./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2126923798 <...> forked to background, child pid 3181 no interfaces have a carrier [ 22.805846][ T3182] 8021q: adding VLAN 0 to HW filter on device bond0 [ 22.815177][ T3182] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.1.121' (ECDSA) to the list of known hosts. execve("./syz-executor2126923798", ["./syz-executor2126923798"], 0x7ffc06ac8bc0 /* 10 vars */) = 0 brk(NULL) = 0x55555628e000 brk(0x55555628ec40) = 0x55555628ec40 arch_prctl(ARCH_SET_FS, 0x55555628e300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor2126923798", 4096) = 28 brk(0x5555562afc40) = 0x5555562afc40 brk(0x5555562b0000) = 0x5555562b0000 mprotect(0x7fc23ce93000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 madvise(0x20000000, 4194304, MADV_MERGEABLE) = 0 openat(AT_FDCWD, "/sys/kernel/mm/ksm/run", O_WRONLY) = 3 syzkaller login: [ 42.965055][ T3610] BUG: sleeping function called from invalid context at mm/ksm.c:500 [ 42.973179][ T3610] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 3610, name: syz-executor212 [ 42.982872][ T3610] preempt_count: 1, expected: 0 [ 42.987898][ T3610] RCU nest depth: 0, expected: 0 [ 42.992815][ T3610] INFO: lockdep is turned off. [ 42.997611][ T3610] Preemption disabled at: [ 42.997619][ T3610] [<0000000000000000>] 0x0 [ 43.006363][ T3610] CPU: 0 PID: 3610 Comm: syz-executor212 Not tainted 6.1.0-rc1-next-20221020-syzkaller #0 [ 43.016240][ T3610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 43.026331][ T3610] Call Trace: [ 43.029788][ T3610] [ 43.032799][ T3610] dump_stack_lvl+0xcd/0x134 [ 43.037416][ T3610] __might_resched.cold+0x222/0x26b [ 43.042626][ T3610] break_ksm.part.0+0xbe/0x160 [ 43.047407][ T3610] ? break_ksm.part.0+0x0/0x160 [ 43.052283][ T3610] ? mas_find+0x20d/0xce0 [ 43.056639][ T3610] unmerge_ksm_pages+0x1a0/0x240 [ 43.061596][ T3610] run_store+0x3cf/0xa30 [ 43.065857][ T3610] ? __mutex_lock+0x231/0x1350 [ 43.070642][ T3610] ? run_store+0x0/0xa30 [ 43.075068][ T3610] ? rcu_read_lock_sched_held+0xd/0x70 [ 43.080551][ T3610] ? run_store+0x0/0xa30 [ 43.084800][ T3610] ? sysfs_kf_write+0x0/0x160 [ 43.089488][ T3610] kobj_attr_store+0x50/0x80 [ 43.094090][ T3610] ? kobj_attr_store+0x0/0x80 [ 43.098778][ T3610] sysfs_kf_write+0x110/0x160 [ 43.103467][ T3610] kernfs_fop_write_iter+0x3f8/0x610 [ 43.108757][ T3610] vfs_write+0x9e9/0xdd0 [ 43.113027][ T3610] ? vfs_write+0x0/0xdd0 [ 43.117281][ T3610] ? recalc_sigpending_tsk+0x18f/0x1d0 [ 43.122764][ T3610] ? lock_release+0x0/0x810 [ 43.127274][ T3610] ? __fget_light+0x20a/0x270 [ 43.131969][ T3610] ksys_write+0x127/0x250 [ 43.136314][ T3610] ? ksys_write+0x0/0x250 [ 43.140659][ T3610] ? _raw_spin_unlock_irq+0x2a/0x40 [ 43.145949][ T3610] ? ptrace_notify+0xfa/0x140 [ 43.150640][ T3610] do_syscall_64+0x35/0xb0 [ 43.155067][ T3610] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 43.160971][ T3610] RIP: 0033:0x7fc23ce26b39 [ 43.165386][ T3610] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 43.184994][ T3610] RSP: 002b:00007fff3f50c3a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 43.193409][ T3610] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fc23ce26b39 [ 43.201382][ T3610] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000003 [ 43.209352][ T3610] RBP: 00007fc23cdeace0 R08: 0000000000000000 R09: 0000000000000000 [ 43.217323][ T3610] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc23cdead70 [ 43.225291][ T3610] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 43.233270][ T3610]