Warning: Permanently added '10.128.0.202' (ECDSA) to the list of known hosts. 2020/03/11 10:06:04 fuzzer started syzkaller login: [ 68.646221][ T8391] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8391 [ 68.655252][ T8391] caller is __mod_memcg_state+0x27/0x1a0 [ 68.660921][ T8391] CPU: 1 PID: 8391 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 68.670374][ T8391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 68.680446][ T8391] Call Trace: [ 68.683741][ T8391] dump_stack+0x188/0x20d [ 68.688073][ T8391] __this_cpu_preempt_check.cold+0x84/0x90 [ 68.693873][ T8391] __mod_memcg_state+0x27/0x1a0 [ 68.698727][ T8391] split_huge_page_to_list+0x124b/0x3380 [ 68.704362][ T8391] ? mark_held_locks+0xe0/0xe0 [ 68.709123][ T8391] ? lock_downgrade+0x7f0/0x7f0 [ 68.713972][ T8391] ? can_split_huge_page+0x480/0x480 [ 68.719246][ T8391] ? pmd_val+0x7c/0xf0 [ 68.723310][ T8391] ? pmd_pfn+0x125/0x1c0 [ 68.727549][ T8391] ? enabled_store+0x190/0x190 [ 68.732323][ T8391] madvise_free_huge_pmd+0x873/0xb90 [ 68.737611][ T8391] madvise_free_pte_range+0x6ff/0x2650 [ 68.743070][ T8391] ? mem_cgroup_uncharge+0xf0/0xf0 [ 68.748177][ T8391] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 68.754847][ T8391] __walk_page_range+0xcfb/0x2070 [ 68.759882][ T8391] ? walk_page_test+0x78/0x180 [ 68.764640][ T8391] walk_page_range+0x1bd/0x3a0 [ 68.769401][ T8391] ? __walk_page_range+0x2070/0x2070 [ 68.774688][ T8391] ? madvise_free_single_vma+0x2c1/0x550 [ 68.780406][ T8391] madvise_free_single_vma+0x384/0x550 [ 68.785864][ T8391] ? madvise_pageout+0x3b0/0x3b0 [ 68.790799][ T8391] ? lock_acquire+0x197/0x420 [ 68.795468][ T8391] ? userfaultfd_remove+0xf0/0x2b0 [ 68.800579][ T8391] ? vmacache_find+0x62/0x300 [ 68.805250][ T8391] ? find_vma+0x2b/0x170 [ 68.809490][ T8391] do_madvise+0x5ba/0x1b80 [ 68.813899][ T8391] ? lock_downgrade+0x7f0/0x7f0 [ 68.818750][ T8391] ? madvise_free_pte_range+0x2650/0x2650 [ 68.824467][ T8391] ? ktime_get+0x1f8/0x2f0 [ 68.828889][ T8391] ? __x64_sys_futex+0x376/0x4f0 [ 68.833824][ T8391] ? switch_fpu_return+0x1db/0x4b0 [ 68.838926][ T8391] ? fpregs_mark_activate+0x320/0x320 [ 68.844304][ T8391] ? __x64_sys_madvise+0xae/0x120 [ 68.849326][ T8391] ? trace_hardirqs_on+0x55/0x220 [ 68.854344][ T8391] __x64_sys_madvise+0xae/0x120 [ 68.859190][ T8391] do_syscall_64+0xf6/0x7d0 [ 68.863690][ T8391] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 68.869571][ T8391] RIP: 0033:0x460bf7 [ 68.873462][ T8391] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 68.893062][ T8391] RSP: 002b:000000c0000e9e70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 68.901465][ T8391] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 68.909429][ T8391] RDX: 0000000000000008 RSI: 000000000000a000 RDI: 000000c0002a4000 [ 68.917395][ T8391] RBP: 000000c0000e9eb0 R08: 000000c000200000 R09: 000000c0002ae000 [ 68.925359][ T8391] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000032 [ 68.933327][ T8391] R13: 000000c0003bf548 R14: 0000000000000001 R15: 0000000000000008 [ 68.941374][ T8391] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8391 [ 68.950247][ T8391] caller is __mod_memcg_state+0xca/0x1a0 [ 68.955875][ T8391] CPU: 1 PID: 8391 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 68.965315][ T8391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 68.975356][ T8391] Call Trace: [ 68.978643][ T8391] dump_stack+0x188/0x20d [ 68.982977][ T8391] __this_cpu_preempt_check.cold+0x84/0x90 [ 68.988773][ T8391] __mod_memcg_state+0xca/0x1a0 [ 68.993622][ T8391] split_huge_page_to_list+0x124b/0x3380 [ 68.999250][ T8391] ? mark_held_locks+0xe0/0xe0 [ 69.004007][ T8391] ? lock_downgrade+0x7f0/0x7f0 [ 69.008855][ T8391] ? can_split_huge_page+0x480/0x480 [ 69.014141][ T8391] ? pmd_val+0x7c/0xf0 [ 69.018203][ T8391] ? pmd_pfn+0x125/0x1c0 [ 69.022438][ T8391] ? enabled_store+0x190/0x190 [ 69.027200][ T8391] madvise_free_huge_pmd+0x873/0xb90 [ 69.032488][ T8391] madvise_free_pte_range+0x6ff/0x2650 [ 69.037949][ T8391] ? mem_cgroup_uncharge+0xf0/0xf0 [ 69.043055][ T8391] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 69.049722][ T8391] __walk_page_range+0xcfb/0x2070 [ 69.054756][ T8391] ? walk_page_test+0x78/0x180 [ 69.059514][ T8391] walk_page_range+0x1bd/0x3a0 [ 69.064270][ T8391] ? __walk_page_range+0x2070/0x2070 [ 69.069648][ T8391] ? madvise_free_single_vma+0x2c1/0x550 [ 69.075284][ T8391] madvise_free_single_vma+0x384/0x550 [ 69.080738][ T8391] ? madvise_pageout+0x3b0/0x3b0 [ 69.085669][ T8391] ? lock_acquire+0x197/0x420 [ 69.090340][ T8391] ? userfaultfd_remove+0xf0/0x2b0 [ 69.095449][ T8391] ? vmacache_find+0x62/0x300 [ 69.100124][ T8391] ? find_vma+0x2b/0x170 [ 69.104368][ T8391] do_madvise+0x5ba/0x1b80 [ 69.108773][ T8391] ? lock_downgrade+0x7f0/0x7f0 [ 69.113626][ T8391] ? madvise_free_pte_range+0x2650/0x2650 [ 69.119333][ T8391] ? ktime_get+0x1f8/0x2f0 [ 69.123746][ T8391] ? __x64_sys_futex+0x376/0x4f0 [ 69.128680][ T8391] ? switch_fpu_return+0x1db/0x4b0 [ 69.133788][ T8391] ? fpregs_mark_activate+0x320/0x320 [ 69.139165][ T8391] ? __x64_sys_madvise+0xae/0x120 [ 69.144274][ T8391] ? trace_hardirqs_on+0x55/0x220 [ 69.149291][ T8391] __x64_sys_madvise+0xae/0x120 [ 69.154139][ T8391] do_syscall_64+0xf6/0x7d0 [ 69.158640][ T8391] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 69.164525][ T8391] RIP: 0033:0x460bf7 [ 69.168422][ T8391] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 69.188020][ T8391] RSP: 002b:000000c0000e9e70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 69.196515][ T8391] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 69.204491][ T8391] RDX: 0000000000000008 RSI: 000000000000a000 RDI: 000000c0002a4000 [ 69.212465][ T8391] RBP: 000000c0000e9eb0 R08: 000000c000200000 R09: 000000c0002ae000 [ 69.220435][ T8391] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000032 [ 69.228409][ T8391] R13: 000000c0003bf548 R14: 0000000000000001 R15: 0000000000000008 [ 69.236436][ T8391] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8391 [ 69.245488][ T8391] caller is __mod_memcg_state+0x87/0x1a0 [ 69.251148][ T8391] CPU: 1 PID: 8391 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 69.260592][ T8391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 69.270918][ T8391] Call Trace: [ 69.274222][ T8391] dump_stack+0x188/0x20d [ 69.278571][ T8391] __this_cpu_preempt_check.cold+0x84/0x90 [ 69.284393][ T8391] __mod_memcg_state+0x87/0x1a0 [ 69.289252][ T8391] split_huge_page_to_list+0x124b/0x3380 [ 69.294891][ T8391] ? mark_held_locks+0xe0/0xe0 [ 69.299654][ T8391] ? lock_downgrade+0x7f0/0x7f0 [ 69.304511][ T8391] ? can_split_huge_page+0x480/0x480 [ 69.309798][ T8391] ? pmd_val+0x7c/0xf0 [ 69.313876][ T8391] ? pmd_pfn+0x125/0x1c0 [ 69.318112][ T8391] ? enabled_store+0x190/0x190 [ 69.322889][ T8391] madvise_free_huge_pmd+0x873/0xb90 [ 69.328191][ T8391] madvise_free_pte_range+0x6ff/0x2650 [ 69.333662][ T8391] ? mem_cgroup_uncharge+0xf0/0xf0 [ 69.338778][ T8391] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 69.346597][ T8391] __walk_page_range+0xcfb/0x2070 [ 69.351647][ T8391] ? walk_page_test+0x78/0x180 [ 69.356424][ T8391] walk_page_range+0x1bd/0x3a0 [ 69.361193][ T8391] ? __walk_page_range+0x2070/0x2070 [ 69.366495][ T8391] ? madvise_free_single_vma+0x2c1/0x550 [ 69.372133][ T8391] madvise_free_single_vma+0x384/0x550 [ 69.377599][ T8391] ? madvise_pageout+0x3b0/0x3b0 [ 69.382535][ T8391] ? lock_acquire+0x197/0x420 [ 69.387214][ T8391] ? userfaultfd_remove+0xf0/0x2b0 [ 69.392352][ T8391] ? vmacache_find+0x62/0x300 [ 69.397034][ T8391] ? find_vma+0x2b/0x170 [ 69.401284][ T8391] do_madvise+0x5ba/0x1b80 [ 69.405703][ T8391] ? lock_downgrade+0x7f0/0x7f0 [ 69.410565][ T8391] ? madvise_free_pte_range+0x2650/0x2650 [ 69.416277][ T8391] ? ktime_get+0x1f8/0x2f0 [ 69.420694][ T8391] ? __x64_sys_futex+0x376/0x4f0 [ 69.425638][ T8391] ? switch_fpu_return+0x1db/0x4b0 [ 69.430747][ T8391] ? fpregs_mark_activate+0x320/0x320 [ 69.436119][ T8391] ? __x64_sys_madvise+0xae/0x120 [ 69.441138][ T8391] ? trace_hardirqs_on+0x55/0x220 [ 69.446157][ T8391] __x64_sys_madvise+0xae/0x120 [ 69.451009][ T8391] do_syscall_64+0xf6/0x7d0 [ 69.455510][ T8391] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 69.461396][ T8391] RIP: 0033:0x460bf7 [ 69.465283][ T8391] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 69.484982][ T8391] RSP: 002b:000000c0000e9e70 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 69.493398][ T8391] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 69.501371][ T8391] RDX: 0000000000000008 RSI: 000000000000a000 RDI: 000000c0002a4000 [ 69.509334][ T8391] RBP: 000000c0000e9eb0 R08: 000000c000200000 R09: 000000c0002ae000 [ 69.517298][ T8391] R10: 00007fffffffffff R11: 0000000000000246 R12: 0000000000000032 [ 69.525265][ T8391] R13: 000000c0003bf548 R14: 0000000000000001 R15: 0000000000000008 2020/03/11 10:06:06 connecting to host at 10.128.0.26:33303 2020/03/11 10:06:06 checking machine... 2020/03/11 10:06:06 checking revisions... 2020/03/11 10:06:06 testing simple program... [ 70.676247][ T8405] IPVS: ftp: loaded support on port[0] = 21 2020/03/11 10:06:07 building call list... [ 70.850138][ T8391] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8391 [ 70.859166][ T8391] caller is __mod_memcg_state+0x27/0x1a0 [ 70.864793][ T8391] CPU: 1 PID: 8391 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 70.874235][ T8391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 70.884282][ T8391] Call Trace: [ 70.887568][ T8391] dump_stack+0x188/0x20d [ 70.891909][ T8391] __this_cpu_preempt_check.cold+0x84/0x90 [ 70.897715][ T8391] __mod_memcg_state+0x27/0x1a0 [ 70.902565][ T8391] split_huge_page_to_list+0x124b/0x3380 [ 70.908207][ T8391] ? mark_held_locks+0xe0/0xe0 [ 70.912976][ T8391] ? can_split_huge_page+0x480/0x480 [ 70.918340][ T8391] ? pmd_val+0x7c/0xf0 [ 70.922405][ T8391] ? pmd_pfn+0x125/0x1c0 [ 70.926650][ T8391] ? enabled_store+0x190/0x190 [ 70.931415][ T8391] madvise_free_huge_pmd+0x873/0xb90 [ 70.936701][ T8391] madvise_free_pte_range+0x6ff/0x2650 [ 70.942156][ T8391] ? kmem_cache_free+0x7f/0x320 [ 70.946998][ T8391] ? do_madvise+0xbb3/0x1b80 [ 70.951584][ T8391] ? __x64_sys_madvise+0xae/0x120 [ 70.956607][ T8391] ? mem_cgroup_uncharge+0xf0/0xf0 [ 70.961711][ T8391] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 70.968468][ T8391] __walk_page_range+0xcfb/0x2070 [ 70.973500][ T8391] ? walk_page_test+0x78/0x180 [ 70.978262][ T8391] walk_page_range+0x1bd/0x3a0 [ 70.983019][ T8391] ? __walk_page_range+0x2070/0x2070 [ 70.988302][ T8391] ? madvise_free_single_vma+0x2c1/0x550 [ 70.993934][ T8391] madvise_free_single_vma+0x384/0x550 [ 70.999398][ T8391] ? madvise_pageout+0x3b0/0x3b0 [ 71.004334][ T8391] ? lock_acquire+0x197/0x420 [ 71.009004][ T8391] ? userfaultfd_remove+0xf0/0x2b0 [ 71.014111][ T8391] ? vmacache_find+0x62/0x300 [ 71.018779][ T8391] ? vmacache_update+0xce/0x140 [ 71.023623][ T8391] ? find_vma+0x2b/0x170 [ 71.027860][ T8391] do_madvise+0x5ba/0x1b80 [ 71.032265][ T8391] ? unuse_pde+0x2c/0x80 [ 71.036519][ T8391] ? madvise_free_pte_range+0x2650/0x2650 [ 71.043234][ T8391] ? wait_for_completion+0x3c0/0x3c0 [ 71.048521][ T8391] ? fput_many+0x2f/0x1a0 [ 71.052840][ T8391] ? ksys_read+0x19f/0x250 [ 71.057258][ T8391] ? kernel_write+0x120/0x120 [ 71.061931][ T8391] ? __x64_sys_madvise+0xae/0x120 [ 71.066944][ T8391] ? trace_hardirqs_on+0x55/0x220 [ 71.071970][ T8391] __x64_sys_madvise+0xae/0x120 [ 71.076817][ T8391] do_syscall_64+0xf6/0x7d0 [ 71.081313][ T8391] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 71.087191][ T8391] RIP: 0033:0x460bf7 [ 71.091079][ T8391] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 71.111292][ T8391] RSP: 002b:000000c0000e9c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 71.119692][ T8391] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 71.127652][ T8391] RDX: 0000000000000008 RSI: 0000000000002000 RDI: 000000c0001bc000 [ 71.135616][ T8391] RBP: 000000c0000e9c90 R08: 000000c000000000 R09: 000000c0001be000 [ 71.143575][ T8391] R10: 000000000003fe00 R11: 0000000000000246 R12: 000000000000001f [ 71.151537][ T8391] R13: 0000000000000040 R14: 0000000000ac75d1 R15: 0000000000000000 [ 71.159612][ T8391] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8391 [ 71.168639][ T8391] caller is __mod_memcg_state+0xca/0x1a0 [ 71.174299][ T8391] CPU: 1 PID: 8391 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 71.183849][ T8391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.193891][ T8391] Call Trace: [ 71.197177][ T8391] dump_stack+0x188/0x20d [ 71.201516][ T8391] __this_cpu_preempt_check.cold+0x84/0x90 [ 71.207319][ T8391] __mod_memcg_state+0xca/0x1a0 [ 71.212171][ T8391] split_huge_page_to_list+0x124b/0x3380 [ 71.217799][ T8391] ? mark_held_locks+0xe0/0xe0 [ 71.222563][ T8391] ? can_split_huge_page+0x480/0x480 [ 71.227840][ T8391] ? pmd_val+0x7c/0xf0 [ 71.231904][ T8391] ? pmd_pfn+0x125/0x1c0 [ 71.236141][ T8391] ? enabled_store+0x190/0x190 [ 71.240903][ T8391] madvise_free_huge_pmd+0x873/0xb90 [ 71.246190][ T8391] madvise_free_pte_range+0x6ff/0x2650 [ 71.251644][ T8391] ? kmem_cache_free+0x7f/0x320 [ 71.256488][ T8391] ? do_madvise+0xbb3/0x1b80 [ 71.261073][ T8391] ? __x64_sys_madvise+0xae/0x120 [ 71.266095][ T8391] ? mem_cgroup_uncharge+0xf0/0xf0 [ 71.271202][ T8391] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 71.279611][ T8391] __walk_page_range+0xcfb/0x2070 [ 71.284644][ T8391] ? walk_page_test+0x78/0x180 [ 71.289405][ T8391] walk_page_range+0x1bd/0x3a0 [ 71.294169][ T8391] ? __walk_page_range+0x2070/0x2070 [ 71.299452][ T8391] ? madvise_free_single_vma+0x2c1/0x550 [ 71.305080][ T8391] madvise_free_single_vma+0x384/0x550 [ 71.310535][ T8391] ? madvise_pageout+0x3b0/0x3b0 [ 71.315466][ T8391] ? lock_acquire+0x197/0x420 [ 71.320137][ T8391] ? userfaultfd_remove+0xf0/0x2b0 [ 71.325250][ T8391] ? vmacache_find+0x62/0x300 [ 71.329922][ T8391] ? vmacache_update+0xce/0x140 [ 71.334764][ T8391] ? find_vma+0x2b/0x170 [ 71.339004][ T8391] do_madvise+0x5ba/0x1b80 [ 71.343425][ T8391] ? unuse_pde+0x2c/0x80 [ 71.347683][ T8391] ? madvise_free_pte_range+0x2650/0x2650 [ 71.353400][ T8391] ? wait_for_completion+0x3c0/0x3c0 [ 71.358684][ T8391] ? fput_many+0x2f/0x1a0 [ 71.363007][ T8391] ? ksys_read+0x19f/0x250 [ 71.367426][ T8391] ? kernel_write+0x120/0x120 [ 71.372100][ T8391] ? __x64_sys_madvise+0xae/0x120 [ 71.377121][ T8391] ? trace_hardirqs_on+0x55/0x220 [ 71.382139][ T8391] __x64_sys_madvise+0xae/0x120 [ 71.386991][ T8391] do_syscall_64+0xf6/0x7d0 [ 71.391495][ T8391] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 71.397390][ T8391] RIP: 0033:0x460bf7 [ 71.401283][ T8391] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 71.420878][ T8391] RSP: 002b:000000c0000e9c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 71.429278][ T8391] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 71.437240][ T8391] RDX: 0000000000000008 RSI: 0000000000002000 RDI: 000000c0001bc000 [ 71.445201][ T8391] RBP: 000000c0000e9c90 R08: 000000c000000000 R09: 000000c0001be000 [ 71.453167][ T8391] R10: 000000000003fe00 R11: 0000000000000246 R12: 000000000000001f [ 71.461136][ T8391] R13: 0000000000000040 R14: 0000000000ac75d1 R15: 0000000000000000 [ 71.471099][ T8391] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8391 [ 71.480158][ T8391] caller is __mod_memcg_state+0x87/0x1a0 [ 71.485794][ T8391] CPU: 1 PID: 8391 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 71.495230][ T8391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.505269][ T8391] Call Trace: [ 71.508552][ T8391] dump_stack+0x188/0x20d [ 71.512883][ T8391] __this_cpu_preempt_check.cold+0x84/0x90 [ 71.518679][ T8391] __mod_memcg_state+0x87/0x1a0 [ 71.523528][ T8391] split_huge_page_to_list+0x124b/0x3380 [ 71.529272][ T8391] ? mark_held_locks+0xe0/0xe0 [ 71.534041][ T8391] ? can_split_huge_page+0x480/0x480 [ 71.539323][ T8391] ? pmd_val+0x7c/0xf0 [ 71.543392][ T8391] ? pmd_pfn+0x125/0x1c0 [ 71.547629][ T8391] ? enabled_store+0x190/0x190 [ 71.552394][ T8391] madvise_free_huge_pmd+0x873/0xb90 [ 71.557686][ T8391] madvise_free_pte_range+0x6ff/0x2650 [ 71.563141][ T8391] ? kmem_cache_free+0x7f/0x320 [ 71.567986][ T8391] ? do_madvise+0xbb3/0x1b80 [ 71.572573][ T8391] ? __x64_sys_madvise+0xae/0x120 [ 71.577684][ T8391] ? mem_cgroup_uncharge+0xf0/0xf0 [ 71.582791][ T8391] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 71.589465][ T8391] __walk_page_range+0xcfb/0x2070 [ 71.594499][ T8391] ? walk_page_test+0x78/0x180 [ 71.599256][ T8391] walk_page_range+0x1bd/0x3a0 [ 71.604026][ T8391] ? __walk_page_range+0x2070/0x2070 [ 71.609323][ T8391] ? madvise_free_single_vma+0x2c1/0x550 [ 71.614961][ T8391] madvise_free_single_vma+0x384/0x550 [ 71.620417][ T8391] ? madvise_pageout+0x3b0/0x3b0 [ 71.625353][ T8391] ? lock_acquire+0x197/0x420 [ 71.630024][ T8391] ? userfaultfd_remove+0xf0/0x2b0 [ 71.635133][ T8391] ? vmacache_find+0x62/0x300 [ 71.639806][ T8391] ? vmacache_update+0xce/0x140 [ 71.644660][ T8391] ? find_vma+0x2b/0x170 [ 71.648908][ T8391] do_madvise+0x5ba/0x1b80 [ 71.653322][ T8391] ? unuse_pde+0x2c/0x80 [ 71.657572][ T8391] ? madvise_free_pte_range+0x2650/0x2650 [ 71.663298][ T8391] ? wait_for_completion+0x3c0/0x3c0 [ 71.668586][ T8391] ? fput_many+0x2f/0x1a0 [ 71.674646][ T8391] ? ksys_read+0x19f/0x250 [ 71.679064][ T8391] ? kernel_write+0x120/0x120 [ 71.683741][ T8391] ? __x64_sys_madvise+0xae/0x120 [ 71.688756][ T8391] ? trace_hardirqs_on+0x55/0x220 [ 71.693774][ T8391] __x64_sys_madvise+0xae/0x120 [ 71.698623][ T8391] do_syscall_64+0xf6/0x7d0 [ 71.703128][ T8391] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 71.709013][ T8391] RIP: 0033:0x460bf7 [ 71.712902][ T8391] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 71.732630][ T8391] RSP: 002b:000000c0000e9c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 71.741036][ T8391] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 71.748999][ T8391] RDX: 0000000000000008 RSI: 0000000000002000 RDI: 000000c0001bc000 [ 71.756962][ T8391] RBP: 000000c0000e9c90 R08: 000000c000000000 R09: 000000c0001be000 [ 71.764925][ T8391] R10: 000000000003fe00 R11: 0000000000000246 R12: 000000000000001f [ 71.772888][ T8391] R13: 0000000000000040 R14: 0000000000ac75d1 R15: 0000000000000000 [ 71.908816][ T7] tipc: TX() has been purged, node left! [ 71.956601][ T8403] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8403 [ 71.965581][ T8403] caller is __mod_memcg_state+0x27/0x1a0 [ 71.971227][ T8403] CPU: 0 PID: 8403 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 71.980699][ T8403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.990730][ T8403] Call Trace: [ 71.993999][ T8403] dump_stack+0x188/0x20d [ 71.998305][ T8403] __this_cpu_preempt_check.cold+0x84/0x90 [ 72.004086][ T8403] __mod_memcg_state+0x27/0x1a0 [ 72.008915][ T8403] split_huge_page_to_list+0x124b/0x3380 [ 72.014525][ T8403] ? mark_held_locks+0xe0/0xe0 [ 72.019266][ T8403] ? release_pages+0x656/0x19b0 [ 72.024095][ T8403] ? can_split_huge_page+0x480/0x480 [ 72.029376][ T8403] ? pmd_val+0x7c/0xf0 [ 72.033424][ T8403] ? pmd_pfn+0x125/0x1c0 [ 72.037639][ T8403] ? enabled_store+0x190/0x190 [ 72.042382][ T8403] madvise_free_huge_pmd+0x873/0xb90 [ 72.047661][ T8403] madvise_free_pte_range+0x6ff/0x2650 [ 72.053100][ T8403] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 72.059750][ T8403] __walk_page_range+0xcfb/0x2070 [ 72.064757][ T8403] ? walk_page_test+0x78/0x180 [ 72.069496][ T8403] walk_page_range+0x1bd/0x3a0 [ 72.074235][ T8403] ? __walk_page_range+0x2070/0x2070 [ 72.079496][ T8403] ? madvise_free_single_vma+0x2c1/0x550 [ 72.085106][ T8403] madvise_free_single_vma+0x384/0x550 [ 72.090555][ T8403] ? madvise_pageout+0x3b0/0x3b0 [ 72.095483][ T8403] ? lock_acquire+0x197/0x420 [ 72.100134][ T8403] ? userfaultfd_remove+0xf0/0x2b0 [ 72.105237][ T8403] ? vmacache_find+0x62/0x300 [ 72.109890][ T8403] ? find_vma+0x2b/0x170 [ 72.114113][ T8403] do_madvise+0x5ba/0x1b80 [ 72.118502][ T8403] ? unuse_pde+0x2c/0x80 [ 72.122730][ T8403] ? madvise_free_pte_range+0x2650/0x2650 [ 72.128428][ T8403] ? __x64_sys_futex+0x376/0x4f0 [ 72.133340][ T8403] ? fput_many+0x2f/0x1a0 [ 72.137645][ T8403] ? do_futex+0x1b10/0x1b10 [ 72.142131][ T8403] ? ksys_read+0x19f/0x250 [ 72.146522][ T8403] ? kernel_write+0x120/0x120 [ 72.151189][ T8403] ? __x64_sys_madvise+0xae/0x120 [ 72.156185][ T8403] ? trace_hardirqs_on+0x55/0x220 [ 72.161185][ T8403] __x64_sys_madvise+0xae/0x120 [ 72.166026][ T8403] do_syscall_64+0xf6/0x7d0 [ 72.170509][ T8403] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 72.176375][ T8403] RIP: 0033:0x460bf7 [ 72.180244][ T8403] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 72.199835][ T8403] RSP: 002b:000000c0000e7c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 72.208219][ T8403] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 72.216176][ T8403] RDX: 0000000000000008 RSI: 0000000000080000 RDI: 000000c0003c4000 [ 72.224168][ T8403] RBP: 000000c0000e7c90 R08: 000000c000200000 R09: 000000c000444000 [ 72.232121][ T8403] R10: 00000000001ffe00 R11: 0000000000000246 R12: 0000000000000002 [ 72.240119][ T8403] R13: 0000000000e8da20 R14: 000000000045ecf0 R15: 0000000000000000 [ 72.248264][ T8403] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8403 [ 72.257143][ T8403] caller is __mod_memcg_state+0xca/0x1a0 [ 72.262797][ T8403] CPU: 0 PID: 8403 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 72.272273][ T8403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 72.282307][ T8403] Call Trace: [ 72.285582][ T8403] dump_stack+0x188/0x20d [ 72.289953][ T8403] __this_cpu_preempt_check.cold+0x84/0x90 [ 72.295741][ T8403] __mod_memcg_state+0xca/0x1a0 [ 72.300575][ T8403] split_huge_page_to_list+0x124b/0x3380 [ 72.306234][ T8403] ? mark_held_locks+0xe0/0xe0 [ 72.310974][ T8403] ? release_pages+0x656/0x19b0 [ 72.315849][ T8403] ? can_split_huge_page+0x480/0x480 [ 72.321123][ T8403] ? pmd_val+0x7c/0xf0 [ 72.325211][ T8403] ? pmd_pfn+0x125/0x1c0 [ 72.329451][ T8403] ? enabled_store+0x190/0x190 [ 72.334233][ T8403] madvise_free_huge_pmd+0x873/0xb90 [ 72.339527][ T8403] madvise_free_pte_range+0x6ff/0x2650 [ 72.344976][ T8403] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 72.351630][ T8403] __walk_page_range+0xcfb/0x2070 [ 72.356638][ T8403] ? walk_page_test+0x78/0x180 [ 72.361466][ T8403] walk_page_range+0x1bd/0x3a0 [ 72.366209][ T8403] ? __walk_page_range+0x2070/0x2070 [ 72.371507][ T8403] ? madvise_free_single_vma+0x2c1/0x550 [ 72.377122][ T8403] madvise_free_single_vma+0x384/0x550 [ 72.382573][ T8403] ? madvise_pageout+0x3b0/0x3b0 [ 72.387561][ T8403] ? lock_acquire+0x197/0x420 [ 72.392232][ T8403] ? userfaultfd_remove+0xf0/0x2b0 [ 72.397331][ T8403] ? vmacache_find+0x62/0x300 [ 72.401992][ T8403] ? find_vma+0x2b/0x170 [ 72.406222][ T8403] do_madvise+0x5ba/0x1b80 [ 72.410668][ T8403] ? unuse_pde+0x2c/0x80 [ 72.414914][ T8403] ? madvise_free_pte_range+0x2650/0x2650 [ 72.420624][ T8403] ? __x64_sys_futex+0x376/0x4f0 [ 72.425548][ T8403] ? fput_many+0x2f/0x1a0 [ 72.429926][ T8403] ? do_futex+0x1b10/0x1b10 [ 72.434471][ T8403] ? ksys_read+0x19f/0x250 [ 72.438876][ T8403] ? kernel_write+0x120/0x120 [ 72.443542][ T8403] ? __x64_sys_madvise+0xae/0x120 [ 72.448549][ T8403] ? trace_hardirqs_on+0x55/0x220 [ 72.453557][ T8403] __x64_sys_madvise+0xae/0x120 [ 72.458402][ T8403] do_syscall_64+0xf6/0x7d0 [ 72.462896][ T8403] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 72.468777][ T8403] RIP: 0033:0x460bf7 [ 72.472657][ T8403] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 72.492245][ T8403] RSP: 002b:000000c0000e7c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 72.500632][ T8403] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 72.508606][ T8403] RDX: 0000000000000008 RSI: 0000000000080000 RDI: 000000c0003c4000 [ 72.516588][ T8403] RBP: 000000c0000e7c90 R08: 000000c000200000 R09: 000000c000444000 [ 72.524546][ T8403] R10: 00000000001ffe00 R11: 0000000000000246 R12: 0000000000000002 [ 72.532532][ T8403] R13: 0000000000e8da20 R14: 000000000045ecf0 R15: 0000000000000000 [ 72.540541][ T8403] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8403 [ 72.549572][ T8403] caller is __mod_memcg_state+0x87/0x1a0 [ 72.555182][ T8403] CPU: 0 PID: 8403 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 72.564607][ T8403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 72.574636][ T8403] Call Trace: [ 72.577918][ T8403] dump_stack+0x188/0x20d [ 72.582231][ T8403] __this_cpu_preempt_check.cold+0x84/0x90 [ 72.588031][ T8403] __mod_memcg_state+0x87/0x1a0 [ 72.592876][ T8403] split_huge_page_to_list+0x124b/0x3380 [ 72.598496][ T8403] ? mark_held_locks+0xe0/0xe0 [ 72.603247][ T8403] ? release_pages+0x656/0x19b0 [ 72.608079][ T8403] ? can_split_huge_page+0x480/0x480 [ 72.613355][ T8403] ? pmd_val+0x7c/0xf0 [ 72.617400][ T8403] ? pmd_pfn+0x125/0x1c0 [ 72.621622][ T8403] ? enabled_store+0x190/0x190 [ 72.626365][ T8403] madvise_free_huge_pmd+0x873/0xb90 [ 72.631630][ T8403] madvise_free_pte_range+0x6ff/0x2650 [ 72.637066][ T8403] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 72.643732][ T8403] __walk_page_range+0xcfb/0x2070 [ 72.648765][ T8403] ? walk_page_test+0x78/0x180 [ 72.653515][ T8403] walk_page_range+0x1bd/0x3a0 [ 72.658256][ T8403] ? __walk_page_range+0x2070/0x2070 [ 72.663535][ T8403] ? madvise_free_single_vma+0x2c1/0x550 [ 72.669155][ T8403] madvise_free_single_vma+0x384/0x550 [ 72.674639][ T8403] ? madvise_pageout+0x3b0/0x3b0 [ 72.679560][ T8403] ? lock_acquire+0x197/0x420 [ 72.684261][ T8403] ? userfaultfd_remove+0xf0/0x2b0 [ 72.689365][ T8403] ? vmacache_find+0x62/0x300 [ 72.694019][ T8403] ? find_vma+0x2b/0x170 [ 72.698240][ T8403] do_madvise+0x5ba/0x1b80 [ 72.702643][ T8403] ? unuse_pde+0x2c/0x80 [ 72.706867][ T8403] ? madvise_free_pte_range+0x2650/0x2650 [ 72.712568][ T8403] ? __x64_sys_futex+0x376/0x4f0 [ 72.717481][ T8403] ? fput_many+0x2f/0x1a0 [ 72.721838][ T8403] ? do_futex+0x1b10/0x1b10 [ 72.726325][ T8403] ? ksys_read+0x19f/0x250 [ 72.730719][ T8403] ? kernel_write+0x120/0x120 [ 72.735375][ T8403] ? __x64_sys_madvise+0xae/0x120 [ 72.740375][ T8403] ? trace_hardirqs_on+0x55/0x220 [ 72.745373][ T8403] __x64_sys_madvise+0xae/0x120 [ 72.750203][ T8403] do_syscall_64+0xf6/0x7d0 [ 72.754701][ T8403] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 72.760573][ T8403] RIP: 0033:0x460bf7 [ 72.764441][ T8403] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 72.784026][ T8403] RSP: 002b:000000c0000e7c50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 72.792417][ T8403] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 72.800377][ T8403] RDX: 0000000000000008 RSI: 0000000000080000 RDI: 000000c0003c4000 [ 72.808365][ T8403] RBP: 000000c0000e7c90 R08: 000000c000200000 R09: 000000c000444000 [ 72.816314][ T8403] R10: 00000000001ffe00 R11: 0000000000000246 R12: 0000000000000002 [ 72.824263][ T8403] R13: 0000000000e8da20 R14: 000000000045ecf0 R15: 0000000000000000 [ 73.389711][ T8395] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-fuzzer/8395 [ 73.398715][ T8395] caller is __mod_memcg_state+0x27/0x1a0 [ 73.404356][ T8395] CPU: 0 PID: 8395 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 73.413788][ T8395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 73.423815][ T8395] Call Trace: [ 73.427083][ T8395] dump_stack+0x188/0x20d [ 73.431390][ T8395] __this_cpu_preempt_check.cold+0x84/0x90 [ 73.437170][ T8395] __mod_memcg_state+0x27/0x1a0 [ 73.442039][ T8395] split_huge_page_to_list+0x124b/0x3380 [ 73.447648][ T8395] ? mark_held_locks+0xe0/0xe0 [ 73.452385][ T8395] ? release_pages+0x656/0x19b0 [ 73.457211][ T8395] ? can_split_huge_page+0x480/0x480 [ 73.462490][ T8395] ? pmd_val+0x7c/0xf0 [ 73.466549][ T8395] ? pmd_pfn+0x125/0x1c0 [ 73.470770][ T8395] ? enabled_store+0x190/0x190 [ 73.475523][ T8395] madvise_free_huge_pmd+0x873/0xb90 [ 73.480804][ T8395] madvise_free_pte_range+0x6ff/0x2650 executing program [ 73.486244][ T8395] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 73.492895][ T8395] __walk_page_range+0xcfb/0x2070 [ 73.497910][ T8395] ? walk_page_test+0x78/0x180 [ 73.502703][ T8395] walk_page_range+0x1bd/0x3a0 [ 73.507445][ T8395] ? __walk_page_range+0x2070/0x2070 [ 73.512720][ T8395] ? madvise_free_single_vma+0x2c1/0x550 [ 73.518334][ T8395] madvise_free_single_vma+0x384/0x550 [ 73.523780][ T8395] ? madvise_pageout+0x3b0/0x3b0 [ 73.528706][ T8395] ? lock_acquire+0x197/0x420 [ 73.533360][ T8395] ? userfaultfd_remove+0xf0/0x2b0 [ 73.538449][ T8395] ? vmacache_find+0x62/0x300 [ 73.543208][ T8395] ? vmacache_update+0xce/0x140 [ 73.548033][ T8395] ? find_vma+0x2b/0x170 [ 73.552251][ T8395] do_madvise+0x5ba/0x1b80 [ 73.556640][ T8395] ? unuse_pde+0x2c/0x80 [ 73.560863][ T8395] ? madvise_free_pte_range+0x2650/0x2650 [ 73.566560][ T8395] ? __x64_sys_futex+0x376/0x4f0 [ 73.571487][ T8395] ? fput_many+0x2f/0x1a0 [ 73.575798][ T8395] ? do_futex+0x1b10/0x1b10 [ 73.580274][ T8395] ? ksys_read+0x19f/0x250 [ 73.584666][ T8395] ? kernel_write+0x120/0x120 [ 73.589320][ T8395] ? __x64_sys_madvise+0xae/0x120 [ 73.594317][ T8395] ? trace_hardirqs_on+0x55/0x220 [ 73.599334][ T8395] __x64_sys_madvise+0xae/0x120 [ 73.604162][ T8395] do_syscall_64+0xf6/0x7d0 [ 73.608658][ T8395] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 73.614524][ T8395] RIP: 0033:0x460bf7 [ 73.618393][ T8395] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 73.637968][ T8395] RSP: 002b:000000c00032fc50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 73.646354][ T8395] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 73.654323][ T8395] RDX: 0000000000000008 RSI: 0000000000200000 RDI: 000000c000544000 [ 73.662267][ T8395] RBP: 000000c00032fc90 R08: 000000c000400000 R09: 000000c000744000 [ 73.670212][ T8395] R10: 00000000007ffe00 R11: 0000000000000246 R12: 0000000000000000 [ 73.678157][ T8395] R13: 00007f502e2636d0 R14: 0000000000200000 R15: 0000000000000000 [ 73.686206][ T8395] BUG: using __this_cpu_add() in preemptible [00000000] code: syz-fuzzer/8395 [ 73.695072][ T8395] caller is __mod_memcg_state+0xca/0x1a0 [ 73.700709][ T8395] CPU: 0 PID: 8395 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 73.710148][ T8395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 73.720195][ T8395] Call Trace: [ 73.723476][ T8395] dump_stack+0x188/0x20d [ 73.727811][ T8395] __this_cpu_preempt_check.cold+0x84/0x90 [ 73.733640][ T8395] __mod_memcg_state+0xca/0x1a0 [ 73.738470][ T8395] split_huge_page_to_list+0x124b/0x3380 [ 73.744087][ T8395] ? mark_held_locks+0xe0/0xe0 [ 73.748864][ T8395] ? release_pages+0x656/0x19b0 [ 73.753696][ T8395] ? can_split_huge_page+0x480/0x480 [ 73.758960][ T8395] ? pmd_val+0x7c/0xf0 [ 73.763005][ T8395] ? pmd_pfn+0x125/0x1c0 [ 73.767241][ T8395] ? enabled_store+0x190/0x190 [ 73.772002][ T8395] madvise_free_huge_pmd+0x873/0xb90 [ 73.777268][ T8395] madvise_free_pte_range+0x6ff/0x2650 [ 73.782710][ T8395] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 73.789441][ T8395] __walk_page_range+0xcfb/0x2070 [ 73.794472][ T8395] ? walk_page_test+0x78/0x180 [ 73.799218][ T8395] walk_page_range+0x1bd/0x3a0 [ 73.803961][ T8395] ? __walk_page_range+0x2070/0x2070 [ 73.809229][ T8395] ? madvise_free_single_vma+0x2c1/0x550 [ 73.814840][ T8395] madvise_free_single_vma+0x384/0x550 [ 73.820281][ T8395] ? madvise_pageout+0x3b0/0x3b0 [ 73.825198][ T8395] ? lock_acquire+0x197/0x420 [ 73.829902][ T8395] ? userfaultfd_remove+0xf0/0x2b0 [ 73.835078][ T8395] ? vmacache_find+0x62/0x300 [ 73.839742][ T8395] ? vmacache_update+0xce/0x140 [ 73.844609][ T8395] ? find_vma+0x2b/0x170 [ 73.848836][ T8395] do_madvise+0x5ba/0x1b80 [ 73.853253][ T8395] ? unuse_pde+0x2c/0x80 [ 73.857484][ T8395] ? madvise_free_pte_range+0x2650/0x2650 [ 73.863185][ T8395] ? __x64_sys_futex+0x376/0x4f0 [ 73.868100][ T8395] ? fput_many+0x2f/0x1a0 [ 73.872407][ T8395] ? do_futex+0x1b10/0x1b10 [ 73.876898][ T8395] ? ksys_read+0x19f/0x250 [ 73.881294][ T8395] ? kernel_write+0x120/0x120 [ 73.885967][ T8395] ? __x64_sys_madvise+0xae/0x120 [ 73.890975][ T8395] ? trace_hardirqs_on+0x55/0x220 [ 73.895977][ T8395] __x64_sys_madvise+0xae/0x120 [ 73.900808][ T8395] do_syscall_64+0xf6/0x7d0 [ 73.905288][ T8395] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 73.911156][ T8395] RIP: 0033:0x460bf7 [ 73.915027][ T8395] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 73.934607][ T8395] RSP: 002b:000000c00032fc50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 73.942990][ T8395] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 73.950937][ T8395] RDX: 0000000000000008 RSI: 0000000000200000 RDI: 000000c000544000 [ 73.958910][ T8395] RBP: 000000c00032fc90 R08: 000000c000400000 R09: 000000c000744000 [ 73.966866][ T8395] R10: 00000000007ffe00 R11: 0000000000000246 R12: 0000000000000000 [ 73.974814][ T8395] R13: 00007f502e2636d0 R14: 0000000000200000 R15: 0000000000000000 [ 73.982840][ T8395] BUG: using __this_cpu_write() in preemptible [00000000] code: syz-fuzzer/8395 [ 73.991880][ T8395] caller is __mod_memcg_state+0x87/0x1a0 [ 73.997486][ T8395] CPU: 0 PID: 8395 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 74.006907][ T8395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 74.016981][ T8395] Call Trace: [ 74.020251][ T8395] dump_stack+0x188/0x20d [ 74.024562][ T8395] __this_cpu_preempt_check.cold+0x84/0x90 [ 74.030343][ T8395] __mod_memcg_state+0x87/0x1a0 [ 74.035183][ T8395] split_huge_page_to_list+0x124b/0x3380 [ 74.040796][ T8395] ? mark_held_locks+0xe0/0xe0 [ 74.045533][ T8395] ? release_pages+0x656/0x19b0 [ 74.050360][ T8395] ? can_split_huge_page+0x480/0x480 [ 74.055623][ T8395] ? pmd_val+0x7c/0xf0 [ 74.059669][ T8395] ? pmd_pfn+0x125/0x1c0 [ 74.063884][ T8395] ? enabled_store+0x190/0x190 [ 74.068627][ T8395] madvise_free_huge_pmd+0x873/0xb90 [ 74.073895][ T8395] madvise_free_pte_range+0x6ff/0x2650 [ 74.079332][ T8395] ? madvise_cold_or_pageout_pte_range+0x3400/0x3400 [ 74.085983][ T8395] __walk_page_range+0xcfb/0x2070 [ 74.090991][ T8395] ? walk_page_test+0x78/0x180 [ 74.095737][ T8395] walk_page_range+0x1bd/0x3a0 [ 74.100478][ T8395] ? __walk_page_range+0x2070/0x2070 [ 74.105740][ T8395] ? madvise_free_single_vma+0x2c1/0x550 [ 74.111349][ T8395] madvise_free_single_vma+0x384/0x550 [ 74.116782][ T8395] ? madvise_pageout+0x3b0/0x3b0 [ 74.121696][ T8395] ? lock_acquire+0x197/0x420 [ 74.126390][ T8395] ? userfaultfd_remove+0xf0/0x2b0 [ 74.131488][ T8395] ? vmacache_find+0x62/0x300 [ 74.136144][ T8395] ? vmacache_update+0xce/0x140 [ 74.140984][ T8395] ? find_vma+0x2b/0x170 [ 74.145213][ T8395] do_madvise+0x5ba/0x1b80 [ 74.149611][ T8395] ? unuse_pde+0x2c/0x80 [ 74.153841][ T8395] ? madvise_free_pte_range+0x2650/0x2650 [ 74.159540][ T8395] ? __x64_sys_futex+0x376/0x4f0 [ 74.164462][ T8395] ? fput_many+0x2f/0x1a0 [ 74.168773][ T8395] ? do_futex+0x1b10/0x1b10 [ 74.173254][ T8395] ? ksys_read+0x19f/0x250 [ 74.177646][ T8395] ? kernel_write+0x120/0x120 [ 74.182300][ T8395] ? __x64_sys_madvise+0xae/0x120 [ 74.187317][ T8395] ? trace_hardirqs_on+0x55/0x220 [ 74.192397][ T8395] __x64_sys_madvise+0xae/0x120 [ 74.197242][ T8395] do_syscall_64+0xf6/0x7d0 [ 74.201728][ T8395] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 74.207598][ T8395] RIP: 0033:0x460bf7 [ 74.211473][ T8395] Code: 8b 24 24 48 8b 6c 24 10 48 83 c4 18 c3 cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 48 c7 c0 1c 00 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc 48 8b 7c 24 08 8b 74 24 10 8b 54 24 14 [ 74.231061][ T8395] RSP: 002b:000000c00032fc50 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 74.239448][ T8395] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000460bf7 [ 74.247398][ T8395] RDX: 0000000000000008 RSI: 0000000000200000 RDI: 000000c000544000 [ 74.255345][ T8395] RBP: 000000c00032fc90 R08: 000000c000400000 R09: 000000c000744000 [ 74.263307][ T8395] R10: 00000000007ffe00 R11: 0000000000000246 R12: 0000000000000000 [ 74.271251][ T8395] R13: 00007f502e2636d0 R14: 0000000000200000 R15: 0000000000000000 [ 74.608825][ T8395] ------------[ cut here ]------------ [ 74.614316][ T8395] WARNING: CPU: 1 PID: 8395 at sound/core/oss/pcm_plugin.c:126 snd_pcm_plug_alloc+0x29a/0x330 [ 74.624534][ T8395] Kernel panic - not syncing: panic_on_warn set ... [ 74.631097][ T8395] CPU: 1 PID: 8395 Comm: syz-fuzzer Not tainted 5.6.0-rc5-next-20200311-syzkaller #0 [ 74.640536][ T8395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 74.650565][ T8395] Call Trace: [ 74.653830][ T8395] dump_stack+0x188/0x20d [ 74.658148][ T8395] ? snd_pcm_plug_alloc+0x250/0x330 [ 74.663322][ T8395] panic+0x2e3/0x75c [ 74.667189][ T8395] ? add_taint.cold+0x16/0x16 [ 74.671839][ T8395] ? printk+0xba/0xed [ 74.675794][ T8395] ? kmsg_dump_rewind_nolock+0xd9/0xd9 [ 74.681228][ T8395] ? __warn.cold+0x14/0x35 [ 74.685616][ T8395] ? __warn+0xd5/0x1c8 [ 74.689673][ T8395] ? snd_pcm_plug_alloc+0x29a/0x330 [ 74.694843][ T8395] __warn.cold+0x2f/0x35 [ 74.699059][ T8395] ? snd_pcm_plug_alloc+0x29a/0x330 [ 74.704229][ T8395] report_bug+0x27b/0x2f0 [ 74.708535][ T8395] do_error_trap+0x12b/0x220 [ 74.713111][ T8395] ? snd_pcm_plug_alloc+0x29a/0x330 [ 74.718289][ T8395] do_invalid_op+0x32/0x40 [ 74.722677][ T8395] ? snd_pcm_plug_alloc+0x29a/0x330 [ 74.727844][ T8395] invalid_op+0x23/0x30 [ 74.731975][ T8395] RIP: 0010:snd_pcm_plug_alloc+0x29a/0x330 [ 74.737754][ T8395] Code: ff ff 45 31 e4 e8 46 f2 7f fb 44 89 e0 5b 5d 41 5c 41 5d 41 5e c3 e8 35 f2 7f fb 0f 0b 41 bc fa ff ff ff eb e0 e8 26 f2 7f fb <0f> 0b 41 bc fa ff ff ff eb d1 e8 17 f2 7f fb 0f 0b 41 bc fa ff ff [ 74.757331][ T8395] RSP: 0018:ffffc90001f17b88 EFLAGS: 00010293 [ 74.763371][ T8395] RAX: ffff888099c52340 RBX: ffff8880a107a000 RCX: ffffffff85f2d2c6 [ 74.771316][ T8395] RDX: 0000000000000000 RSI: ffffffff85f2d44a RDI: 0000000000000007 [ 74.779324][ T8395] RBP: 0000000000000000 R08: ffff888099c52340 R09: ffffed101346b71f [ 74.787294][ T8395] R10: ffff88809a35b8f3 R11: ffffed101346b71e R12: ffff8880a107a058 [ 74.795251][ T8395] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88809a35b800 [ 74.803209][ T8395] ? snd_pcm_plug_alloc+0x116/0x330 [ 74.808536][ T8395] ? snd_pcm_plug_alloc+0x29a/0x330 [ 74.813715][ T8395] ? snd_pcm_plug_alloc+0x29a/0x330 [ 74.818891][ T8395] snd_pcm_oss_change_params_locked+0x1c05/0x34b0 [ 74.825286][ T8395] ? _snd_pcm_hw_param_set.constprop.0+0x510/0x510 [ 74.831766][ T8395] ? trace_hardirqs_off+0x50/0x220 [ 74.836870][ T8395] ? trace_hardirqs_on+0x55/0x220 [ 74.841882][ T8395] ? snd_pcm_oss_sync.isra.0+0x7d0/0x7d0 [ 74.847502][ T8395] snd_pcm_oss_change_params+0x76/0xd0 [ 74.852949][ T8395] snd_pcm_oss_make_ready+0xb7/0x170 [ 74.858209][ T8395] snd_pcm_oss_sync.isra.0+0x1be/0x7d0 [ 74.863655][ T8395] ? snd_pcm_oss_sync.isra.0+0x7d0/0x7d0 [ 74.869308][ T8395] snd_pcm_oss_release+0x210/0x280 [ 74.874401][ T8395] __fput+0x2da/0x850 [ 74.878361][ T8395] task_work_run+0xf4/0x1b0 [ 74.882847][ T8395] exit_to_usermode_loop+0x2fa/0x360 [ 74.888123][ T8395] do_syscall_64+0x6b1/0x7d0 [ 74.892747][ T8395] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 74.898615][ T8395] RIP: 0033:0x4afb40 [ 74.902484][ T8395] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 74.922066][ T8395] RSP: 002b:000000c00019d588 EFLAGS: 00000212 ORIG_RAX: 0000000000000003 [ 74.930453][ T8395] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 74.938412][ T8395] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 74.946372][ T8395] RBP: 000000c00019d5c8 R08: 0000000000000000 R09: 0000000000000000 [ 74.954332][ T8395] R10: 0000000000000000 R11: 0000000000000212 R12: 0000000000000005 [ 74.962281][ T8395] R13: 0000000000000004 R14: 0000000000000200 R15: 0000000000000000 [ 74.971470][ T8395] Kernel Offset: disabled [ 74.975789][ T8395] Rebooting in 86400 seconds..