Warning: Permanently added '10.128.0.82' (ECDSA) to the list of known hosts. 2021/07/17 05:50:02 parsed 1 programs syzkaller login: [ 160.343125][ T4407] [ 160.345477][ T4407] ====================================================== [ 160.352471][ T4407] WARNING: possible circular locking dependency detected [ 160.359522][ T4407] 5.14.0-rc1-syzkaller #0 Not tainted [ 160.364962][ T4407] ------------------------------------------------------ [ 160.372124][ T4407] syz-execprog/4407 is trying to acquire lock: [ 160.380257][ T4407] ffffffff87750940 (fs_reclaim){+.+.}-{0:0}, at: fs_reclaim_acquire+0xf7/0x160 [ 160.390589][ T4407] [ 160.390589][ T4407] but task is already holding lock: [ 160.397960][ T4407] ffff8881f694bee0 (lock#2){..-.}-{2:2}, at: __alloc_pages_bulk+0x406/0x1600 [ 160.406814][ T4407] [ 160.406814][ T4407] which lock already depends on the new lock. [ 160.406814][ T4407] [ 160.417188][ T4407] [ 160.417188][ T4407] the existing dependency chain (in reverse order) is: [ 160.426277][ T4407] [ 160.426277][ T4407] -> #3 (lock#2){..-.}-{2:2}: [ 160.433219][ T4407] get_page_from_freelist+0xc9b/0x28b0 [ 160.439177][ T4407] __alloc_pages+0x1b2/0x4e0 [ 160.444293][ T4407] alloc_pages+0x18c/0x2a0 [ 160.449210][ T4407] allocate_slab+0x32b/0x4c0 [ 160.454303][ T4407] ___slab_alloc+0x4ba/0x820 [ 160.459405][ T4407] __slab_alloc+0x68/0x80 [ 160.464359][ T4407] kmem_cache_alloc+0x339/0x360 [ 160.469726][ T4407] anon_vma_clone+0xe0/0x5f0 [ 160.474817][ T4407] anon_vma_fork+0x82/0x630 [ 160.479830][ T4407] dup_mm+0x8a6/0x11e0 [ 160.484412][ T4407] copy_process+0x5ec0/0x7040 [ 160.489597][ T4407] kernel_clone+0xe7/0xa70 [ 160.494513][ T4407] __do_sys_clone+0xc8/0x110 [ 160.499621][ T4407] do_syscall_64+0x35/0xb0 [ 160.504559][ T4407] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 160.511055][ T4407] [ 160.511055][ T4407] -> #2 (&anon_vma->rwsem){++++}-{3:3}: [ 160.518772][ T4407] down_write+0x92/0x150 [ 160.523526][ T4407] __vma_adjust+0x2f5/0x26b0 [ 160.528620][ T4407] __split_vma+0x2b3/0x550 [ 160.533563][ T4407] split_vma+0x95/0xd0 [ 160.538332][ T4407] mprotect_fixup+0x6eb/0x8e0 [ 160.543511][ T4407] do_mprotect_pkey+0x558/0x9a0 [ 160.549035][ T4407] __x64_sys_mprotect+0x74/0xb0 [ 160.554384][ T4407] do_syscall_64+0x35/0xb0 [ 160.559305][ T4407] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 160.565724][ T4407] [ 160.565724][ T4407] -> #1 (&mapping->i_mmap_rwsem){+.+.}-{3:3}: [ 160.573962][ T4407] down_write+0x92/0x150 [ 160.578704][ T4407] dma_resv_lockdep+0x348/0x540 [ 160.584058][ T4407] do_one_initcall+0x103/0x5d0 [ 160.589339][ T4407] kernel_init_freeable+0x6ae/0x737 [ 160.595054][ T4407] kernel_init+0x1a/0x1d0 [ 160.599902][ T4407] ret_from_fork+0x1f/0x30 [ 160.604844][ T4407] [ 160.604844][ T4407] -> #0 (fs_reclaim){+.+.}-{0:0}: [ 160.612025][ T4407] __lock_acquire+0x2a07/0x54a0 [ 160.617400][ T4407] lock_acquire+0x19d/0x4d0 [ 160.622444][ T4407] fs_reclaim_acquire+0x117/0x160 [ 160.628073][ T4407] prepare_alloc_pages+0x155/0x4f0 [ 160.633688][ T4407] __alloc_pages+0x12f/0x4e0 [ 160.638776][ T4407] alloc_pages+0x18c/0x2a0 [ 160.643780][ T4407] stack_depot_save+0x39d/0x4e0 [ 160.649132][ T4407] save_stack+0x102/0x1d0 [ 160.653970][ T4407] __set_page_owner+0x50/0x290 [ 160.659232][ T4407] __alloc_pages_bulk+0x7ed/0x1600 [ 160.664844][ T4407] __vmalloc_node_range+0x39d/0x960 [ 160.670558][ T4407] vmalloc_user+0x67/0x80 [ 160.675416][ T4407] kcov_mmap+0x2b/0x140 [ 160.680169][ T4407] mmap_region+0xb55/0x1610 [ 160.685175][ T4407] do_mmap+0x86e/0x1180 [ 160.689848][ T4407] vm_mmap_pgoff+0x1b7/0x280 [ 160.694964][ T4407] ksys_mmap_pgoff+0x4a8/0x620 [ 160.700226][ T4407] do_syscall_64+0x35/0xb0 [ 160.705152][ T4407] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 160.711563][ T4407] [ 160.711563][ T4407] other info that might help us debug this: [ 160.711563][ T4407] [ 160.721782][ T4407] Chain exists of: [ 160.721782][ T4407] fs_reclaim --> &anon_vma->rwsem --> lock#2 [ 160.721782][ T4407] [ 160.733769][ T4407] Possible unsafe locking scenario: [ 160.733769][ T4407] [ 160.741209][ T4407] CPU0 CPU1 [ 160.746553][ T4407] ---- ---- [ 160.751919][ T4407] lock(lock#2); [ 160.755576][ T4407] lock(&anon_vma->rwsem); [ 160.762645][ T4407] lock(lock#2); [ 160.768893][ T4407] lock(fs_reclaim); [ 160.772892][ T4407] [ 160.772892][ T4407] *** DEADLOCK *** [ 160.772892][ T4407] [ 160.781673][ T4407] 2 locks held by syz-execprog/4407: [ 160.786949][ T4407] #0: ffff888117b65c28 (&mm->mmap_lock#2){++++}-{3:3}, at: vm_mmap_pgoff+0x15c/0x280 [ 160.796533][ T4407] #1: ffff8881f694bee0 (lock#2){..-.}-{2:2}, at: __alloc_pages_bulk+0x406/0x1600 [ 160.805748][ T4407] [ 160.805748][ T4407] stack backtrace: [ 160.811705][ T4407] CPU: 1 PID: 4407 Comm: syz-execprog Not tainted 5.14.0-rc1-syzkaller #0 [ 160.820189][ T4407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 160.830253][ T4407] Call Trace: [ 160.833522][ T4407] dump_stack_lvl+0xcd/0x134 [ 160.838098][ T4407] check_noncircular+0x25f/0x2e0 [ 160.843029][ T4407] ? deref_stack_reg+0x150/0x150 [ 160.847954][ T4407] ? print_circular_bug+0x1e0/0x1e0 [ 160.853133][ T4407] ? __unwind_start+0x51b/0x800 [ 160.857985][ T4407] ? create_prof_cpu_mask+0x20/0x20 [ 160.863221][ T4407] ? lockdep_lock+0xba/0x200 [ 160.867896][ T4407] ? call_rcu_zapped+0xb0/0xb0 [ 160.872682][ T4407] __lock_acquire+0x2a07/0x54a0 [ 160.877541][ T4407] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 160.883511][ T4407] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 160.889742][ T4407] ? register_early_stack+0xb0/0xb0 [ 160.894950][ T4407] lock_acquire+0x19d/0x4d0 [ 160.899452][ T4407] ? fs_reclaim_acquire+0xf7/0x160 [ 160.904668][ T4407] ? lock_release+0x6e0/0x6e0 [ 160.909366][ T4407] ? lock_chain_count+0x20/0x20 [ 160.914201][ T4407] ? mark_lock+0xef/0x17b0 [ 160.918600][ T4407] ? deref_stack_reg+0xee/0x150 [ 160.923454][ T4407] fs_reclaim_acquire+0x117/0x160 [ 160.928464][ T4407] ? fs_reclaim_acquire+0xf7/0x160 [ 160.933573][ T4407] prepare_alloc_pages+0x155/0x4f0 [ 160.938669][ T4407] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 160.944741][ T4407] __alloc_pages+0x12f/0x4e0 [ 160.949322][ T4407] ? __alloc_pages_slowpath.constprop.0+0x20e0/0x20e0 [ 160.956252][ T4407] ? __unwind_start+0x51b/0x800 [ 160.961098][ T4407] ? __kernel_text_address+0x5a/0xc0 [ 160.966379][ T4407] alloc_pages+0x18c/0x2a0 [ 160.970808][ T4407] stack_depot_save+0x39d/0x4e0 [ 160.975684][ T4407] save_stack+0x102/0x1d0 [ 160.980003][ T4407] ? register_early_stack+0xb0/0xb0 [ 160.985207][ T4407] ? __alloc_pages_bulk+0x7ed/0x1600 [ 160.990493][ T4407] ? __vmalloc_node_range+0x39d/0x960 [ 160.995851][ T4407] ? vmalloc_user+0x67/0x80 [ 161.001032][ T4407] ? kcov_mmap+0x2b/0x140 [ 161.005366][ T4407] ? mmap_region+0xb55/0x1610 [ 161.010046][ T4407] ? do_mmap+0x86e/0x1180 [ 161.014424][ T4407] ? vm_mmap_pgoff+0x1b7/0x280 [ 161.019176][ T4407] ? ksys_mmap_pgoff+0x4a8/0x620 [ 161.024113][ T4407] ? do_syscall_64+0x35/0xb0 [ 161.028784][ T4407] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 161.034857][ T4407] ? lock_release+0x6e0/0x6e0 [ 161.039527][ T4407] __set_page_owner+0x50/0x290 [ 161.044299][ T4407] ? post_alloc_hook+0x145/0x1e0 [ 161.049318][ T4407] __alloc_pages_bulk+0x7ed/0x1600 [ 161.054422][ T4407] ? __alloc_pages+0x4e0/0x4e0 [ 161.059164][ T4407] ? rwlock_bug.part.0+0x90/0x90 [ 161.064095][ T4407] ? rcu_read_lock_sched_held+0x3a/0x70 [ 161.069728][ T4407] ? trace_kmalloc_node+0x32/0xe0 [ 161.074734][ T4407] __vmalloc_node_range+0x39d/0x960 [ 161.079916][ T4407] ? vfree_atomic+0xe0/0xe0 [ 161.084416][ T4407] ? kcov_mmap+0x2b/0x140 [ 161.088813][ T4407] vmalloc_user+0x67/0x80 [ 161.093123][ T4407] ? kcov_mmap+0x2b/0x140 [ 161.097450][ T4407] kcov_mmap+0x2b/0x140 [ 161.101598][ T4407] ? memset+0x20/0x40 [ 161.105602][ T4407] mmap_region+0xb55/0x1610 [ 161.110101][ T4407] do_mmap+0x86e/0x1180 [ 161.114239][ T4407] vm_mmap_pgoff+0x1b7/0x280 [ 161.118827][ T4407] ? randomize_stack_top+0x100/0x100 [ 161.124204][ T4407] ? __fget_files+0x246/0x3e0 [ 161.128882][ T4407] ksys_mmap_pgoff+0x4a8/0x620 [ 161.133726][ T4407] ? mlock_future_check+0x120/0x120 [ 161.138915][ T4407] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 161.144893][ T4407] ? syscall_enter_from_user_mode+0x21/0x70 [ 161.150772][ T4407] do_syscall_64+0x35/0xb0 [ 161.155171][ T4407] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 161.161046][ T4407] RIP: 0033:0x4b132a [ 161.164933][ T4407] Code: e8 db 57 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 4c 8b 54 24 28 4c 8b 44 24 30 4c 8b 4c 24 38 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 40 ff ff ff ff 48 c7 44 24 48 [ 161.185058][ T4407] RSP: 002b:000000c0002c1a10 EFLAGS: 00000202 ORIG_RAX: 0000000000000009 [ 161.193482][ T4407] RAX: ffffffffffffffda RBX: 000000c00001e000 RCX: 00000000004b132a [ 161.201454][ T4407] RDX: 0000000000000003 RSI: 0000000000080000 RDI: 0000000000000000 [ 161.209678][ T4407] RBP: 000000c0002c1a70 R08: 0000000000000006 R09: 0000000000000000 [ 161.217653][ T4407] R10: 0000000000000001 R11: 0000000000000202 R12: 0000000000727f1a [ 161.225610][ T4407] R13: 0000000000000117 R14: 0000000000000200 R15: 0000000000000100 [ 161.233578][ T4407] BUG: sleeping function called from invalid context at mm/page_alloc.c:5167 [ 161.242315][ T4407] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 4407, name: syz-execprog [ 161.251488][ T4407] INFO: lockdep is turned off. [ 161.256246][ T4407] irq event stamp: 63612 [ 161.260469][ T4407] hardirqs last enabled at (63611): [] _raw_spin_unlock_irqrestore+0x42/0x50 [ 161.270949][ T4407] hardirqs last disabled at (63612): [] __alloc_pages_bulk+0xebb/0x1600 [ 161.280829][ T4407] softirqs last enabled at (62412): [] __irq_exit_rcu+0x117/0x160 [ 161.290266][ T4407] softirqs last disabled at (62407): [] __irq_exit_rcu+0x117/0x160 [ 161.299699][ T4407] CPU: 1 PID: 4407 Comm: syz-execprog Not tainted 5.14.0-rc1-syzkaller #0 [ 161.308174][ T4407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 161.318205][ T4407] Call Trace: [ 161.321474][ T4407] dump_stack_lvl+0xcd/0x134 [ 161.326047][ T4407] ___might_sleep.cold+0x141/0x16f [ 161.331148][ T4407] prepare_alloc_pages+0x32d/0x4f0 [ 161.336263][ T4407] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 161.342315][ T4407] __alloc_pages+0x12f/0x4e0 [ 161.346882][ T4407] ? __alloc_pages_slowpath.constprop.0+0x20e0/0x20e0 [ 161.353640][ T4407] ? __unwind_start+0x51b/0x800 [ 161.358475][ T4407] ? __kernel_text_address+0x5a/0xc0 [ 161.363739][ T4407] alloc_pages+0x18c/0x2a0 [ 161.368133][ T4407] stack_depot_save+0x39d/0x4e0 [ 161.372978][ T4407] save_stack+0x102/0x1d0 [ 161.377287][ T4407] ? register_early_stack+0xb0/0xb0 [ 161.382983][ T4407] ? __alloc_pages_bulk+0x7ed/0x1600 [ 161.388244][ T4407] ? __vmalloc_node_range+0x39d/0x960 [ 161.393607][ T4407] ? vmalloc_user+0x67/0x80 [ 161.398088][ T4407] ? kcov_mmap+0x2b/0x140 [ 161.402925][ T4407] ? mmap_region+0xb55/0x1610 [ 161.407596][ T4407] ? do_mmap+0x86e/0x1180 [ 161.412010][ T4407] ? vm_mmap_pgoff+0x1b7/0x280 [ 161.416752][ T4407] ? ksys_mmap_pgoff+0x4a8/0x620 [ 161.421669][ T4407] ? do_syscall_64+0x35/0xb0 [ 161.426239][ T4407] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 161.432307][ T4407] ? lock_release+0x6e0/0x6e0 [ 161.437068][ T4407] __set_page_owner+0x50/0x290 [ 161.442301][ T4407] ? post_alloc_hook+0x145/0x1e0 [ 161.447241][ T4407] __alloc_pages_bulk+0x7ed/0x1600 [ 161.452773][ T4407] ? __alloc_pages+0x4e0/0x4e0 [ 161.457525][ T4407] ? rwlock_bug.part.0+0x90/0x90 [ 161.462444][ T4407] ? rcu_read_lock_sched_held+0x3a/0x70 [ 161.467986][ T4407] ? trace_kmalloc_node+0x32/0xe0 [ 161.472993][ T4407] __vmalloc_node_range+0x39d/0x960 [ 161.478173][ T4407] ? vfree_atomic+0xe0/0xe0 [ 161.482653][ T4407] ? kcov_mmap+0x2b/0x140 [ 161.486963][ T4407] vmalloc_user+0x67/0x80 [ 161.491273][ T4407] ? kcov_mmap+0x2b/0x140 [ 161.495581][ T4407] kcov_mmap+0x2b/0x140 [ 161.499757][ T4407] ? memset+0x20/0x40 [ 161.504162][ T4407] mmap_region+0xb55/0x1610 [ 161.508660][ T4407] do_mmap+0x86e/0x1180 [ 161.512796][ T4407] vm_mmap_pgoff+0x1b7/0x280 [ 161.517370][ T4407] ? randomize_stack_top+0x100/0x100 [ 161.522631][ T4407] ? __fget_files+0x246/0x3e0 [ 161.527299][ T4407] ksys_mmap_pgoff+0x4a8/0x620 [ 161.532045][ T4407] ? mlock_future_check+0x120/0x120 [ 161.537222][ T4407] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 161.543180][ T4407] ? syscall_enter_from_user_mode+0x21/0x70 [ 161.549065][ T4407] do_syscall_64+0x35/0xb0 [ 161.553562][ T4407] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 161.559438][ T4407] RIP: 0033:0x4b132a [ 161.563312][ T4407] Code: e8 db 57 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 4c 8b 54 24 28 4c 8b 44 24 30 4c 8b 4c 24 38 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 40 ff ff ff ff 48 c7 44 24 48 [ 161.582908][ T4407] RSP: 002b:000000c0002c1a10 EFLAGS: 00000202 ORIG_RAX: 0000000000000009 [ 161.591866][ T4407] RAX: ffffffffffffffda RBX: 000000c00001e000 RCX: 00000000004b132a [ 161.599836][ T4407] RDX: 0000000000000003 RSI: 0000000000080000 RDI: 0000000000000000 [ 161.607791][ T4407] RBP: 000000c0002c1a70 R08: 0000000000000006 R09: 0000000000000000 [ 161.615744][ T4407] R10: 0000000000000001 R11: 0000000000000202 R12: 0000000000727f1a [ 161.623692][ T4407] R13: 0000000000000117 R14: 0000000000000200 R15: 0000000000000100 2021/07/17 05:50:06 executed programs: 0 [ 163.694716][ T4423] cgroup: Unknown subsys name 'perf_event' [ 163.702019][ T4423] cgroup: Unknown subsys name 'net_cls' [ 163.751336][ T4426] cgroup: Unknown subsys name 'perf_event' [ 163.757818][ T4426] cgroup: Unknown subsys name 'net_cls' [ 163.790740][ T4428] cgroup: Unknown subsys name 'perf_event' [ 163.802023][ T4428] cgroup: Unknown subsys name 'net_cls' [ 163.860871][ T4434] cgroup: Unknown subsys name 'perf_event' [ 163.867373][ T4434] cgroup: Unknown subsys name 'net_cls' [ 163.881958][ T4444] cgroup: Unknown subsys name 'perf_event' [ 163.888442][ T4444] cgroup: Unknown subsys name 'net_cls' [ 163.903158][ T4447] cgroup: Unknown subsys name 'perf_event' [ 163.910834][ T4447] cgroup: Unknown subsys name 'net_cls'