[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   40.709910] audit: type=1800 audit(1549968778.676:25): pid=7661 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   40.739577] audit: type=1800 audit(1549968778.676:26): pid=7661 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   40.771298] audit: type=1800 audit(1549968778.676:27): pid=7661 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.28' (ECDSA) to the list of known hosts.
2019/02/12 10:53:08 parsed 1 programs
2019/02/12 10:53:11 executed programs: 0
syzkaller login: [   53.514387] IPVS: ftp: loaded support on port[0] = 21
[   53.518475] IPVS: ftp: loaded support on port[0] = 21
[   53.531558] IPVS: ftp: loaded support on port[0] = 21
[   53.561989] IPVS: ftp: loaded support on port[0] = 21
[   53.585856] IPVS: ftp: loaded support on port[0] = 21
[   53.627518] IPVS: ftp: loaded support on port[0] = 21
[   53.852471] chnl_net:caif_netlink_parms(): no params data found
[   53.897525] chnl_net:caif_netlink_parms(): no params data found
[   54.003337] chnl_net:caif_netlink_parms(): no params data found
[   54.035368] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.042663] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.050381] device bridge_slave_0 entered promiscuous mode
[   54.073878] chnl_net:caif_netlink_parms(): no params data found
[   54.083543] chnl_net:caif_netlink_parms(): no params data found
[   54.093060] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.099410] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.107154] device bridge_slave_1 entered promiscuous mode
[   54.146796] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.153337] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.160809] device bridge_slave_0 entered promiscuous mode
[   54.203260] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.209803] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.216753] device bridge_slave_1 entered promiscuous mode
[   54.234797] chnl_net:caif_netlink_parms(): no params data found
[   54.264965] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   54.281247] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   54.332283] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.339094] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.346441] device bridge_slave_0 entered promiscuous mode
[   54.373609] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   54.381420] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.387795] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.398293] device bridge_slave_0 entered promiscuous mode
[   54.412414] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.419317] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.426341] device bridge_slave_1 entered promiscuous mode
[   54.447899] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   54.462444] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.468814] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.475840] device bridge_slave_1 entered promiscuous mode
[   54.484955] team0: Port device team_slave_0 added
[   54.490689] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.497042] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.504154] device bridge_slave_0 entered promiscuous mode
[   54.547262] team0: Port device team_slave_1 added
[   54.553544] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.560114] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.567018] device bridge_slave_1 entered promiscuous mode
[   54.575123] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   54.584156] team0: Port device team_slave_0 added
[   54.589186] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.595623] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.603001] device bridge_slave_0 entered promiscuous mode
[   54.610534] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.616885] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.624208] device bridge_slave_1 entered promiscuous mode
[   54.632239] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   54.645972] team0: Port device team_slave_1 added
[   54.653619] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   54.682881] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   54.730528] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   54.739817] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   54.749157] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   54.758058] team0: Port device team_slave_0 added
[   54.764189] team0: Port device team_slave_0 added
[   54.770318] team0: Port device team_slave_1 added
[   54.832946] device hsr_slave_0 entered promiscuous mode
[   54.890375] device hsr_slave_1 entered promiscuous mode
[   54.931610] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   54.955712] team0: Port device team_slave_1 added
[   54.981432] team0: Port device team_slave_0 added
[   54.987847] team0: Port device team_slave_1 added
[   55.052610] device hsr_slave_0 entered promiscuous mode
[   55.089924] device hsr_slave_1 entered promiscuous mode
[   55.158288] team0: Port device team_slave_0 added
[   55.192723] device hsr_slave_0 entered promiscuous mode
[   55.259973] device hsr_slave_1 entered promiscuous mode
[   55.372441] device hsr_slave_0 entered promiscuous mode
[   55.430107] device hsr_slave_1 entered promiscuous mode
[   55.491267] team0: Port device team_slave_1 added
[   55.532655] device hsr_slave_0 entered promiscuous mode
[   55.599845] device hsr_slave_1 entered promiscuous mode
[   55.762718] device hsr_slave_0 entered promiscuous mode
[   55.801527] device hsr_slave_1 entered promiscuous mode
[   55.941061] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.986196] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   55.994015] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   56.005279] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.016245] 8021q: adding VLAN 0 to HW filter on device team0
[   56.039705] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   56.047631] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   56.055412] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.061897] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.068983] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   56.076962] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   56.084577] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.090949] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.098176] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   56.118273] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.129125] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.163670] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   56.171861] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   56.179616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   56.187330] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   56.207073] 8021q: adding VLAN 0 to HW filter on device team0
[   56.218044] 8021q: adding VLAN 0 to HW filter on device team0
[   56.237192] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   56.245208] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   56.252246] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   56.259048] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   56.266271] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   56.273454] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   56.280759] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   56.287572] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   56.295463] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   56.303214] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.309602] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.316983] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   56.325864] 8021q: adding VLAN 0 to HW filter on device team0
[   56.334610] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.346127] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.367996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   56.378827] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   56.386947] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.393564] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.401147] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   56.408818] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   56.416463] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.422822] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.429678] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   56.437366] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   56.445007] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.451349] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.458180] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   56.465951] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   56.473454] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   56.481357] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   56.488861] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.495254] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.503698] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   56.510882] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   56.518074] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   56.525940] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   56.533696] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.540077] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.552687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   56.560570] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   56.599542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   56.607410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   56.616479] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   56.624625] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   56.632576] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   56.641358] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   56.648850] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   56.656792] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   56.664832] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   56.672380] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   56.680002] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   56.686917] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   56.693999] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   56.702069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   56.709940] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   56.717520] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   56.725513] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   56.733238] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   56.740958] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   56.748376] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   56.757896] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   56.774730] 8021q: adding VLAN 0 to HW filter on device team0
[   56.785392] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   56.792596] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   56.799663] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   56.806570] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   56.814896] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   56.822726] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   56.831003] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   56.838484] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   56.846852] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   56.855227] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.861649] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.868732] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   56.884524] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   56.894958] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   56.923008] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   56.930981] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   56.938410] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   56.946200] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   56.953834] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   56.961011] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   56.968016] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   56.975745] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   56.983810] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   56.996810] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   57.006929] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   57.027173] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   57.034924] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   57.042535] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   57.052070] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   57.059546] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   57.067230] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   57.075217] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.081657] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.088407] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   57.104800] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.115551] 8021q: adding VLAN 0 to HW filter on device team0
[   57.138710] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   57.147101] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   57.157903] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.164302] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.177666] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   57.186831] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   57.197931] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   57.205716] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.212091] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.219181] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   57.227042] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   57.240618] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.252898] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.281763] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   57.298408] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   57.309644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   57.318301] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   57.326870] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   57.336889] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   57.347275] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   57.364905] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.430765] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   57.438418] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   57.439512] hrtimer: interrupt took 44756 ns
[   57.474875] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   57.506113] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   57.527283] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   57.551696] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   57.560529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   57.575359] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   57.601540] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   57.640925] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   57.664322] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.720683] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   57.728363] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   57.792463] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   57.853886] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   57.910382] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   57.930600] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   58.064948] 8021q: adding VLAN 0 to HW filter on device batadv0
2019/02/12 10:53:16 executed programs: 9
[   61.135884] 
[   61.137558] ======================================================
[   61.143871] WARNING: possible circular locking dependency detected
[   61.150185] 5.0.0-rc6+ #68 Not tainted
[   61.154069] ------------------------------------------------------
[   61.160381] syz-executor.4/7942 is trying to acquire lock:
[   61.166001] 0000000056a6aa3f (&mm->mmap_sem){++++}, at: __do_page_fault+0x9c2/0xd60
[   61.173821] 
[   61.173821] but task is already holding lock:
[   61.179797] 000000003b40a2f0 (&sb->s_type->i_mutex_key#11){+.+.}, at: generic_file_write_iter+0xdf/0x610
[   61.189455] 
[   61.189455] which lock already depends on the new lock.
[   61.189455] 
[   61.197785] 
[   61.197785] the existing dependency chain (in reverse order) is:
[   61.205397] 
[   61.205397] -> #2 (&sb->s_type->i_mutex_key#11){+.+.}:
[   61.212168]        down_write+0x38/0x90
[   61.216149]        shmem_fallocate+0x15a/0xc60
[   61.220735]        ashmem_shrink_scan+0x1d7/0x4f0
[   61.225598]        ashmem_ioctl+0x2f0/0x11a0
[   61.230005]        do_vfs_ioctl+0xd6e/0x1390
[   61.234412]        ksys_ioctl+0xab/0xd0
[   61.238385]        __x64_sys_ioctl+0x73/0xb0
[   61.242805]        do_syscall_64+0x103/0x610
[   61.247219]        entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   61.252922] 
[   61.252922] -> #1 (ashmem_mutex){+.+.}:
[   61.258389]        __mutex_lock+0xf7/0x1310
[   61.262717]        mutex_lock_nested+0x16/0x20
[   61.267307]        ashmem_mmap+0x55/0x520
[   61.271464]        mmap_region+0xc37/0x1760
[   61.275799]        do_mmap+0x8e2/0x1080
[   61.279790]        vm_mmap_pgoff+0x1c5/0x230
[   61.284206]        ksys_mmap_pgoff+0x4aa/0x630
[   61.288799]        __x64_sys_mmap+0xe9/0x1b0
[   61.293238]        do_syscall_64+0x103/0x610
[   61.297646]        entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   61.303349] 
[   61.303349] -> #0 (&mm->mmap_sem){++++}:
[   61.308898]        lock_acquire+0x16f/0x3f0
[   61.313232]        down_read+0x3b/0x90
[   61.317124]        __do_page_fault+0x9c2/0xd60
[   61.321708]        do_page_fault+0x71/0x581
[   61.326066]        page_fault+0x1e/0x30
[   61.330047]        iov_iter_fault_in_readable+0x377/0x450
[   61.335586]        generic_perform_write+0x195/0x530
[   61.340692]        __generic_file_write_iter+0x25e/0x630
[   61.346145]        generic_file_write_iter+0x360/0x610
[   61.351448]        __vfs_write+0x613/0x8e0
[   61.355732]        vfs_write+0x20c/0x580
[   61.359824]        ksys_write+0xea/0x1f0
[   61.363887]        __x64_sys_write+0x73/0xb0
[   61.368317]        do_syscall_64+0x103/0x610
[   61.372732]        entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   61.378435] 
[   61.378435] other info that might help us debug this:
[   61.378435] 
[   61.386566] Chain exists of:
[   61.386566]   &mm->mmap_sem --> ashmem_mutex --> &sb->s_type->i_mutex_key#11
[   61.386566] 
[   61.398108]  Possible unsafe locking scenario:
[   61.398108] 
[   61.404158]        CPU0                    CPU1
[   61.408818]        ----                    ----
[   61.413513]   lock(&sb->s_type->i_mutex_key#11);
[   61.418448]                                lock(ashmem_mutex);
[   61.424415]                                lock(&sb->s_type->i_mutex_key#11);
[   61.431712]   lock(&mm->mmap_sem);
[   61.435280] 
[   61.435280]  *** DEADLOCK ***
[   61.435280] 
[   61.441339] 2 locks held by syz-executor.4/7942:
[   61.446076]  #0: 00000000aadf9062 (sb_writers#5){.+.+}, at: vfs_write+0x429/0x580
[   61.453726]  #1: 000000003b40a2f0 (&sb->s_type->i_mutex_key#11){+.+.}, at: generic_file_write_iter+0xdf/0x610
[   61.463797] 
[   61.463797] stack backtrace:
[   61.468298] CPU: 1 PID: 7942 Comm: syz-executor.4 Not tainted 5.0.0-rc6+ #68
[   61.475475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   61.484820] Call Trace:
[   61.487410]  dump_stack+0x172/0x1f0
[   61.491040]  print_circular_bug.isra.0.cold+0x1cc/0x28f
[   61.496401]  __lock_acquire+0x2f00/0x4700
[   61.500565]  ? __schedule+0x81f/0x1cc0
[   61.504731]  ? lockdep_hardirqs_on+0x415/0x5d0
[   61.509362]  ? mark_held_locks+0x100/0x100
[   61.513612]  ? lockdep_hardirqs_on+0x415/0x5d0
[   61.518204]  ? retint_kernel+0x2d/0x2d
[   61.522116]  ? trace_hardirqs_on_caller+0x6a/0x220
[   61.527042]  ? __lock_is_held+0xb6/0x140
[   61.531101]  lock_acquire+0x16f/0x3f0
[   61.534901]  ? __do_page_fault+0x9c2/0xd60
[   61.539139]  down_read+0x3b/0x90
[   61.542501]  ? __do_page_fault+0x9c2/0xd60
[   61.547226]  __do_page_fault+0x9c2/0xd60
[   61.551327]  do_page_fault+0x71/0x581
[   61.555135]  page_fault+0x1e/0x30
[   61.558588] RIP: 0010:iov_iter_fault_in_readable+0x377/0x450
[   61.564405] Code: 89 f6 41 88 57 e0 e8 f8 1e 47 fe 45 85 f6 74 c1 e9 70 fe ff ff e8 69 1d 47 fe 0f 1f 00 0f ae e8 44 89 f0 48 8b 8d 68 ff ff ff <8a> 11 89 c3 0f 1f 00 41 88 57 d0 31 ff 89 de e8 c5 1e 47 fe 85 db
[   61.583312] RSP: 0018:ffff88808b7479b8 EFLAGS: 00010293
[   61.588671] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000002069c53f
[   61.595932] RDX: 0000000000000000 RSI: ffffffff8328c3b7 RDI: 0000000000000007
[   61.603196] RBP: ffff88808b747a58 R08: ffff888086344240 R09: fffff940003cd43f
[   61.610475] R10: fffff940003cd43e R11: ffffea0001e6a1f7 R12: 0000000000001000
[   61.617750] R13: 0000000000001000 R14: 0000000000000000 R15: ffff88808b747a30
[   61.625033]  ? iov_iter_fault_in_readable+0x367/0x450
[   61.630221]  ? iov_iter_fault_in_readable+0x367/0x450
[   61.635407]  ? copy_page_from_iter+0x750/0x750
[   61.639992]  generic_perform_write+0x195/0x530
[   61.644573]  ? page_endio+0x780/0x780
[   61.648374]  ? current_time+0x140/0x140
[   61.652347]  ? __generic_file_write_iter+0xf3/0x630
[   61.657362]  __generic_file_write_iter+0x25e/0x630
[   61.662297]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   61.667316]  generic_file_write_iter+0x360/0x610
[   61.672074]  ? __generic_file_write_iter+0x630/0x630
[   61.677178]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   61.682712]  ? iov_iter_init+0xea/0x220
[   61.686687]  __vfs_write+0x613/0x8e0
[   61.690426]  ? kernel_read+0x120/0x120
[   61.694320]  ? rcu_read_lock_sched_held+0x110/0x130
[   61.699333]  ? rcu_sync_lockdep_assert+0x73/0xb0
[   61.704106]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   61.709640]  ? __sb_start_write+0x1ac/0x360
[   61.713963]  vfs_write+0x20c/0x580
[   61.717499]  ksys_write+0xea/0x1f0
[   61.721049]  ? __ia32_sys_read+0xb0/0xb0
[   61.725108]  ? do_syscall_64+0x26/0x610
[   61.729078]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   61.734439]  ? do_syscall_64+0x26/0x610
[   61.738410]  __x64_sys_write+0x73/0xb0
[   61.742300]  do_syscall_64+0x103/0x610
[   61.746214]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   61.751399] RIP: 0033:0x457e39
[   61.754589] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   61.773482] RSP: 002b:00007f1e585acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   61.781188] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457e39
[   61.788465] RDX: 00000000fffffda2 RSI: 0000000020000540 RDI: 0000000000000005
[   61.795724] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[   61.802984] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f1e585ad6d4
[   61.810245] R13: 00000000004c71eb R14: 00000000004dcc70 R15: 00000000ffffffff
[   61.848200] kobject: 'loop3' (000000007573ae00): kobject_uevent_env
[   61.856957] kobject: 'loop3' (000000007573ae00): fill_kobj_path: path = '/devices/virtual/block/loop3'
[   61.909933] kobject: 'loop2' (00000000f315079d): kobject_uevent_env
[   61.916411] kobject: 'loop2' (00000000f315079d): fill_kobj_path: path = '/devices/virtual/block/loop2'
[   61.941937] kobject: 'loop1' (00000000aac5de38): kobject_uevent_env
[   61.948473] kobject: 'loop1' (00000000aac5de38): fill_kobj_path: path = '/devices/virtual/block/loop1'
[   61.964841] kobject: 'loop0' (000000008989891b): kobject_uevent_env
[   61.977116] kobject: 'loop0' (000000008989891b): fill_kobj_path: path = '/devices/virtual/block/loop0'
[   62.695846] kobject: 'loop0' (000000008989891b): kobject_uevent_env
[   62.706818] kobject: 'loop0' (000000008989891b): fill_kobj_path: path = '/devices/virtual/block/loop0'
[   62.777702] kobject: 'loop3' (000000007573ae00): kobject_uevent_env
[   62.836430] kobject: 'loop3' (000000007573ae00): fill_kobj_path: path = '/devices/virtual/block/loop3'
[   62.907303] kobject: 'loop1' (00000000aac5de38): kobject_uevent_env
[   62.953233] kobject: 'loop1' (00000000aac5de38): fill_kobj_path: path = '/devices/virtual/block/loop1'
[   62.988285] kobject: 'loop2' (00000000f315079d): kobject_uevent_env
[   63.009886] kobject: 'loop2' (00000000f315079d): fill_kobj_path: path = '/devices/virtual/block/loop2'
[   63.183376] kobject: 'loop3' (000000007573ae00): kobject_uevent_env
[   63.193232] kobject: 'loop3' (000000007573ae00): fill_kobj_path: path = '/devices/virtual/block/loop3'
[   63.240094] kobject: 'loop5' (000000003f2e3276): kobject_uevent_env
[   63.246539] kobject: 'loop5' (000000003f2e3276): fill_kobj_path: path = '/devices/virtual/block/loop5'
[   63.335011] kobject: 'loop4' (00000000b31e6158): kobject_uevent_env
[   63.347671] kobject: 'loop4' (00000000b31e6158): fill_kobj_path: path = '/devices/virtual/block/loop4'
[   63.413169] kobject: 'loop0' (000000008989891b): kobject_uevent_env
[   63.448088] kobject: 'loop0' (000000008989891b): fill_kobj_path: path = '/devices/virtual/block/loop0'
2019/02/12 10:53:22 executed programs: 34
[   64.198744] kobject: 'loop5' (000000003f2e3276): kobject_uevent_env
[   64.222282] kobject: 'loop5' (000000003f2e3276): fill_kobj_path: path = '/devices/virtual/block/loop5'
[   64.284721] kobject: 'loop2' (00000000f315079d): kobject_uevent_env
[   64.340344] kobject: 'loop2' (00000000f315079d): fill_kobj_path: path = '/devices/virtual/block/loop2'
[   64.426805] kobject: 'loop1' (00000000aac5de38): kobject_uevent_env
[   64.483200] kobject: 'loop1' (00000000aac5de38): fill_kobj_path: path = '/devices/virtual/block/loop1'
[   64.568930] kobject: 'loop3' (000000007573ae00): kobject_uevent_env
[