415]  ? __walk_page_range+0x2070/0x2070
[   71.661499][ T8415]  ? madvise_free_single_vma+0x2c1/0x550
[   71.667133][ T8415]  madvise_free_single_vma+0x384/0x550
[   71.672593][ T8415]  ? madvise_pageout+0x3b0/0x3b0
[   71.677538][ T8415]  ? lock_acquire+0x197/0x420
[   71.682224][ T8415]  ? userfaultfd_remove+0xf0/0x2b0
[   71.687434][ T8415]  ? vmacache_find+0x62/0x300
[   71.692111][ T8415]  ? vmacache_update+0xce/0x140
[   71.696956][ T8415]  ? find_vma+0x2b/0x170
[   71.701204][ T8415]  do_madvise+0x5ba/0x1b80
[   71.705711][ T8415]  ? lock_downgrade+0x7f0/0x7f0
[   71.710586][ T8415]  ? madvise_free_pte_range+0x2650/0x2650
[   71.716298][ T8415]  ? ktime_get+0x1f8/0x2f0
[   71.720742][ T8415]  ? __x64_sys_futex+0x376/0x4f0
[   71.725684][ T8415]  ? switch_fpu_return+0x1db/0x4b0
[   71.730795][ T8415]  ? fpregs_mark_activate+0x320/0x320
[   71.736176][ T8415]  ? __x64_sys_madvise+0xae/0x120
[   71.741194][ T8415]  ? trace_hardirqs_on+0x55/0x220
[   71.746213][ T8415]  __x64_sys_madvise+0xae/0x120
[   71.751065][ T8415]  do_syscall_64+0xf6/0x7d0
[   71.755577][ T8415]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   71.761460][ T8415] RIP: 0033:0x460bf7
[   71.765352][ T8415] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   71.784944][ T8415] RSP: 002b:00007ffe35ae5050 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   71.793351][ T8415] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   71.802019][ T8415] RDX: 0000000000000008 RSI: 0000000000002000 RDI: 000000c0001fe000
[   71.809988][ T8415] RBP: 00007ffe35ae5090 R08: 000000c000000000 R09: 000000c000200000
[   71.818041][ T8415] R10: 00007fffffffffff R11: 0000000000000246 R12: 00000000004338c0
[   71.826005][ T8415] R13: 0000000000000000 R14: 0000000000ac7968 R15: 0000000000000000
[   71.834032][ T8415] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8415
[   71.843776][ T8415] caller is __mod_memcg_state+0x87/0x1a0
[   71.849408][ T8415] CPU: 1 PID: 8415 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   71.858848][ T8415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   71.868890][ T8415] Call Trace:
[   71.872179][ T8415]  dump_stack+0x188/0x20d
[   71.876523][ T8415]  __this_cpu_preempt_check.cold+0x84/0x90
[   71.882373][ T8415]  __mod_memcg_state+0x87/0x1a0
[   71.887247][ T8415]  split_huge_page_to_list+0x124b/0x3380
[   71.893004][ T8415]  ? mark_held_locks+0xe0/0xe0
[   71.897785][ T8415]  ? can_split_huge_page+0x480/0x480
[   71.903067][ T8415]  ? pmd_val+0x7c/0xf0
[   71.907134][ T8415]  ? pmd_pfn+0x125/0x1c0
[   71.911548][ T8415]  ? enabled_store+0x190/0x190
[   71.916320][ T8415]  madvise_free_huge_pmd+0x873/0xb90
[   71.921615][ T8415]  madvise_free_pte_range+0x6ff/0x2650
[   71.927078][ T8415]  ? kmem_cache_free+0x7f/0x320
[   71.931922][ T8415]  ? do_madvise+0xbb3/0x1b80
[   71.936504][ T8415]  ? __x64_sys_madvise+0xae/0x120
[   71.941527][ T8415]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   71.948198][ T8415]  __walk_page_range+0xcfb/0x2070
[   71.953237][ T8415]  ? walk_page_test+0x78/0x180
[   71.958000][ T8415]  walk_page_range+0x1bd/0x3a0
[   71.962787][ T8415]  ? __walk_page_range+0x2070/0x2070
[   71.968074][ T8415]  ? madvise_free_single_vma+0x2c1/0x550
[   71.973726][ T8415]  madvise_free_single_vma+0x384/0x550
[   71.979198][ T8415]  ? madvise_pageout+0x3b0/0x3b0
[   71.984150][ T8415]  ? lock_acquire+0x197/0x420
[   71.988827][ T8415]  ? userfaultfd_remove+0xf0/0x2b0
[   71.994076][ T8415]  ? vmacache_find+0x62/0x300
[   71.998769][ T8415]  ? vmacache_update+0xce/0x140
[   72.003633][ T8415]  ? find_vma+0x2b/0x170
[   72.007880][ T8415]  do_madvise+0x5ba/0x1b80
[   72.012295][ T8415]  ? lock_downgrade+0x7f0/0x7f0
[   72.017161][ T8415]  ? madvise_free_pte_range+0x2650/0x2650
[   72.022888][ T8415]  ? ktime_get+0x1f8/0x2f0
[   72.027306][ T8415]  ? __x64_sys_futex+0x376/0x4f0
[   72.032245][ T8415]  ? switch_fpu_return+0x1db/0x4b0
[   72.037359][ T8415]  ? fpregs_mark_activate+0x320/0x320
[   72.042733][ T8415]  ? __x64_sys_madvise+0xae/0x120
[   72.047763][ T8415]  ? trace_hardirqs_on+0x55/0x220
[   72.052783][ T8415]  __x64_sys_madvise+0xae/0x120
[   72.057637][ T8415]  do_syscall_64+0xf6/0x7d0
[   72.062136][ T8415]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   72.068018][ T8415] RIP: 0033:0x460bf7
[   72.071922][ T8415] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   72.091693][ T8415] RSP: 002b:00007ffe35ae5050 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   72.100101][ T8415] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   72.108053][ T8415] RDX: 0000000000000008 RSI: 0000000000002000 RDI: 000000c0001fe000
[   72.116003][ T8415] RBP: 00007ffe35ae5090 R08: 000000c000000000 R09: 000000c000200000
[   72.123966][ T8415] R10: 00007fffffffffff R11: 0000000000000246 R12: 00000000004338c0
[   72.132010][ T8415] R13: 0000000000000000 R14: 0000000000ac7968 R15: 0000000000000000
[   72.381507][ T8418] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8418
[   72.390210][    T7] tipc: TX() has been purged, node left!
[   72.390520][ T8418] caller is __mod_memcg_state+0x27/0x1a0
[   72.401856][ T8418] CPU: 1 PID: 8418 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   72.411287][ T8418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   72.421339][ T8418] Call Trace:
[   72.424670][ T8418]  dump_stack+0x188/0x20d
[   72.428999][ T8418]  __this_cpu_preempt_check.cold+0x84/0x90
[   72.434994][ T8418]  __mod_memcg_state+0x27/0x1a0
[   72.439846][ T8418]  split_huge_page_to_list+0x124b/0x3380
[   72.445477][ T8418]  ? mark_held_locks+0xe0/0xe0
[   72.450226][ T8418]  ? release_pages+0x656/0x19b0
[   72.455067][ T8418]  ? can_split_huge_page+0x480/0x480
[   72.460329][ T8418]  ? pmd_val+0x7c/0xf0
[   72.464379][ T8418]  ? pmd_pfn+0x125/0x1c0
[   72.468608][ T8418]  ? enabled_store+0x190/0x190
[   72.473362][ T8418]  madvise_free_huge_pmd+0x873/0xb90
[   72.478628][ T8418]  madvise_free_pte_range+0x6ff/0x2650
[   72.484078][ T8418]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   72.490744][ T8418]  __walk_page_range+0xcfb/0x2070
[   72.495755][ T8418]  ? walk_page_test+0x78/0x180
[   72.500505][ T8418]  walk_page_range+0x1bd/0x3a0
[   72.505260][ T8418]  ? __walk_page_range+0x2070/0x2070
[   72.510531][ T8418]  ? madvise_free_single_vma+0x2c1/0x550
[   72.516155][ T8418]  madvise_free_single_vma+0x384/0x550
[   72.521604][ T8418]  ? madvise_pageout+0x3b0/0x3b0
[   72.526534][ T8418]  ? lock_acquire+0x197/0x420
[   72.531309][ T8418]  ? userfaultfd_remove+0xf0/0x2b0
[   72.536401][ T8418]  ? vmacache_find+0x62/0x300
[   72.541060][ T8418]  ? find_vma+0x2b/0x170
[   72.545300][ T8418]  do_madvise+0x5ba/0x1b80
[   72.549691][ T8418]  ? unuse_pde+0x2c/0x80
[   72.553927][ T8418]  ? madvise_free_pte_range+0x2650/0x2650
[   72.559756][ T8418]  ? __x64_sys_futex+0x376/0x4f0
[   72.564679][ T8418]  ? fput_many+0x2f/0x1a0
[   72.569003][ T8418]  ? do_futex+0x1b10/0x1b10
[   72.573507][ T8418]  ? ksys_read+0x19f/0x250
[   72.577923][ T8418]  ? kernel_write+0x120/0x120
[   72.582595][ T8418]  ? __x64_sys_madvise+0xae/0x120
[   72.587598][ T8418]  ? trace_hardirqs_on+0x55/0x220
[   72.592610][ T8418]  __x64_sys_madvise+0xae/0x120
[   72.597443][ T8418]  do_syscall_64+0xf6/0x7d0
[   72.601925][ T8418]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   72.607795][ T8418] RIP: 0033:0x460bf7
[   72.611664][ T8418] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   72.631243][ T8418] RSP: 002b:000000c00004dc50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   72.639629][ T8418] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   72.647578][ T8418] RDX: 0000000000000008 RSI: 00000000000c0000 RDI: 000000c000388000
[   72.655530][ T8418] RBP: 000000c00004dc90 R08: 000000c000200000 R09: 000000c000448000
[   72.663483][ T8418] R10: 00000000001ffe00 R11: 0000000000000246 R12: 0000000000000002
[   72.671432][ T8418] R13: 00007fa4dbb606d0 R14: 0000000000000004 R15: 00000000000000df
[   72.679724][ T8418] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8418
[   72.688618][ T8418] caller is __mod_memcg_state+0xca/0x1a0
[   72.694288][ T8418] CPU: 1 PID: 8418 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   72.703865][ T8418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   72.713976][ T8418] Call Trace:
[   72.717266][ T8418]  dump_stack+0x188/0x20d
[   72.721596][ T8418]  __this_cpu_preempt_check.cold+0x84/0x90
[   72.727392][ T8418]  __mod_memcg_state+0xca/0x1a0
[   72.732252][ T8418]  split_huge_page_to_list+0x124b/0x3380
[   72.737872][ T8418]  ? mark_held_locks+0xe0/0xe0
[   72.742711][ T8418]  ? release_pages+0x656/0x19b0
[   72.747541][ T8418]  ? can_split_huge_page+0x480/0x480
[   72.752813][ T8418]  ? pmd_val+0x7c/0xf0
[   72.756868][ T8418]  ? pmd_pfn+0x125/0x1c0
[   72.761108][ T8418]  ? enabled_store+0x190/0x190
[   72.765938][ T8418]  madvise_free_huge_pmd+0x873/0xb90
[   72.771202][ T8418]  madvise_free_pte_range+0x6ff/0x2650
[   72.776639][ T8418]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   72.783307][ T8418]  __walk_page_range+0xcfb/0x2070
[   72.788316][ T8418]  ? walk_page_test+0x78/0x180
[   72.793177][ T8418]  walk_page_range+0x1bd/0x3a0
[   72.797919][ T8418]  ? __walk_page_range+0x2070/0x2070
[   72.803181][ T8418]  ? madvise_free_single_vma+0x2c1/0x550
[   72.808790][ T8418]  madvise_free_single_vma+0x384/0x550
[   72.814239][ T8418]  ? madvise_pageout+0x3b0/0x3b0
[   72.819170][ T8418]  ? lock_acquire+0x197/0x420
[   72.823852][ T8418]  ? userfaultfd_remove+0xf0/0x2b0
[   72.828962][ T8418]  ? vmacache_find+0x62/0x300
[   72.833620][ T8418]  ? find_vma+0x2b/0x170
[   72.837844][ T8418]  do_madvise+0x5ba/0x1b80
[   72.842240][ T8418]  ? unuse_pde+0x2c/0x80
[   72.846476][ T8418]  ? madvise_free_pte_range+0x2650/0x2650
[   72.852288][ T8418]  ? __x64_sys_futex+0x376/0x4f0
[   72.857467][ T8418]  ? fput_many+0x2f/0x1a0
[   72.862214][ T8418]  ? do_futex+0x1b10/0x1b10
[   72.866783][ T8418]  ? ksys_read+0x19f/0x250
[   72.871263][ T8418]  ? kernel_write+0x120/0x120
[   72.875921][ T8418]  ? __x64_sys_madvise+0xae/0x120
[   72.880926][ T8418]  ? trace_hardirqs_on+0x55/0x220
[   72.885923][ T8418]  __x64_sys_madvise+0xae/0x120
[   72.890763][ T8418]  do_syscall_64+0xf6/0x7d0
[   72.895245][ T8418]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   72.901112][ T8418] RIP: 0033:0x460bf7
[   72.905493][ T8418] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   72.925072][ T8418] RSP: 002b:000000c00004dc50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   72.933461][ T8418] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   72.941419][ T8418] RDX: 0000000000000008 RSI: 00000000000c0000 RDI: 000000c000388000
[   72.949376][ T8418] RBP: 000000c00004dc90 R08: 000000c000200000 R09: 000000c000448000
[   72.957324][ T8418] R10: 00000000001ffe00 R11: 0000000000000246 R12: 0000000000000002
[   72.965283][ T8418] R13: 00007fa4dbb606d0 R14: 0000000000000004 R15: 00000000000000df
[   72.973440][ T8418] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8418
[   72.982489][ T8418] caller is __mod_memcg_state+0x87/0x1a0
[   72.988204][ T8418] CPU: 1 PID: 8418 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   72.997668][ T8418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   73.007741][ T8418] Call Trace:
[   73.011028][ T8418]  dump_stack+0x188/0x20d
[   73.015351][ T8418]  __this_cpu_preempt_check.cold+0x84/0x90
[   73.021134][ T8418]  __mod_memcg_state+0x87/0x1a0
[   73.025974][ T8418]  split_huge_page_to_list+0x124b/0x3380
[   73.031603][ T8418]  ? mark_held_locks+0xe0/0xe0
[   73.036355][ T8418]  ? release_pages+0x656/0x19b0
[   73.041214][ T8418]  ? can_split_huge_page+0x480/0x480
[   73.046483][ T8418]  ? pmd_val+0x7c/0xf0
[   73.050554][ T8418]  ? pmd_pfn+0x125/0x1c0
[   73.054786][ T8418]  ? enabled_store+0x190/0x190
[   73.059535][ T8418]  madvise_free_huge_pmd+0x873/0xb90
[   73.064821][ T8418]  madvise_free_pte_range+0x6ff/0x2650
[   73.070269][ T8418]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   73.076928][ T8418]  __walk_page_range+0xcfb/0x2070
[   73.081939][ T8418]  ? walk_page_test+0x78/0x180
[   73.086796][ T8418]  walk_page_range+0x1bd/0x3a0
[   73.091544][ T8418]  ? __walk_page_range+0x2070/0x2070
[   73.096869][ T8418]  ? madvise_free_single_vma+0x2c1/0x550
[   73.102481][ T8418]  madvise_free_single_vma+0x384/0x550
[   73.107918][ T8418]  ? madvise_pageout+0x3b0/0x3b0
[   73.112849][ T8418]  ? lock_acquire+0x197/0x420
[   73.117613][ T8418]  ? userfaultfd_remove+0xf0/0x2b0
[   73.122712][ T8418]  ? vmacache_find+0x62/0x300
[   73.127372][ T8418]  ? find_vma+0x2b/0x170
[   73.131606][ T8418]  do_madvise+0x5ba/0x1b80
[   73.135998][ T8418]  ? unuse_pde+0x2c/0x80
[   73.140224][ T8418]  ? madvise_free_pte_range+0x2650/0x2650
[   73.145925][ T8418]  ? __x64_sys_futex+0x376/0x4f0
[   73.151795][ T8418]  ? fput_many+0x2f/0x1a0
[   73.156106][ T8418]  ? do_futex+0x1b10/0x1b10
[   73.160596][ T8418]  ? ksys_read+0x19f/0x250
[   73.164988][ T8418]  ? kernel_write+0x120/0x120
[   73.169744][ T8418]  ? __x64_sys_madvise+0xae/0x120
[   73.174743][ T8418]  ? trace_hardirqs_on+0x55/0x220
[   73.179744][ T8418]  __x64_sys_madvise+0xae/0x120
[   73.184577][ T8418]  do_syscall_64+0xf6/0x7d0
[   73.189055][ T8418]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   73.194923][ T8418] RIP: 0033:0x460bf7
[   73.198793][ T8418] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   73.218390][ T8418] RSP: 002b:000000c00004dc50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   73.227409][ T8418] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   73.235362][ T8418] RDX: 0000000000000008 RSI: 00000000000c0000 RDI: 000000c000388000
[   73.243335][ T8418] RBP: 000000c00004dc90 R08: 000000c000200000 R09: 000000c000448000
[   73.251373][ T8418] R10: 00000000001ffe00 R11: 0000000000000246 R12: 0000000000000002
[   73.259327][ T8418] R13: 00007fa4dbb606d0 R14: 0000000000000004 R15: 00000000000000df
[   73.835004][ T8428] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8428
[   73.844131][ T8428] caller is __mod_memcg_state+0x27/0x1a0
[   73.849744][ T8428] CPU: 1 PID: 8428 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   73.859172][ T8428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   73.869225][ T8428] Call Trace:
[   73.872499][ T8428]  dump_stack+0x188/0x20d
[   73.876825][ T8428]  __this_cpu_preempt_check.cold+0x84/0x90
[   73.882621][ T8428]  __mod_memcg_state+0x27/0x1a0
[   73.887457][ T8428]  split_huge_page_to_list+0x124b/0x3380
[   73.893083][ T8428]  ? mark_held_locks+0xe0/0xe0
[   73.898094][ T8428]  ? release_pages+0x656/0x19b0
[   73.902928][ T8428]  ? can_split_huge_page+0x480/0x480
[   73.908279][ T8428]  ? pmd_val+0x7c/0xf0
[   73.912328][ T8428]  ? pmd_pfn+0x125/0x1c0
[   73.916679][ T8428]  ? enabled_store+0x190/0x190
[   73.921431][ T8428]  madvise_free_huge_pmd+0x873/0xb90
[   73.926740][ T8428]  madvise_free_pte_range+0x6ff/0x2650
[   73.932194][ T8428]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   73.938857][ T8428]  __walk_page_range+0xcfb/0x2070
[   73.943878][ T8428]  ? walk_page_test+0x78/0x180
[   73.948639][ T8428]  walk_page_range+0x1bd/0x3a0
[   73.953386][ T8428]  ? __walk_page_range+0x2070/0x2070
[   73.958835][ T8428]  ? madvise_free_single_vma+0x2c1/0x550
[   73.964532][ T8428]  madvise_free_single_vma+0x384/0x550
[   73.969966][ T8428]  ? madvise_pageout+0x3b0/0x3b0
[   73.974893][ T8428]  ? lock_acquire+0x197/0x420
[   73.979554][ T8428]  ? userfaultfd_remove+0xf0/0x2b0
[   73.984649][ T8428]  ? vmacache_find+0x62/0x300
[   73.989311][ T8428]  ? vmacache_update+0xce/0x140
[   73.994140][ T8428]  ? find_vma+0x2b/0x170
[   73.998360][ T8428]  do_madvise+0x5ba/0x1b80
[   74.003556][ T8428]  ? unuse_pde+0x2c/0x80
[   74.007781][ T8428]  ? madvise_free_pte_range+0x2650/0x2650
[   74.013503][ T8428]  ? __x64_sys_futex+0x376/0x4f0
[   74.018444][ T8428]  ? fput_many+0x2f/0x1a0
[   74.022771][ T8428]  ? do_futex+0x1b10/0x1b10
[   74.027261][ T8428]  ? ksys_read+0x19f/0x250
[   74.031675][ T8428]  ? kernel_write+0x120/0x120
[   74.036347][ T8428]  ? __x64_sys_madvise+0xae/0x120
[   74.041402][ T8428]  ? trace_hardirqs_on+0x55/0x220
[   74.046430][ T8428]  __x64_sys_madvise+0xae/0x120
[   74.051288][ T8428]  do_syscall_64+0xf6/0x7d0
[   74.055782][ T8428]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   74.061657][ T8428] RIP: 0033:0x460bf7
[   74.065543][ T8428] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
executing program
[   74.085145][ T8428] RSP: 002b:000000c0000e9c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   74.093619][ T8428] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   74.101566][ T8428] RDX: 0000000000000008 RSI: 0000000000200000 RDI: 000000c000548000
[   74.109513][ T8428] RBP: 000000c0000e9c90 R08: 000000c000400000 R09: 000000c000748000
[   74.117485][ T8428] R10: 00000000007ffe00 R11: 0000000000000246 R12: 0000000000000032
[   74.125442][ T8428] R13: 0000000000e8da20 R14: 0000000000000000 R15: 0000000000000000
[   74.133515][ T8428] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8428
[   74.142404][ T8428] caller is __mod_memcg_state+0xca/0x1a0
[   74.148019][ T8428] CPU: 1 PID: 8428 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   74.157447][ T8428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   74.167491][ T8428] Call Trace:
[   74.170770][ T8428]  dump_stack+0x188/0x20d
[   74.175096][ T8428]  __this_cpu_preempt_check.cold+0x84/0x90
[   74.180882][ T8428]  __mod_memcg_state+0xca/0x1a0
[   74.185712][ T8428]  split_huge_page_to_list+0x124b/0x3380
[   74.191325][ T8428]  ? mark_held_locks+0xe0/0xe0
[   74.196078][ T8428]  ? release_pages+0x656/0x19b0
[   74.200919][ T8428]  ? can_split_huge_page+0x480/0x480
[   74.206184][ T8428]  ? pmd_val+0x7c/0xf0
[   74.210322][ T8428]  ? pmd_pfn+0x125/0x1c0
[   74.214574][ T8428]  ? enabled_store+0x190/0x190
[   74.219319][ T8428]  madvise_free_huge_pmd+0x873/0xb90
[   74.224595][ T8428]  madvise_free_pte_range+0x6ff/0x2650
[   74.230034][ T8428]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   74.236688][ T8428]  __walk_page_range+0xcfb/0x2070
[   74.241705][ T8428]  ? walk_page_test+0x78/0x180
[   74.246445][ T8428]  walk_page_range+0x1bd/0x3a0
[   74.251186][ T8428]  ? __walk_page_range+0x2070/0x2070
[   74.256452][ T8428]  ? madvise_free_single_vma+0x2c1/0x550
[   74.262063][ T8428]  madvise_free_single_vma+0x384/0x550
[   74.267498][ T8428]  ? madvise_pageout+0x3b0/0x3b0
[   74.272411][ T8428]  ? lock_acquire+0x197/0x420
[   74.277076][ T8428]  ? userfaultfd_remove+0xf0/0x2b0
[   74.282163][ T8428]  ? vmacache_find+0x62/0x300
[   74.286831][ T8428]  ? vmacache_update+0xce/0x140
[   74.291750][ T8428]  ? find_vma+0x2b/0x170
[   74.295986][ T8428]  do_madvise+0x5ba/0x1b80
[   74.300441][ T8428]  ? unuse_pde+0x2c/0x80
[   74.304679][ T8428]  ? madvise_free_pte_range+0x2650/0x2650
[   74.310556][ T8428]  ? __x64_sys_futex+0x376/0x4f0
[   74.315474][ T8428]  ? fput_many+0x2f/0x1a0
[   74.319791][ T8428]  ? do_futex+0x1b10/0x1b10
[   74.324280][ T8428]  ? ksys_read+0x19f/0x250
[   74.328676][ T8428]  ? kernel_write+0x120/0x120
[   74.333331][ T8428]  ? __x64_sys_madvise+0xae/0x120
[   74.338354][ T8428]  ? trace_hardirqs_on+0x55/0x220
[   74.343356][ T8428]  __x64_sys_madvise+0xae/0x120
[   74.348198][ T8428]  do_syscall_64+0xf6/0x7d0
[   74.352691][ T8428]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   74.358572][ T8428] RIP: 0033:0x460bf7
[   74.362888][ T8428] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   74.383357][ T8428] RSP: 002b:000000c0000e9c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   74.392015][ T8428] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   74.400506][ T8428] RDX: 0000000000000008 RSI: 0000000000200000 RDI: 000000c000548000
[   74.408826][ T8428] RBP: 000000c0000e9c90 R08: 000000c000400000 R09: 000000c000748000
[   74.416791][ T8428] R10: 00000000007ffe00 R11: 0000000000000246 R12: 0000000000000032
[   74.424767][ T8428] R13: 0000000000e8da20 R14: 0000000000000000 R15: 0000000000000000
[   74.433013][ T8428] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8428
[   74.442323][ T8428] caller is __mod_memcg_state+0x87/0x1a0
[   74.447974][ T8428] CPU: 1 PID: 8428 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   74.457749][ T8428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   74.468249][ T8428] Call Trace:
[   74.471534][ T8428]  dump_stack+0x188/0x20d
[   74.475911][ T8428]  __this_cpu_preempt_check.cold+0x84/0x90
[   74.481740][ T8428]  __mod_memcg_state+0x87/0x1a0
[   74.486617][ T8428]  split_huge_page_to_list+0x124b/0x3380
[   74.492710][ T8428]  ? mark_held_locks+0xe0/0xe0
[   74.498472][ T8428]  ? release_pages+0x656/0x19b0
[   74.503599][ T8428]  ? can_split_huge_page+0x480/0x480
[   74.508966][ T8428]  ? pmd_val+0x7c/0xf0
[   74.513058][ T8428]  ? pmd_pfn+0x125/0x1c0
[   74.517305][ T8428]  ? enabled_store+0x190/0x190
[   74.522403][ T8428]  madvise_free_huge_pmd+0x873/0xb90
[   74.527751][ T8428]  madvise_free_pte_range+0x6ff/0x2650
[   74.533304][ T8428]  ? madvise_cold_or_pageout_pte_range+0x3400/0x3400
[   74.539995][ T8428]  __walk_page_range+0xcfb/0x2070
[   74.545009][ T8428]  ? walk_page_test+0x78/0x180
[   74.549757][ T8428]  walk_page_range+0x1bd/0x3a0
[   74.555199][ T8428]  ? __walk_page_range+0x2070/0x2070
[   74.560486][ T8428]  ? madvise_free_single_vma+0x2c1/0x550
[   74.566228][ T8428]  madvise_free_single_vma+0x384/0x550
[   74.571708][ T8428]  ? madvise_pageout+0x3b0/0x3b0
[   74.576684][ T8428]  ? lock_acquire+0x197/0x420
[   74.581454][ T8428]  ? userfaultfd_remove+0xf0/0x2b0
[   74.586613][ T8428]  ? vmacache_find+0x62/0x300
[   74.591363][ T8428]  ? vmacache_update+0xce/0x140
[   74.596249][ T8428]  ? find_vma+0x2b/0x170
[   74.600518][ T8428]  do_madvise+0x5ba/0x1b80
[   74.604940][ T8428]  ? unuse_pde+0x2c/0x80
[   74.609232][ T8428]  ? madvise_free_pte_range+0x2650/0x2650
[   74.615164][ T8428]  ? __x64_sys_futex+0x376/0x4f0
[   74.620085][ T8428]  ? fput_many+0x2f/0x1a0
[   74.624521][ T8428]  ? do_futex+0x1b10/0x1b10
[   74.629182][ T8428]  ? ksys_read+0x19f/0x250
[   74.635405][ T8428]  ? kernel_write+0x120/0x120
[   74.640160][ T8428]  ? __x64_sys_madvise+0xae/0x120
[   74.645705][ T8428]  ? trace_hardirqs_on+0x55/0x220
[   74.650721][ T8428]  __x64_sys_madvise+0xae/0x120
[   74.655568][ T8428]  do_syscall_64+0xf6/0x7d0
[   74.660071][ T8428]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   74.665954][ T8428] RIP: 0033:0x460bf7
[   74.669853][ T8428] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14
[   74.689719][ T8428] RSP: 002b:000000c0000e9c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   74.698379][ T8428] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7
[   74.706464][ T8428] RDX: 0000000000000008 RSI: 0000000000200000 RDI: 000000c000548000
[   74.714461][ T8428] RBP: 000000c0000e9c90 R08: 000000c000400000 R09: 000000c000748000
[   74.722732][ T8428] R10: 00000000007ffe00 R11: 0000000000000246 R12: 0000000000000032
[   74.730820][ T8428] R13: 0000000000e8da20 R14: 0000000000000000 R15: 0000000000000000
[   75.078353][ T8428] ------------[ cut here ]------------
[   75.084822][ T8428] WARNING: CPU: 0 PID: 8428 at sound/core/oss/pcm_plugin.c:126 snd_pcm_plug_alloc+0x29a/0x330
[   75.095628][ T8428] Kernel panic - not syncing: panic_on_warn set ...
[   75.103377][ T8428] CPU: 0 PID: 8428 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0
[   75.113095][ T8428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   75.123834][ T8428] Call Trace:
[   75.127113][ T8428]  dump_stack+0x188/0x20d
[   75.131438][ T8428]  ? snd_pcm_plug_alloc+0x250/0x330
[   75.136626][ T8428]  panic+0x2e3/0x75c
[   75.140504][ T8428]  ? add_taint.cold+0x16/0x16
[   75.145160][ T8428]  ? printk+0xba/0xed
[   75.156818][ T8428]  ? kmsg_dump_rewind_nolock+0xd9/0xd9
[   75.163387][ T8428]  ? __warn.cold+0x14/0x35
[   75.168300][ T8428]  ? __warn+0xd5/0x1c8
[   75.172480][ T8428]  ? snd_pcm_plug_alloc+0x29a/0x330
[   75.180749][ T8428]  __warn.cold+0x2f/0x35
[   75.184977][ T8428]  ? snd_pcm_plug_alloc+0x29a/0x330
[   75.190163][ T8428]  report_bug+0x27b/0x2f0
[   75.194758][ T8428]  do_error_trap+0x12b/0x220
[   75.199329][ T8428]  ? snd_pcm_plug_alloc+0x29a/0x330
[   75.204787][ T8428]  do_invalid_op+0x32/0x40
[   75.209542][ T8428]  ? snd_pcm_plug_alloc+0x29a/0x330
[   75.214719][ T8428]  invalid_op+0x23/0x30
[   75.218863][ T8428] RIP: 0010:snd_pcm_plug_alloc+0x29a/0x330
[   75.225396][ T8428] Code: ff ff 45 31 e4 e8 46 f2 7f fb 44 89 e0 5b 5d 41 5c 41 5d 41 5e c3 e8 35 f2 7f fb 0f 0b 41 bc fa ff ff ff eb e0 e8 26 f2 7f fb <0f> 0b 41 bc fa ff ff ff eb d1 e8 17 f2 7f fb 0f 0b 41 bc fa ff ff
[   75.245080][ T8428] RSP: 0018:ffffc900020f7b88 EFLAGS: 00010293
[   75.251137][ T8428] RAX: ffff88808d3bc580 RBX: ffff8880a13a7100 RCX: ffffffff85f2d2c6
[   75.259510][ T8428] RDX: 0000000000000000 RSI: ffffffff85f2d44a RDI: 0000000000000007
[   75.268312][ T8428] RBP: 0000000000000000 R08: ffff88808d3bc580 R09: ffffed101346921f
[   75.276277][ T8428] R10: ffff88809a3490f3 R11: ffffed101346921e R12: ffff8880a13a7158
[   75.284452][ T8428] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88809a349000
[   75.292473][ T8428]  ? snd_pcm_plug_alloc+0x116/0x330
[   75.298191][ T8428]  ? snd_pcm_plug_alloc+0x29a/0x330
[   75.303692][ T8428]  ? snd_pcm_plug_alloc+0x29a/0x330
[   75.308915][ T8428]  snd_pcm_oss_change_params_locked+0x1c05/0x34b0
[   75.315361][ T8428]  ? _snd_pcm_hw_param_set.constprop.0+0x510/0x510
[   75.322600][ T8428]  ? trace_hardirqs_off+0x50/0x220
[   75.327732][ T8428]  ? trace_hardirqs_on+0x55/0x220
[   75.332753][ T8428]  ? snd_pcm_oss_sync.isra.0+0x7d0/0x7d0
[   75.338828][ T8428]  snd_pcm_oss_change_params+0x76/0xd0
[   75.344760][ T8428]  snd_pcm_oss_make_ready+0xb7/0x170
[   75.350144][ T8428]  snd_pcm_oss_sync.isra.0+0x1be/0x7d0
[   75.355614][ T8428]  ? snd_pcm_oss_sync.isra.0+0x7d0/0x7d0
[   75.361645][ T8428]  snd_pcm_oss_release+0x210/0x280
[   75.366840][ T8428]  __fput+0x2da/0x850
[   75.371342][ T8428]  task_work_run+0xf4/0x1b0
[   75.376396][ T8428]  exit_to_usermode_loop+0x2fa/0x360
[   75.381765][ T8428]  do_syscall_64+0x6b1/0x7d0
[   75.386345][ T8428]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   75.392342][ T8428] RIP: 0033:0x4afb40
[   75.396733][ T8428] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30
[   75.417014][ T8428] RSP: 002b:000000c000079588 EFLAGS: 00000212 ORIG_RAX: 0000000000000003
[   75.425504][ T8428] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40
[   75.433997][ T8428] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   75.441970][ T8428] RBP: 000000c0000795c8 R08: 0000000000000000 R09: 0000000000000000
[   75.449948][ T8428] R10: 0000000000000000 R11: 0000000000000212 R12: 0000000000000006
[   75.458438][ T8428] R13: 0000000000000005 R14: 0000000000000200 R15: 0000000000000000
[   75.468017][ T8428] Kernel Offset: disabled
[   75.472607][ T8428] Rebooting in 86400 seconds..