[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 8.524979] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 36.688291] random: sshd: uninitialized urandom read (32 bytes read) [ 36.958577] audit: type=1400 audit(1556690972.900:6): avc: denied { map } for pid=1758 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 37.026536] random: sshd: uninitialized urandom read (32 bytes read) [ 37.566318] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.139' (ECDSA) to the list of known hosts. [ 43.282548] random: sshd: uninitialized urandom read (32 bytes read) 2019/05/01 06:09:39 fuzzer started [ 43.365880] audit: type=1400 audit(1556690979.310:7): avc: denied { map } for pid=1773 comm="syz-fuzzer" path="/root/syz-fuzzer" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 45.149773] random: cc1: uninitialized urandom read (8 bytes read) 2019/05/01 06:09:41 dialing manager at 10.128.0.26:43035 2019/05/01 06:09:41 syscalls: 1329 2019/05/01 06:09:41 code coverage: enabled 2019/05/01 06:09:41 comparison tracing: ioctl(KCOV_TRACE_CMP) failed: invalid argument 2019/05/01 06:09:41 extra coverage: extra coverage is not supported by the kernel 2019/05/01 06:09:41 setuid sandbox: enabled 2019/05/01 06:09:41 namespace sandbox: enabled 2019/05/01 06:09:41 Android sandbox: /sys/fs/selinux/policy does not exist 2019/05/01 06:09:41 fault injection: CONFIG_FAULT_INJECTION is not enabled 2019/05/01 06:09:41 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/05/01 06:09:41 net packet injection: enabled 2019/05/01 06:09:41 net device setup: enabled [ 46.872616] random: crng init done INIT: Id "3" respawning too fast: disabled for 5 minutes INIT: Id "6" respawning too fast: disabled for 5 minutes INIT: Id "1" respawning too fast: disabled for 5 minutes INIT: Id "4" respawning too fast: disabled for 5 minutes INIT: Id "5" respawning too fast: disabled for 5 minutes INIT: Id "2" respawning too fast: disabled for 5 minutes 06:10:56 executing program 0: r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/status\x00', 0x0, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x54, r1, 0x10, 0x40, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x38, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x9}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @initdev={0xac, 0x1e, 0x1, 0x0}}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip6_vti0\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1000}]}, 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x40000) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f00000001c0)={{0x2, 0x4e21, @remote}, {0x306, @local}, 0x50, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xb}}, 'veth0_to_bond\x00'}) sendmsg$IPVS_CMD_FLUSH(r0, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x70200000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x50, r1, 0x8, 0x70bd28, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_SERVICE={0x2c, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e22}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xff}, @IPVS_SVC_ATTR_PROTOCOL={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x17}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8}]}, 0x50}, 0x1, 0x0, 0x0, 0x20048051}, 0x20004011) lsetxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)='trusted.overlay.upper\x00', &(0x7f0000000400)={0x0, 0xfb, 0xa8, 0x4, 0x0, "1f3cf5010b9c718219bc93167ef2e3a0", "2a9314f4e91b957eea34615a9e215b597fd2d17fd4d9ce4d435a44edcc747d5c2393e3b32f106c50864991e26cc6d00133e562364480a6179088998d193522b72b4374578357b4736f97ebbd58fa0f097e0cc71ca8c29acb6b3f9573a8cd2c8347f8f71df866ccb4ff2d843ddc5bbf589a429e94aab69125a1861dad7f7aeb35c26b0aa1f5e562c61be36e0566aed34078357f"}, 0xa8, 0x1) ioctl$BLKROTATIONAL(r0, 0x127e, &(0x7f00000004c0)) sendto(r0, &(0x7f0000000500)="b508a9adc03a9c76006300d894c9e54450656b9dc4fd724a786277c0f37d65f6796c6cde24ba6632f6f02b70a69427d30411d2468a6476bf0c24bbeebc61956945075ea791911d3ee9891a8feec5915b304c9f385ea763cfbbf941a96c269d6351e4b15c", 0x64, 0x48000, &(0x7f0000000580)=@pppol2tpv3in6={0x18, 0x1, {0x0, r0, 0x2, 0x3, 0x3, 0x4, {0xa, 0x4e22, 0x4078, @dev={0xfe, 0x80, [], 0xc}, 0x8}}}, 0x80) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000640)='TIPC\x00') sendmsg$TIPC_CMD_GET_LINKS(r0, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x80000240}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x24, r3, 0x700, 0x70bd2a, 0x25dfdbfc, {{}, 0x0, 0x4, 0x0, {0x8}}, ["", "", "", "", ""]}, 0x24}}, 0x40004) ioctl$SIOCGSTAMPNS(r2, 0x8907, &(0x7f0000000740)) fchmod(r2, 0x10) syz_genetlink_get_family_id$tipc(&(0x7f0000000780)='TIPC\x00') execve(&(0x7f00000007c0)='./file0\x00', &(0x7f0000000980)=[&(0x7f0000000800)='trusted.overlay.upper\x00', &(0x7f0000000840)='trusted.overlay.upper\x00', &(0x7f0000000880)='\x00', &(0x7f00000008c0)='em0&vboxnet0^-}\x00', &(0x7f0000000900)='IPVS\x00', &(0x7f0000000940)='veth0_to_bond\x00'], &(0x7f0000000a00)=[&(0x7f00000009c0)='\x00']) timerfd_settime(r0, 0x1, &(0x7f0000000a40)={{0x0, 0x1c9c380}, {0x77359400}}, &(0x7f0000000a80)) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000ac0)=0x0) fcntl$lock(r0, 0x6, &(0x7f0000000b00)={0x2, 0x4, 0x1, 0x4, r4}) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000b80)={'filter\x00', 0x7, 0x4, 0x480, 0x140, 0x258, 0x0, 0x398, 0x398, 0x398, 0x4, &(0x7f0000000b40), {[{{@uncond, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@dev={[], 0x20}, @mac=@dev={[], 0x18}, @dev={0xac, 0x14, 0x14, 0x1b}, @remote, 0x8, 0xffffffff}}}, {{@uncond, 0xf0, 0x118}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00', 0x0, {0x3}}}, {{@arp={@dev={0xac, 0x14, 0x14, 0x1d}, @broadcast, 0xff000000, 0x0, @mac=@random="196a717e090f", {[0xff, 0x0, 0xff, 0xff, 0xff, 0xff]}, @empty, {[0x0, 0x0, 0x0, 0xff, 0xff]}, 0x3, 0x1, 0x7, 0x0, 0x3, 0x2, 'vcan0\x00', 'erspan0\x00', {0xff}, {0xff}, 0x0, 0x200}, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, 0xf, 0xffffffff}}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x4d0) r5 = openat$cgroup_procs(r0, &(0x7f0000001080)='tasks\x00', 0x2, 0x0) ioctl$PPPIOCCONNECT(r0, 0x4004743a, &(0x7f00000010c0)=0x2) accept4$unix(r0, &(0x7f0000001100), &(0x7f0000001180)=0x6e, 0x80000) setxattr$security_capability(&(0x7f00000011c0)='./file0\x00', &(0x7f0000001200)='security.capability\x00', &(0x7f0000001240)=@v1={0x1000000, [{0x7, 0x4}]}, 0xc, 0x1) sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f00000013c0)={&(0x7f0000001280), 0xc, &(0x7f0000001380)={&(0x7f00000012c0)={0xa0, r1, 0x0, 0x70bd2b, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x80000001}, @IPVS_CMD_ATTR_SERVICE={0x24, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'dh\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xc110}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'ovf\x00'}]}, @IPVS_CMD_ATTR_SERVICE={0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x25}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8}, @IPVS_CMD_ATTR_DAEMON={0x4c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x1}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x7}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @empty}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x4000}, 0x80) add_key$user(&(0x7f0000001400)='user\x00', &(0x7f0000001440)={'syz', 0x0}, &(0x7f0000001480)="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", 0x1000, 0xfffffffffffffffa) write$P9_RVERSION(r0, &(0x7f0000002480)={0x15, 0x65, 0xffff, 0x0, 0x8, '9P2000.u'}, 0x15) ioctl$VT_RELDISP(r0, 0x5605) r6 = syz_genetlink_get_family_id$team(&(0x7f0000002500)='team\x00') getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000002580)={{{@in6=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@empty}}}, &(0x7f0000002680)=0xe8) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f00000029c0)={0x0, @remote, @broadcast}, &(0x7f0000002a00)=0xc) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000002a40)={'bond0\x00', 0x0}) getpeername$packet(r5, &(0x7f0000002b40)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000002b80)=0x14) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000002bc0)={'team0\x00', 0x0}) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000002c00)={'team0\x00', 0x0}) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000002d00)={0x0, @dev, @multicast2}, &(0x7f0000002d40)=0xc) sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f0000003100)={&(0x7f00000024c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000030c0)={&(0x7f0000002d80)={0x304, r6, 0x100, 0x70bd25, 0x25dfdbff, {}, [{{0x8, 0x1, r7}, {0x3c, 0x2, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x7}}}]}}, {{0x8, 0x1, r8}, {0x88, 0x2, [{0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x20}}}, {0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}]}}, {{0x8, 0x1, r9}, {0x214, 0x2, [{0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0x80000000}}, {0x8, 0x6, r11}}}, {0x3c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0xc, 0x4, [{0x2, 0x0, 0x7, 0x8}]}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r12}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x2}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x5}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x1}}, {0x8, 0x6, r13}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0xdc}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x3}}}]}}]}, 0x304}, 0x1, 0x0, 0x0, 0x20000010}, 0x8000) 06:10:56 executing program 5: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffff8) keyctl$clear(0x7, r0) r1 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000100)=0x14) r3 = geteuid() setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000140)={{{@in=@local, @in=@multicast2, 0x4e20, 0x0, 0x4e24, 0x100, 0xa, 0x0, 0xa0, 0xbf, r2, r3}, {0x80000000, 0xffffffffffffffc1, 0x68b4, 0x2c, 0x3f, 0x3f, 0x6, 0x1ff}, {0x7ff, 0x1, 0x140000000000000, 0x101}, 0xfff, 0x6e6bba, 0x0, 0x1, 0x3, 0x2}, {{@in=@empty, 0x4d6, 0x6c}, 0xa, @in6=@loopback, 0x0, 0x3, 0x2, 0xf40, 0x400, 0x2, 0x3}}, 0xe8) write$apparmor_current(r1, &(0x7f0000000240)=@hat={'permhat ', 0x4, 0x5e, ['/selinux/avc/cache_threshold\x00', '/selinux/avc/cache_threshold\x00']}, 0x55) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000300)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_GET(r1, &(0x7f0000000680)={&(0x7f00000002c0), 0xc, &(0x7f0000000640)={&(0x7f0000000340)={0x300, r4, 0x100, 0x70bd2c, 0x25dfdbfd, {}, [@TIPC_NLA_MON={0x44, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xb322}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x21}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}]}, @TIPC_NLA_LINK={0x80, 0x4, [@TIPC_NLA_LINK_PROP={0x34, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}]}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}]}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_BEARER={0xdc, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffffffffffa}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x3}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'veth0\x00'}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x43}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0x9, @mcast2, 0xf}}, {0x14, 0x2, @in={0x2, 0x4e20, @remote}}}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'ib', 0x3a, 'vcan0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @broadcast}}, {0x14, 0x2, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x2a}}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}}, {0x14, 0x2, @in={0x2, 0x4e23, @multicast1}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x20}]}, @TIPC_NLA_LINK={0x20, 0x4, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfe}, @TIPC_NLA_PROP_TOL={0x8}]}]}, @TIPC_NLA_SOCK={0xc, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}]}, @TIPC_NLA_NODE={0x14, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x6}]}, @TIPC_NLA_NET={0x24, 0x7, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x10000}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x4}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x6}]}, @TIPC_NLA_MEDIA={0x84, 0x5, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x37}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffffffffffbc}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xde4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}]}, @TIPC_NLA_BEARER={0x64, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x200}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @remote}}, {0x14, 0x2, @in={0x2, 0x4e21, @empty}}}}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6046}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz1\x00'}]}]}, 0x300}, 0x1, 0x0, 0x0, 0x40000}, 0x4000040) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r1, 0x6, 0x21, &(0x7f00000006c0)="1b5a62072e550249417219ccdf11389c", 0x10) r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000740)={&(0x7f0000000700)='./file0\x00', 0x0, 0x18}, 0x10) seccomp(0x0, 0x1, &(0x7f00000007c0)={0x6, &(0x7f0000000780)=[{0x6, 0x3ff, 0x6666, 0x3}, {0x7fff, 0x200000000000, 0x9, 0xfe}, {0x7ff, 0x1000, 0x3ff, 0x2}, {0x8967, 0xffffffffffff488f, 0x20, 0x1c}, {0x9, 0x6, 0x5}, {0x1, 0x1, 0x6, 0x3}]}) memfd_create(&(0x7f0000000800)='GPLeth1user\x00', 0x2) ioctl$PIO_FONTX(r1, 0x4b6c, &(0x7f0000000840)="15d63dcdbd086d2456a924dd6d743a09a230c8d3fd7fc3a5f976e7ad81d6ffb561313bbdb1e8a5bc902653208262fe096371d42445f691fad893c41830edb4fe1e9b75cbd387d9748ac4e7a8820651b1bb490e70917b413e0e8bad113f8eb5703abebebb7915d3c6306cd1106cab2f874b348c92bb7f9828a796015c66bec03798dd510124c7d65a1e1f997300a64df6efe75234882e33edf4fbb7a44e619c7d") ioctl$PIO_UNIMAP(r1, 0x4b67, &(0x7f0000000940)={0x4, &(0x7f0000000900)=[{0x1, 0x3}, {0x1e0, 0x8}, {0x8, 0x6}, {0x10000, 0x40}]}) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000980)=0x0) waitid(0x1, r6, &(0x7f00000009c0), 0x100000d, &(0x7f0000000a40)) ioctl$IOC_PR_PREEMPT_ABORT(r1, 0x401870cc, &(0x7f0000000b00)={0x4, 0xfffffffffffffff8, 0x4, 0x100000001}) ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000b40)={0x80000000000000, 0xdbe, 0x8, 0x1, 0x7, 0x0, 0x4, 0x2, 0x1, 0x3f, 0x100000001, 0xd01}) ioctl$TUNSETIFINDEX(r1, 0x400454da, &(0x7f0000000b80)=r2) ioctl$KDDISABIO(r5, 0x4b37) ioctl$GIO_FONT(r1, 0x4b60, &(0x7f0000000bc0)=""/4096) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0x7, &(0x7f0000001bc0)={0x6, 0x0, 0x3f, 0x2}, 0x10) ioctl$KDSKBMODE(r1, 0x4b45, &(0x7f0000001c00)=0x7f8) r7 = syz_genetlink_get_family_id$nbd(&(0x7f0000001c80)='nbd\x00') sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000001d80)={&(0x7f0000001c40)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001d40)={&(0x7f0000001cc0)={0x44, r7, 0x200, 0x70bd2d, 0x25dfdbfe, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x101}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x5983}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x6}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x1fffffffe0}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x810) r8 = syz_open_pts(r1, 0x10200) ioctl$sock_inet_SIOCSIFNETMASK(r1, 0x891c, &(0x7f0000001dc0)={'bcsh0\x00', {0x2, 0x4e22, @remote}}) fsetxattr$trusted_overlay_nlink(r1, &(0x7f0000001e00)='trusted.overlay.nlink\x00', &(0x7f0000001e40)={'L+', 0x3}, 0x28, 0x3) fcntl$setown(r8, 0x8, r6) 06:10:56 executing program 2: syz_execute_func(&(0x7f0000000040)="410f01f964ff0941c3c4e2c99758423e46d8731266420fe2e33e0f1110c442019dcc6f") clone(0x2102001ff9, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket$inet6(0xa, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) sendmsg$IPVS_CMD_SET_DEST(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0) 06:10:56 executing program 1: mknod(&(0x7f00000000c0)='./file0\x00', 0x1124, 0x0) open$dir(&(0x7f0000000040)='./file0\x00', 0x2, 0x0) creat(&(0x7f0000000200)='./file0\x00', 0x0) 06:10:56 executing program 3: bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xd, 0x3, &(0x7f0000000280)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x2a, 0x54}}, &(0x7f0000000140)='GPL\x00', 0x1, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) 06:10:56 executing program 4: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0x6000000000000000, &(0x7f00000bfff0)={&(0x7f0000006440)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@mcast1={0xff, 0x1, [0x0, 0xfcffffff]}, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa}}}, 0xb8}}, 0x0) [ 120.439324] audit: type=1400 audit(1556691056.380:8): avc: denied { map } for pid=1773 comm="syz-fuzzer" path="/root/syzkaller-shm261969338" dev="sda1" ino=16461 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 [ 120.470685] audit: type=1400 audit(1556691056.420:9): avc: denied { map } for pid=1825 comm="syz-executor.1" path="/sys/kernel/debug/kcov" dev="debugfs" ino=5011 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1 06:10:59 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x3d, 0x0) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000100)) write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x0) dup3(r1, r0, 0x0) read(r0, &(0x7f00000000c0)=""/19, 0x1b43d048) 06:10:59 executing program 0: select(0x285, &(0x7f0000000000)={0xdeafbead}, 0x0, 0x0, 0x0) [ 123.300327] audit: type=1400 audit(1556691059.240:10): avc: denied { create } for pid=2723 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 123.325069] audit: type=1400 audit(1556691059.250:11): avc: denied { write } for pid=2723 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 06:10:59 executing program 0: syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0xffff, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_execute_func(&(0x7f0000000080)="984a2ae92c18964c0f05bf03000000c4a37bf0c51d41e2e9c422e9aabb3c0000004a0fc7a4ea70db00000f383a9e020000000f0d204ec6c4a2f346a7104b26660f38091e2fa2631bc421045f4607c421dd589fc4e10bf8e426f2f045f61964620f42d25d2f262e2e66450f7d64c60865f6ad3a0065f20f7cd8efa1a12ad764d38f53efc4211de34f006766f2ab440fec3f66f3adc462b1f72ec3c489309294d8d8000000000fc4634148f70000c2a0c10b00cca27a0e0fc442cd376d000f9f3c6436b2aa66450fc4650000c4e39978c104d9a1e81e704ecdcda2660f38346800c4e3c8295dc14cf3400f595600c104b05c7d75c4426507af0f0000000f5fd25c0f954700a5a9a50000ffff660f79ca553131b83a00a2f1fbfb3b62") [ 123.353880] audit: type=1400 audit(1556691059.250:12): avc: denied { read } for pid=2723 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 123.385550] mmap: syz-executor.0 (2734) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.txt. 06:11:00 executing program 4: socketpair(0x22, 0x802, 0x10, &(0x7f0000000000)) 06:11:01 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)="390000001300090468fe07002b0000000000ff0711000000450001070000001419001a00120002000a000100550e00"/57, 0x39}], 0x1) 06:11:07 executing program 1: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000c86f88)={0x800000000002, 0x70, 0xfffffffffffffff8, 0x0, 0x0, 0x0, 0x0, 0x2, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00001bf000/0x2000)=nil, 0x2000, 0x0, 0x4011, r0, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f00000009c0)='threaded\x00', 0xfffffc47) 06:11:11 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f00000002c0)={@multicast2, @loopback}, 0xc) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000001980)={0x1, {{0x2, 0x0, @multicast2}}, 0x0, 0x1, [{{0x2, 0x0, @multicast2}}]}, 0x110) setsockopt$inet_group_source_req(r0, 0x0, 0x2d, &(0x7f0000000300)={0x1, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @multicast2}}}, 0x108) 06:11:14 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000017, &(0x7f000023f000), 0x20b) 06:11:14 executing program 2: perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x10000000004e20, 0x0, @remote, 0x5}, 0x1c) recvmmsg(r0, &(0x7f0000003b40)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000240)=0x6, 0xffffffa0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0) syz_emit_ethernet(0x83, &(0x7f0000000180)={@local, @dev, [], {@ipv6={0x86dd, {0x0, 0x6, "1bfc97", 0x4d, 0x88, 0x0, @dev, @mcast2, {[], @udp={0x0, 0x4e20, 0x4d, 0x0, [], "e29607149378d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb1c373d6ea51369e92fb96cc7c6fe4e24d1fcafff87429e50b32881721afab69cc3712c37ed0"}}}}}}, 0x0) shutdown(r0, 0x0) 06:11:14 executing program 3: setresuid(0x0, 0xfffe, 0xffffffffffffffff) r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_CONFIG(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x88, r1, 0x34, 0x70bd25, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xc5}, @IPVS_CMD_ATTR_DAEMON={0x24, 0x3, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0xffe0000000000000}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e24}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8}]}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x1ff}]}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, [@IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sh\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8}]}, 0x88}, 0x1, 0x0, 0x0, 0x10}, 0x801) fsetxattr$trusted_overlay_origin(0xffffffffffffffff, &(0x7f0000000000)='trusted.overlay.origin\x00', 0x0, 0x0, 0x0) 06:11:25 executing program 0: mmap(&(0x7f000000c000/0x3000)=nil, 0x3000, 0x3, 0x31, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000048000/0x1000)=nil, 0x1000, 0x6, 0x31, 0xffffffffffffffff, 0x0) futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000), 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x2000, 0xa0) setsockopt$inet_MCAST_LEAVE_GROUP(r0, 0x0, 0x2d, &(0x7f0000000040)={0x8000, {{0x2, 0x4e21, @loopback}}}, 0x88) 06:11:28 executing program 1: r0 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/enforce\x00', 0x80, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) syz_open_dev$rtc(&(0x7f0000000300)='/dev/rtc#\x00', 0x77, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2102001ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mlockall(0x7) syz_genetlink_get_family_id$tipc(0x0) sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000100), 0xc, 0x0, 0x1, 0x0, 0x0, 0x8044}, 0x0) tkill(0x0, 0x80000080d) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200aa0802000000000000000000000105000600200000000a00000000000000000500e500000700008015e70000000000250000000000000200010000000000002000020000627c05000500000000000a000000000100007bd986e30000000000000000000001170000000000000000"], 0x80}}, 0x0) setpriority(0x0, 0x0, 0x9) openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/enforce\x00', 0x101003, 0x0) chroot(&(0x7f0000000400)='./file0\x00') rt_sigreturn() openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000000180), 0x400000000000238, 0x0) setsockopt$sock_int(r0, 0x1, 0x7, 0x0, 0x252) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000140), 0x4) socket$inet6(0x10, 0x3, 0x0) chroot(&(0x7f0000000000)='./file0/../file0\x00') [ 428.278785] INFO: task syz-executor.0:2743 blocked for more than 140 seconds. [ 428.490419] Not tainted 4.14.114+ #63 [ 428.494790] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 428.502902] syz-executor.0 D27392 2743 1831 0x00000000 [ 428.508617] Call Trace: [ 428.511357] ? __schedule+0x91c/0x1f30 [ 428.515253] ? __sched_text_start+0x8/0x8 [ 428.519413] ? mark_held_locks+0xa6/0xf0 [ 428.523609] ? rwsem_down_read_failed+0x21f/0x3c0 [ 428.528461] schedule+0x92/0x1c0 [ 428.531943] rwsem_down_read_failed+0x21f/0x3c0 [ 428.536633] ? rt_mutex_futex_unlock+0xe0/0xe0 [ 428.541322] ? debug_object_activate+0x4f0/0x4f0 [ 428.546087] ? free_hot_cold_page+0x703/0xc80 [ 428.550701] call_rwsem_down_read_failed+0x14/0x30 [ 428.555647] down_read+0x45/0xa0 [ 428.559006] ? rmap_walk_file+0x2cc/0x3e0 [ 428.563273] rmap_walk_file+0x2cc/0x3e0 [ 428.567250] ? trace_hardirqs_on+0x10/0x10 [ 428.571588] rmap_walk+0xe5/0x180 [ 428.575045] page_referenced+0x4d5/0x5f0 [ 428.579100] ? rmap_walk+0x180/0x180 [ 428.922883] ? page_evictable+0x11e/0x1f0 [ 428.927087] ? invalid_page_referenced_vma+0x470/0x470 [ 428.932512] ? page_get_anon_vma+0x2b0/0x2b0 [ 428.936923] ? check_preemption_disabled+0x35/0x1f0 [ 428.942069] shrink_active_list+0x49a/0xcf0 [ 428.946413] ? shrink_inactive_list+0x1170/0x1170 [ 428.951382] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 428.956836] ? inactive_list_is_low+0x286/0x710 [ 428.961637] ? lruvec_lru_size+0x1e7/0x2e0 [ 428.965880] shrink_node_memcg+0x91e/0x1320 [ 428.970329] ? shrink_active_list+0xcf0/0xcf0 [ 428.974832] ? shrink_slab.part.0+0x4fd/0xa40 [ 428.979340] ? lock_downgrade+0x5d0/0x5d0 [ 428.983629] ? lock_downgrade+0x5d0/0x5d0 [ 428.987785] ? mem_cgroup_iter+0x52b/0xcb0 [ 428.992152] ? vmpressure+0x3f/0x2f0 [ 428.995978] shrink_node+0x2fa/0xbf0 [ 428.999707] ? __delayacct_freepages_start+0x3d/0x80 [ 429.004950] ? shrink_node_memcg+0x1320/0x1320 [ 429.009530] ? check_preemption_disabled+0x35/0x1f0 [ 429.014692] ? kvm_clock_read+0x1f/0x30 [ 429.018669] ? ktime_get+0x135/0x1b0 [ 429.352790] do_try_to_free_pages+0x350/0xd80 [ 429.357393] ? shrink_node+0xbf0/0xbf0 [ 429.361432] try_to_free_pages+0x20a/0x6c0 [ 429.365672] ? do_try_to_free_pages+0xd80/0xd80 [ 429.370483] __alloc_pages_nodemask+0xac8/0x22e0 [ 429.375240] ? unwind_next_frame+0x4dd/0x17e0 [ 429.379747] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 429.384831] ? fs_reclaim_acquire+0x10/0x10 [ 429.389166] ? copy_process.part.0+0x1400/0x6520 [ 429.394061] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 429.399519] ? rcu_read_lock_sched_held+0x10a/0x130 [ 429.404672] copy_process.part.0+0x25f/0x6520 [ 429.409166] ? check_preemption_disabled+0x35/0x1f0 [ 429.414311] ? __lock_acquire+0x56a/0x3fa0 [ 429.418569] ? __cleanup_sighand+0x40/0x40 [ 429.422915] ? check_preemption_disabled+0x35/0x1f0 [ 429.427939] _do_fork+0x193/0xcc0 [ 429.431509] ? fork_idle+0x260/0x260 [ 429.435231] ? _raw_write_unlock_irq+0x24/0x50 [ 429.439811] ? trace_hardirqs_on_caller+0x37b/0x540 [ 429.444951] ? do_syscall_64+0x43/0x4b0 [ 429.448926] ? sys_vfork+0x20/0x20 [ 429.782006] do_syscall_64+0x19b/0x4b0 [ 429.785964] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 429.791492] INFO: task syz-executor.0:2748 blocked for more than 140 seconds. [ 429.798776] Not tainted 4.14.114+ #63 [ 429.803406] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 429.811400] syz-executor.0 D29432 2748 2740 0x00000000 [ 429.817042] Call Trace: [ 429.819646] ? __schedule+0x91c/0x1f30 [ 429.823690] ? __sched_text_start+0x8/0x8 [ 429.827844] ? mark_held_locks+0xa6/0xf0 [ 429.832039] ? rwsem_down_write_failed+0x3ac/0x760 [ 429.836969] schedule+0x92/0x1c0 [ 429.840462] rwsem_down_write_failed+0x3b1/0x760 [ 429.845229] ? rwsem_down_read_failed_killable+0x580/0x580 [ 429.851007] call_rwsem_down_write_failed+0x13/0x20 [ 429.856566] down_write+0x4f/0x90 [ 429.860161] ? copy_process.part.0+0x3e67/0x6520 [ 429.864919] copy_process.part.0+0x3e67/0x6520 [ 429.869534] ? __cleanup_sighand+0x40/0x40 [ 429.873911] _do_fork+0x193/0xcc0 [ 429.877370] ? fork_idle+0x260/0x260 [ 429.881210] ? _raw_write_unlock_irq+0x24/0x50 [ 429.885798] ? trace_hardirqs_on_caller+0x37b/0x540 [ 430.219090] ? do_syscall_64+0x43/0x4b0 [ 430.223143] ? sys_vfork+0x20/0x20 [ 430.226690] do_syscall_64+0x19b/0x4b0 [ 430.230809] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 430.236211] INFO: task syz-executor.0:2781 blocked for more than 140 seconds. [ 430.243617] Not tainted 4.14.114+ #63 [ 430.247933] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 430.256026] syz-executor.0 D29384 2781 2736 0x00000000 [ 430.261682] Call Trace: [ 430.264273] ? __schedule+0x91c/0x1f30 [ 430.268164] ? __sched_text_start+0x8/0x8 [ 430.272447] ? mark_held_locks+0xa6/0xf0 [ 430.276519] ? rwsem_down_write_failed+0x3ac/0x760 [ 430.281570] schedule+0x92/0x1c0 [ 430.284937] rwsem_down_write_failed+0x3b1/0x760 [ 430.289700] ? rwsem_down_read_failed_killable+0x580/0x580 [ 430.295494] call_rwsem_down_write_failed+0x13/0x20 [ 430.300552] down_write+0x4f/0x90 [ 430.304029] ? copy_process.part.0+0x3e67/0x6520 [ 430.308782] copy_process.part.0+0x3e67/0x6520 [ 430.635197] ? __cleanup_sighand+0x40/0x40 [ 430.639505] _do_fork+0x193/0xcc0 [ 430.643114] ? fork_idle+0x260/0x260 [ 430.647168] ? _raw_write_unlock_irq+0x24/0x50 [ 430.652218] ? trace_hardirqs_on_caller+0x37b/0x540 [ 430.657237] ? do_syscall_64+0x43/0x4b0 [ 430.661324] ? sys_vfork+0x20/0x20 [ 430.664867] do_syscall_64+0x19b/0x4b0 [ 430.668762] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 430.674273] INFO: task syz-executor.0:2784 blocked for more than 140 seconds. [ 430.681576] Not tainted 4.14.114+ #63 [ 430.685891] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 430.693993] syz-executor.0 D29448 2784 2757 0x00000000 [ 430.699627] Call Trace: [ 430.702338] ? __schedule+0x91c/0x1f30 [ 430.706231] ? __sched_text_start+0x8/0x8 [ 430.710506] ? mark_held_locks+0xa6/0xf0 [ 430.714578] ? rwsem_down_write_failed+0x3ac/0x760 [ 430.719503] schedule+0x92/0x1c0 [ 430.723005] rwsem_down_write_failed+0x3b1/0x760 [ 430.727771] ? rwsem_down_read_failed_killable+0x580/0x580 [ 430.733550] call_rwsem_down_write_failed+0x13/0x20 [ 430.738577] down_write+0x4f/0x90 [ 431.061879] ? copy_process.part.0+0x3e67/0x6520 [ 431.066695] copy_process.part.0+0x3e67/0x6520 [ 431.071453] ? __cleanup_sighand+0x40/0x40 [ 431.075706] _do_fork+0x193/0xcc0 [ 431.079160] ? fork_idle+0x260/0x260 [ 431.083017] ? _raw_write_unlock_irq+0x24/0x50 [ 431.087604] ? trace_hardirqs_on_caller+0x37b/0x540 [ 431.092735] ? do_syscall_64+0x43/0x4b0 [ 431.096704] ? sys_vfork+0x20/0x20 [ 431.100449] do_syscall_64+0x19b/0x4b0 [ 431.104357] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 431.109738] INFO: task syz-executor.0:2801 blocked for more than 140 seconds. [ 431.117135] Not tainted 4.14.114+ #63 [ 431.121477] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 431.129443] syz-executor.0 D27392 2801 2768 0x00000000 [ 431.135210] Call Trace: [ 431.137802] ? __schedule+0x91c/0x1f30 [ 431.141797] ? __sched_text_start+0x8/0x8 [ 431.145949] ? mark_held_locks+0xa6/0xf0 [ 431.150015] ? rwsem_down_write_failed+0x3ac/0x760 [ 431.155048] schedule+0x92/0x1c0 [ 431.158423] rwsem_down_write_failed+0x3b1/0x760 [ 431.488949] ? rwsem_down_read_failed_killable+0x580/0x580 [ 431.494679] call_rwsem_down_write_failed+0x13/0x20 [ 431.499705] down_write+0x4f/0x90 [ 431.503294] ? copy_process.part.0+0x3e67/0x6520 [ 431.508056] copy_process.part.0+0x3e67/0x6520 [ 431.512796] ? __cleanup_sighand+0x40/0x40 [ 431.517045] _do_fork+0x193/0xcc0 [ 431.520622] ? fork_idle+0x260/0x260 [ 431.524347] ? _raw_write_unlock_irq+0x24/0x50 [ 431.528925] ? trace_hardirqs_on_caller+0x37b/0x540 [ 431.534062] ? do_syscall_64+0x43/0x4b0 [ 431.538034] ? sys_vfork+0x20/0x20 [ 431.541674] do_syscall_64+0x19b/0x4b0 [ 431.545565] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 431.551062] INFO: task syz-executor.0:2836 blocked for more than 140 seconds. [ 431.558356] Not tainted 4.14.114+ #63 [ 431.562786] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 431.570771] syz-executor.0 D29352 2836 2789 0x00000000 [ 431.576403] Call Trace: [ 431.578990] ? __schedule+0x91c/0x1f30 [ 431.583025] ? __sched_text_start+0x8/0x8 [ 431.587180] ? mark_held_locks+0xa6/0xf0 [ 431.907634] ? rwsem_down_write_failed+0x3ac/0x760 [ 431.912643] schedule+0x92/0x1c0 [ 431.916016] rwsem_down_write_failed+0x3b1/0x760 [ 431.920927] ? rwsem_down_read_failed_killable+0x580/0x580 [ 431.926582] call_rwsem_down_write_failed+0x13/0x20 [ 431.931721] down_write+0x4f/0x90 [ 431.935172] ? copy_process.part.0+0x3e67/0x6520 [ 431.939924] copy_process.part.0+0x3e67/0x6520 [ 431.944651] ? __cleanup_sighand+0x40/0x40 [ 431.948908] _do_fork+0x193/0xcc0 [ 431.952486] ? fork_idle+0x260/0x260 [ 431.956214] ? _raw_write_unlock_irq+0x24/0x50 [ 431.960907] ? trace_hardirqs_on_caller+0x37b/0x540 [ 431.965924] ? do_syscall_64+0x43/0x4b0 [ 431.969891] ? sys_vfork+0x20/0x20 [ 431.973548] do_syscall_64+0x19b/0x4b0 [ 431.977438] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 431.982961] INFO: task syz-executor.0:2888 blocked for more than 140 seconds. [ 431.990256] Not tainted 4.14.114+ #63 [ 431.994566] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 432.325992] syz-executor.0 D26800 2888 2814 0x00000000 [ 432.331708] Call Trace: [ 432.334308] ? __schedule+0x91c/0x1f30 [ 432.338213] ? __sched_text_start+0x8/0x8 [ 432.342530] ? mark_held_locks+0xa6/0xf0 [ 432.346597] ? rwsem_down_read_failed+0x21f/0x3c0 [ 432.351575] schedule+0x92/0x1c0 [ 432.354944] rwsem_down_read_failed+0x21f/0x3c0 [ 432.359612] ? rt_mutex_futex_unlock+0xe0/0xe0 [ 432.364340] ? free_hot_cold_page+0x703/0xc80 [ 432.368849] call_rwsem_down_read_failed+0x14/0x30 [ 432.373901] down_read+0x45/0xa0 [ 432.377265] ? rmap_walk_file+0x2cc/0x3e0 [ 432.381515] rmap_walk_file+0x2cc/0x3e0 [ 432.385488] ? trace_hardirqs_on+0x10/0x10 [ 432.389724] rmap_walk+0xe5/0x180 [ 432.393306] page_referenced+0x4d5/0x5f0 [ 432.397389] ? rmap_walk+0x180/0x180 [ 432.401217] ? page_evictable+0x11e/0x1f0 [ 432.405372] ? invalid_page_referenced_vma+0x470/0x470 [ 432.410750] ? page_get_anon_vma+0x2b0/0x2b0 [ 432.415154] ? check_preemption_disabled+0x35/0x1f0 [ 432.420285] shrink_active_list+0x49a/0xcf0 [ 432.424627] ? shrink_inactive_list+0x1170/0x1170 [ 432.429478] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 432.747690] ? inactive_list_is_low+0x286/0x710 [ 432.752450] ? lruvec_lru_size+0x1e7/0x2e0 [ 432.756709] shrink_node_memcg+0x91e/0x1320 [ 432.761193] ? shrink_active_list+0xcf0/0xcf0 [ 432.765692] ? shrink_slab.part.0+0x4fd/0xa40 [ 432.770336] ? lock_downgrade+0x5d0/0x5d0 [ 432.774496] ? lock_downgrade+0x5d0/0x5d0 [ 432.778645] ? mem_cgroup_iter+0x52b/0xcb0 [ 432.783028] ? vmpressure+0x3f/0x2f0 [ 432.786748] shrink_node+0x2fa/0xbf0 [ 432.790593] ? shrink_node_memcg+0x1320/0x1320 [ 432.795172] ? check_preemption_disabled+0x35/0x1f0 [ 432.800313] ? kvm_clock_read+0x1f/0x30 [ 432.804292] ? ktime_get+0x135/0x1b0 [ 432.808007] do_try_to_free_pages+0x350/0xd80 [ 432.812649] ? shrink_node+0xbf0/0xbf0 [ 432.816549] try_to_free_pages+0x20a/0x6c0 [ 432.820903] ? do_try_to_free_pages+0xd80/0xd80 [ 432.825589] __alloc_pages_nodemask+0xac8/0x22e0 [ 432.830456] ? check_preemption_disabled+0x35/0x1f0 [ 432.835484] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 433.154732] ? trace_hardirqs_on_caller+0x37b/0x540 [ 433.159817] ? _raw_spin_unlock_irqrestore+0x41/0x70 [ 433.165072] ? try_to_wake_up+0x7cc/0x12a0 [ 433.169316] ? mark_held_locks+0xa6/0xf0 [ 433.173499] ? new_slab+0x30b/0x480 [ 433.177132] new_slab+0xa2/0x480 [ 433.180613] ? ___slab_alloc.constprop.0+0x354/0x470 [ 433.185718] ? anon_vma_clone+0x224/0x460 [ 433.189869] ? fs_reclaim_acquire+0x10/0x10 [ 433.194328] ? anon_vma_clone+0x224/0x460 [ 433.198472] ? check_preemption_disabled+0x35/0x1f0 [ 433.203591] ? anon_vma_clone+0x224/0x460 [ 433.207739] ? __slab_alloc.isra.0.constprop.0+0x4b/0x90 [ 433.213296] ? anon_vma_clone+0x224/0x460 [ 433.217442] ? kmem_cache_alloc+0x1ab/0x2d0 [ 433.221912] ? anon_vma_clone+0x224/0x460 [ 433.226069] ? anon_vma_fork+0x82/0x420 [ 433.230158] ? copy_process.part.0+0x426f/0x6520 [ 433.234940] ? __cleanup_sighand+0x40/0x40 [ 433.239181] ? _do_fork+0x193/0xcc0 [ 433.242932] ? fork_idle+0x260/0x260 [ 433.246651] ? _raw_write_unlock_irq+0x24/0x50 [ 433.251358] ? trace_hardirqs_on_caller+0x37b/0x540 [ 433.256376] ? do_syscall_64+0x43/0x4b0 [ 433.576207] ? sys_vfork+0x20/0x20 [ 433.579830] ? do_syscall_64+0x19b/0x4b0 [ 433.584035] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 433.589433] INFO: task syz-executor.0:2917 blocked for more than 140 seconds. [ 433.596837] Not tainted 4.14.114+ #63 [ 433.601173] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 433.609135] syz-executor.0 D26800 2917 2827 0x00000000 [ 433.614902] Call Trace: [ 433.617500] ? __schedule+0x91c/0x1f30 [ 433.621508] ? __sched_text_start+0x8/0x8 [ 433.625664] ? mark_held_locks+0xa6/0xf0 [ 433.629743] ? rwsem_down_read_failed+0x21f/0x3c0 [ 433.634713] schedule+0x92/0x1c0 [ 433.638084] rwsem_down_read_failed+0x21f/0x3c0 [ 433.642864] ? rt_mutex_futex_unlock+0xe0/0xe0 [ 433.647547] ? free_hot_cold_page+0x703/0xc80 [ 433.652153] call_rwsem_down_read_failed+0x14/0x30 [ 433.657089] down_read+0x45/0xa0 [ 433.660552] ? rmap_walk_file+0x2cc/0x3e0 [ 433.664696] rmap_walk_file+0x2cc/0x3e0 [ 433.668667] ? trace_hardirqs_on+0x10/0x10 [ 433.982469] rmap_walk+0xe5/0x180 [ 433.985989] page_referenced+0x4d5/0x5f0 [ 433.990198] ? rmap_walk+0x180/0x180 [ 433.993923] ? page_evictable+0x11e/0x1f0 [ 433.998249] ? invalid_page_referenced_vma+0x470/0x470 [ 434.003674] ? page_get_anon_vma+0x2b0/0x2b0 [ 434.008093] ? check_preemption_disabled+0x35/0x1f0 [ 434.013248] shrink_active_list+0x49a/0xcf0 [ 434.017584] ? shrink_inactive_list+0x1170/0x1170 [ 434.022549] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 434.028005] ? inactive_list_is_low+0x286/0x710 [ 434.032810] ? lruvec_lru_size+0x1e7/0x2e0 [ 434.037063] shrink_node_memcg+0x91e/0x1320 [ 434.041536] ? shrink_active_list+0xcf0/0xcf0 [ 434.046033] ? shrink_slab.part.0+0x4fd/0xa40 [ 434.050652] ? lock_downgrade+0x5d0/0x5d0 [ 434.054805] ? lock_downgrade+0x5d0/0x5d0 [ 434.058952] ? mem_cgroup_iter+0x52b/0xcb0 [ 434.063333] ? vmpressure+0x3f/0x2f0 [ 434.067049] shrink_node+0x2fa/0xbf0 [ 434.070886] ? shrink_node_memcg+0x1320/0x1320 [ 434.075469] ? check_preemption_disabled+0x35/0x1f0 [ 434.080671] ? kvm_clock_read+0x1f/0x30 [ 434.084643] ? ktime_get+0x135/0x1b0 [ 434.088363] do_try_to_free_pages+0x350/0xd80 [ 434.403598] ? shrink_node+0xbf0/0xbf0 [ 434.407555] try_to_free_pages+0x20a/0x6c0 [ 434.411932] ? do_try_to_free_pages+0xd80/0xd80 [ 434.416622] __alloc_pages_nodemask+0xac8/0x22e0 [ 434.421504] ? check_preemption_disabled+0x35/0x1f0 [ 434.426625] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 434.431597] ? trace_hardirqs_on_caller+0x37b/0x540 [ 434.436619] ? _raw_spin_unlock_irqrestore+0x41/0x70 [ 434.441844] ? try_to_wake_up+0x7cc/0x12a0 [ 434.446081] ? mark_held_locks+0xa6/0xf0 [ 434.450269] ? new_slab+0x30b/0x480 [ 434.453898] new_slab+0xa2/0x480 [ 434.457269] ? ___slab_alloc.constprop.0+0x354/0x470 [ 434.462499] ? anon_vma_clone+0x224/0x460 [ 434.466662] ? fs_reclaim_acquire+0x10/0x10 [ 434.471110] ? anon_vma_clone+0x224/0x460 [ 434.475253] ? check_preemption_disabled+0x35/0x1f0 [ 434.480392] ? anon_vma_clone+0x224/0x460 [ 434.484544] ? __slab_alloc.isra.0.constprop.0+0x4b/0x90 [ 434.489994] ? anon_vma_clone+0x224/0x460 [ 434.803254] ? kmem_cache_alloc+0x1ab/0x2d0 [ 434.807640] ? anon_vma_clone+0x224/0x460 [ 434.811963] ? anon_vma_fork+0x82/0x420 [ 434.815948] ? copy_process.part.0+0x426f/0x6520 [ 434.820858] ? __cleanup_sighand+0x40/0x40 [ 434.825116] ? _do_fork+0x193/0xcc0 [ 434.828760] ? fork_idle+0x260/0x260 [ 434.832676] ? _raw_write_unlock_irq+0x24/0x50 [ 434.837261] ? trace_hardirqs_on_caller+0x37b/0x540 [ 434.842304] ? do_syscall_64+0x43/0x4b0 [ 434.846271] ? sys_vfork+0x20/0x20 [ 434.849810] ? do_syscall_64+0x19b/0x4b0 [ 434.853904] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 434.859311] INFO: task syz-executor.0:2966 blocked for more than 140 seconds. [ 434.866615] Not tainted 4.14.114+ #63 [ 434.870966] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 434.878935] syz-executor.0 D29688 2966 2851 0x00000000 [ 434.886074] Call Trace: [ 434.888673] ? __schedule+0x91c/0x1f30 [ 434.892597] ? __sched_text_start+0x8/0x8 [ 434.896841] ? mark_held_locks+0xa6/0xf0 [ 434.900934] ? rwsem_down_write_failed+0x3ac/0x760 [ 434.905861] schedule+0x92/0x1c0 [ 434.909227] rwsem_down_write_failed+0x3b1/0x760 [ 435.217166] ? rwsem_down_read_failed_killable+0x580/0x580 [ 435.222895] call_rwsem_down_write_failed+0x13/0x20 [ 435.227924] down_write+0x4f/0x90 [ 435.231405] ? copy_process.part.0+0x3e67/0x6520 [ 435.236171] copy_process.part.0+0x3e67/0x6520 [ 435.240801] ? __cleanup_sighand+0x40/0x40 [ 435.245050] _do_fork+0x193/0xcc0 [ 435.248505] ? fork_idle+0x260/0x260 [ 435.252256] ? _raw_write_unlock_irq+0x24/0x50 [ 435.256838] ? trace_hardirqs_on_caller+0x37b/0x540 [ 435.261877] ? do_syscall_64+0x43/0x4b0 [ 435.265847] ? sys_vfork+0x20/0x20 [ 435.269385] do_syscall_64+0x19b/0x4b0 [ 435.273301] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 435.278788] INFO: task syz-executor.0:3015 blocked for more than 140 seconds. [ 435.286094] Not tainted 4.14.114+ #63 [ 435.290432] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 435.298395] syz-executor.0 D26800 3015 2808 0x00000000 [ 435.609986] Call Trace: [ 435.612668] ? __schedule+0x91c/0x1f30 [ 435.616572] ? __sched_text_start+0x8/0x8 [ 435.620760] ? mark_held_locks+0xa6/0xf0 [ 435.624825] ? rwsem_down_write_failed+0x3ac/0x760 [ 435.629749] schedule+0x92/0x1c0 [ 435.633144] rwsem_down_write_failed+0x3b1/0x760 [ 435.637911] ? rwsem_down_read_failed_killable+0x580/0x580 [ 435.654258] call_rwsem_down_write_failed+0x13/0x20 [ 435.659284] down_write+0x4f/0x90 [ 435.662769] ? copy_process.part.0+0x3e67/0x6520 [ 435.667611] copy_process.part.0+0x3e67/0x6520 [ 435.672253] ? __cleanup_sighand+0x40/0x40 [ 435.676502] _do_fork+0x193/0xcc0 [ 435.679962] ? fork_idle+0x260/0x260 [ 435.683713] ? _raw_write_unlock_irq+0x24/0x50 [ 435.688299] ? trace_hardirqs_on_caller+0x37b/0x540 [ 435.693346] ? do_syscall_64+0x43/0x4b0 [ 435.697320] ? sys_vfork+0x20/0x20 [ 435.700892] do_syscall_64+0x19b/0x4b0 [ 435.704785] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 436.025621] [ 436.025621] Showing all locks held in the system: [ 436.032035] 1 lock held by khungtaskd/23: [ 436.036236] #0: (tasklist_lock){.+.+}, at: [<000000008a988f10>] debug_show_all_locks+0x7c/0x21a [ 436.045310] 1 lock held by udevd/294: [ 436.049105] #0: (&mm->mmap_sem){++++}, at: [<00000000c1470a68>] __do_page_fault+0x271/0xb80 [ 436.057824] 1 lock held by udevd/295: [ 436.061642] #0: (&mm->mmap_sem){++++}, at: [<00000000c1470a68>] __do_page_fault+0x271/0xb80 [ 436.070349] 3 locks held by rs:main Q:Reg/1613: [ 436.075008] #0: (&f->f_pos_lock){+.+.}, at: [<0000000045b4d1be>] __fdget_pos+0xa6/0xc0 [ 436.083289] #1: (sb_writers#4){.+.+}, at: [<00000000c8fb7f5f>] vfs_write+0x3d8/0x4d0 [ 436.091389] #2: (&sb->s_type->i_mutex_key#9){+.+.}, at: [<000000001d890338>] ext4_file_write_iter+0x1bb/0xe40 [ 436.101665] 1 lock held by rsyslogd/1616: [ 436.105804] #0: (&mm->mmap_sem){++++}, at: [<00000000c1470a68>] __do_page_fault+0x271/0xb80 [ 436.114606] 2 locks held by getty/1743: [ 436.118580] #0: (&tty->ldisc_sem){++++}, at: [<000000008c3367dd>] tty_ldisc_ref_wait+0x22/0x80 [ 436.127574] #1: (&ldata->atomic_read_lock){+.+.}, at: [<000000003ef55fc9>] n_tty_read+0x1f7/0x1700 [ 436.136891] 1 lock held by syz-fuzzer/1776: [ 436.141223] #0: (&ei->i_mmap_sem){++++}, at: [<00000000ceccad52>] ext4_filemap_fault+0x7c/0xb0 [ 436.150183] 1 lock held by syz-fuzzer/1778: [ 436.154494] #0: (&ei->i_mmap_sem){++++}, at: [<00000000ceccad52>] ext4_filemap_fault+0x7c/0xb0 [ 436.163462] 2 locks held by kworker/u4:4/1843: [ 436.168035] #0: ("events_unbound"){+.+.}, at: [<00000000c6f0fc05>] process_one_work+0x6e5/0x1510 [ 436.177167] #1: ((&sub_info->work)){+.+.}, at: [<00000000a44c9bed>] process_one_work+0x71b/0x1510 [ 436.186389] 3 locks held by syz-executor.0/2735: [ 436.191155] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.200373] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.209565] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.218961] 3 locks held by syz-executor.0/2736: [ 436.223724] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.232948] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.242162] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.251563] 3 locks held by syz-executor.0/2737: [ 436.256304] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.265530] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.274748] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.284151] 3 locks held by syz-executor.0/2738: [ 436.288896] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.298122] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.307348] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.316790] 3 locks held by syz-executor.0/2740: [ 436.321656] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.330882] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.340105] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.349486] 3 locks held by syz-executor.0/2741: [ 436.354262] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.363486] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.372715] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.382127] 3 locks held by syz-executor.0/2742: [ 436.386876] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.396101] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.405321] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.414726] 1 lock held by syz-executor.0/2743: [ 436.419388] #0: (&mapping->i_mmap_rwsem){++++}, at: [<00000000353b4f88>] rmap_walk_file+0x2cc/0x3e0 [ 436.428793] 3 locks held by syz-executor.0/2746: [ 436.433573] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.442801] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.452030] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.461520] 3 locks held by syz-executor.0/2747: [ 436.466250] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.475437] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.484622] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.493995] 4 locks held by syz-executor.0/2748: [ 436.498727] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.507907] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.517089] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.526448] #3: (&mapping->i_mmap_rwsem){++++}, at: [<00000000c568c240>] copy_process.part.0+0x3e67/0x6520 [ 436.536414] 3 locks held by syz-executor.0/2749: [ 436.541168] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.550363] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.559535] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.568893] 3 locks held by syz-executor.0/2750: [ 436.573637] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.582817] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.592005] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.601363] 3 locks held by syz-executor.0/2751: [ 436.606104] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.615291] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.624472] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.633851] 3 locks held by syz-executor.0/2752: [ 436.638582] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.647765] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.656947] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.666315] 3 locks held by syz-executor.0/2753: [ 436.671067] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.680251] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.689418] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.698791] 3 locks held by syz-executor.0/2754: [ 436.703535] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.712731] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.721927] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.731294] 3 locks held by syz-executor.0/2755: [ 436.736024] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.745217] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.754398] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.763760] 3 locks held by syz-executor.0/2756: [ 436.768490] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.777683] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.786863] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.796221] 3 locks held by syz-executor.0/2758: [ 436.800969] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.810150] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.819323] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.828684] 3 locks held by syz-executor.0/2760: [ 436.833426] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.842608] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.851801] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.861163] 3 locks held by syz-executor.0/2761: [ 436.865891] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.875073] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.885390] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.894764] 3 locks held by syz-executor.0/2762: [ 436.899496] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.908692] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.917875] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.927234] 3 locks held by syz-executor.0/2763: [ 436.931980] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.941161] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.950342] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.959692] 3 locks held by syz-executor.0/2764: [ 436.964436] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 436.973718] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 436.982899] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 436.992264] 3 locks held by syz-executor.0/2767: [ 436.997032] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.006238] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.015421] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.024785] 3 locks held by syz-executor.0/2769: [ 437.029525] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.038715] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.047896] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.057259] 3 locks held by syz-executor.0/2770: [ 437.062013] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.071267] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.080461] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.089827] 3 locks held by syz-executor.0/2771: [ 437.094572] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.103756] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.112947] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.122308] 3 locks held by syz-executor.0/2772: [ 437.127040] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.136227] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.145412] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.154775] 3 locks held by syz-executor.0/2773: [ 437.159508] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.168689] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.177873] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.187231] 3 locks held by syz-executor.0/2774: [ 437.191975] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.201155] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.210337] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.219695] 3 locks held by syz-executor.0/2776: [ 437.224443] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.233624] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.242805] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.252181] 3 locks held by syz-executor.0/2778: [ 437.256912] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.266103] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.275371] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.284735] 3 locks held by syz-executor.0/2779: [ 437.289466] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.298646] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.307829] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.317189] 3 locks held by syz-executor.0/2780: [ 437.321942] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.331136] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.340320] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.349754] 4 locks held by syz-executor.0/2781: [ 437.354495] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.363686] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.372869] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.382229] #3: (&mapping->i_mmap_rwsem){++++}, at: [<00000000c568c240>] copy_process.part.0+0x3e67/0x6520 [ 437.392199] 3 locks held by syz-executor.0/2782: [ 437.396935] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.406122] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.415401] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.424767] 3 locks held by syz-executor.0/2783: [ 437.429499] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.438682] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.447875] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.457243] 4 locks held by syz-executor.0/2784: [ 437.461986] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.471170] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.480353] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.489696] #3: (&mapping->i_mmap_rwsem){++++}, at: [<00000000c568c240>] copy_process.part.0+0x3e67/0x6520 [ 437.499664] 3 locks held by syz-executor.0/2785: [ 437.504405] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.513590] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.522771] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.532129] 3 locks held by syz-executor.0/2786: [ 437.536861] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.546044] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.555224] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.564582] 3 locks held by syz-executor.0/2787: [ 437.569311] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.578577] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.587756] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.597117] 3 locks held by syz-executor.0/2788: [ 437.601861] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.611056] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.620242] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.629588] 3 locks held by syz-executor.0/2790: [ 437.634328] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.643513] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.652700] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.663627] 3 locks held by syz-executor.0/2791: [ 437.668367] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.677553] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.686744] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.696103] 3 locks held by syz-executor.0/2792: [ 437.700845] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.710030] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.719987] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.729397] 3 locks held by syz-executor.0/2794: [ 437.734144] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.743329] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.752601] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.761960] 3 locks held by syz-executor.0/2795: [ 437.766689] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.775870] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.785233] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.794592] 3 locks held by syz-executor.0/2796: [ 437.799332] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.808519] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.817704] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.827076] 3 locks held by syz-executor.0/2797: [ 437.831818] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.841001] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.850195] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.859543] 3 locks held by syz-executor.0/2798: [ 437.864292] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.873476] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.882672] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.892526] 4 locks held by syz-executor.0/2801: [ 437.897265] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.906450] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.915718] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.925075] #3: (&mapping->i_mmap_rwsem){++++}, at: [<00000000c568c240>] copy_process.part.0+0x3e67/0x6520 [ 437.935040] 3 locks held by syz-executor.0/2802: [ 437.939768] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.948949] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.958131] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 437.967498] 3 locks held by syz-executor.0/2803: [ 437.972243] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 437.981441] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 437.990709] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 438.000074] 3 locks held by syz-executor.0/2804: [ 438.004808] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 438.013990] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 438.023174] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 438.032536] 3 locks held by syz-executor.0/2805: [ 438.037267] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 438.046447] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 438.055632] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 438.064991] 3 locks held by syz-executor.0/2807: [ 438.069721] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 438.078994] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 438.088186] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 438.097548] 3 locks held by syz-executor.0/2808: [ 438.102289] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 438.111472] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 438.120666] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 438.130028] 3 locks held by syz-executor.0/2810: [ 438.134774] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 438.143957] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 438.153148] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 438.162509] 3 locks held by syz-executor.0/2811: [ 438.167240] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 438.176423] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 438.185605] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 438.194964] 3 locks held by syz-executor.0/2812: [ 438.199693] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 438.208878] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 438.218061] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 438.227420] 3 locks held by syz-executor.0/2814: [ 438.232171] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 438.241357] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 438.250551] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 438.259898] 3 locks held by syz-executor.0/2817: [ 438.264651] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 438.273931] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 438.283113] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 438.292474] 3 locks held by syz-executor.0/2818: [ 438.297212] #0: (&dup_mmap_sem){.+.+}, at: [<00000000811c4672>] copy_process.part.0+0x3997/0x6520 [ 438.306393] #1: (&mm->mmap_sem){++++}, at: [<000000000a7a1649>] copy_process.part.0+0x39b3/0x6520 [ 438.315578] #2: (&mm->mmap_sem/1){+.+.}, at: [<00000000541e3751>] copy_process.part.0+0x39fb/0x6520 [ 438.324937] 3 locks held by syz-executor.0/2819: