[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.39' (ECDSA) to the list of known hosts. 2021/07/12 19:02:43 parsed 1 programs 2021/07/12 19:02:45 executed programs: 0 syzkaller login: [ 38.951883][ T4416] cgroup: Unknown subsys name 'perf_event' [ 38.953111][ T4414] cgroup: Unknown subsys name 'perf_event' [ 38.961493][ T4416] cgroup: Unknown subsys name 'net_cls' [ 38.978775][ T147] [ 38.981108][ T147] ====================================================== [ 38.988116][ T147] WARNING: possible circular locking dependency detected [ 38.995126][ T147] 5.14.0-rc1-syzkaller #0 Not tainted [ 39.000495][ T147] ------------------------------------------------------ [ 39.004287][ T4414] cgroup: Unknown subsys name 'net_cls' [ 39.007506][ T147] kworker/u4:3/147 is trying to acquire lock: [ 39.019085][ T147] ffffffff87750940 (fs_reclaim){+.+.}-{0:0}, at: fs_reclaim_acquire+0xf7/0x160 [ 39.028064][ T147] [ 39.028064][ T147] but task is already holding lock: [ 39.035426][ T147] ffff8881f684bee0 (lock#2){..-.}-{2:2}, at: __alloc_pages_bulk+0x406/0x1600 [ 39.043640][ T4421] cgroup: Unknown subsys name 'perf_event' [ 39.044281][ T147] [ 39.044281][ T147] which lock already depends on the new lock. [ 39.044281][ T147] [ 39.044289][ T147] [ 39.044289][ T147] the existing dependency chain (in reverse order) is: [ 39.050797][ T4421] cgroup: Unknown subsys name 'net_cls' [ 39.060502][ T147] [ 39.060502][ T147] -> #3 (lock#2){..-.}-{2:2}: [ 39.060542][ T147] get_page_from_freelist+0xc9b/0x28b0 [ 39.060567][ T147] __alloc_pages+0x1b2/0x4e0 [ 39.060582][ T147] alloc_pages+0x18c/0x2a0 [ 39.060600][ T147] allocate_slab+0x32b/0x4c0 [ 39.086990][ T4418] cgroup: Unknown subsys name 'perf_event' [ 39.088098][ T147] ___slab_alloc+0x4ba/0x820 [ 39.114368][ T147] __slab_alloc+0x68/0x80 [ 39.117448][ T4418] cgroup: Unknown subsys name 'net_cls' [ 39.119233][ T147] kmem_cache_alloc+0x339/0x360 [ 39.119264][ T147] anon_vma_clone+0xe0/0x5f0 [ 39.135461][ T147] anon_vma_fork+0x82/0x630 [ 39.135626][ T4423] cgroup: Unknown subsys name 'perf_event' [ 39.140497][ T147] dup_mm+0x8a6/0x11e0 [ 39.140523][ T147] copy_process+0x5ec0/0x7040 [ 39.156077][ T147] kernel_clone+0xe7/0xa70 [ 39.157501][ T4423] cgroup: Unknown subsys name 'net_cls' [ 39.161024][ T147] __do_sys_clone+0xc8/0x110 [ 39.161048][ T147] do_syscall_64+0x35/0xb0 [ 39.174218][ T4420] cgroup: Unknown subsys name 'perf_event' [ 39.176646][ T147] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 39.183239][ T4420] cgroup: Unknown subsys name 'net_cls' [ 39.188948][ T147] [ 39.188948][ T147] -> #2 (&anon_vma->rwsem){++++}-{3:3}: [ 39.188983][ T147] down_write+0x92/0x150 [ 39.206972][ T147] __vma_adjust+0x2f5/0x26b0 [ 39.212099][ T147] __split_vma+0x2b3/0x550 [ 39.217053][ T147] split_vma+0x95/0xd0 [ 39.221743][ T147] mprotect_fixup+0x6eb/0x8e0 [ 39.226957][ T147] do_mprotect_pkey+0x558/0x9a0 [ 39.232350][ T147] __x64_sys_mprotect+0x74/0xb0 [ 39.237755][ T147] do_syscall_64+0x35/0xb0 [ 39.242709][ T147] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 39.249152][ T147] [ 39.249152][ T147] -> #1 (&mapping->i_mmap_rwsem){+.+.}-{3:3}: [ 39.257420][ T147] down_write+0x92/0x150 [ 39.262212][ T147] dma_resv_lockdep+0x348/0x540 [ 39.267606][ T147] do_one_initcall+0x103/0x5d0 [ 39.272907][ T147] kernel_init_freeable+0x6ae/0x737 [ 39.278670][ T147] kernel_init+0x1a/0x1d0 [ 39.283540][ T147] ret_from_fork+0x1f/0x30 [ 39.288503][ T147] [ 39.288503][ T147] -> #0 (fs_reclaim){+.+.}-{0:0}: [ 39.295734][ T147] __lock_acquire+0x2a07/0x54a0 [ 39.301138][ T147] lock_acquire+0x19d/0x4d0 [ 39.306211][ T147] fs_reclaim_acquire+0x117/0x160 [ 39.311773][ T147] prepare_alloc_pages+0x155/0x4f0 [ 39.317420][ T147] __alloc_pages+0x12f/0x4e0 [ 39.322537][ T147] alloc_pages+0x18c/0x2a0 [ 39.327943][ T147] stack_depot_save+0x39d/0x4e0 [ 39.333422][ T147] save_stack+0x102/0x1d0 [ 39.338307][ T147] __set_page_owner+0x50/0x290 [ 39.343600][ T147] __alloc_pages_bulk+0x7ed/0x1600 [ 39.349240][ T147] __vmalloc_node_range+0x39d/0x960 [ 39.354976][ T147] copy_process+0x8db/0x7040 [ 39.360099][ T147] kernel_clone+0xe7/0xa70 [ 39.365051][ T147] kernel_thread+0xb5/0xf0 [ 39.369999][ T147] call_usermodehelper_exec_work+0x69/0x180 [ 39.376518][ T147] process_one_work+0x98d/0x15b0 [ 39.381985][ T147] worker_thread+0x658/0x11f0 [ 39.387194][ T147] kthread+0x3c0/0x4a0 [ 39.392119][ T147] ret_from_fork+0x1f/0x30 [ 39.397101][ T147] [ 39.397101][ T147] other info that might help us debug this: [ 39.397101][ T147] [ 39.407329][ T147] Chain exists of: [ 39.407329][ T147] fs_reclaim --> &anon_vma->rwsem --> lock#2 [ 39.407329][ T147] [ 39.419254][ T147] Possible unsafe locking scenario: [ 39.419254][ T147] [ 39.426701][ T147] CPU0 CPU1 [ 39.432088][ T147] ---- ---- [ 39.437449][ T147] lock(lock#2); [ 39.441097][ T147] lock(&anon_vma->rwsem); [ 39.448150][ T147] lock(lock#2); [ 39.454325][ T147] lock(fs_reclaim); [ 39.458313][ T147] [ 39.458313][ T147] *** DEADLOCK *** [ 39.458313][ T147] [ 39.466456][ T147] 3 locks held by kworker/u4:3/147: [ 39.471653][ T147] #0: ffff888100069138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x871/0x15b0 [ 39.482728][ T147] #1: ffffc90000877db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x8a5/0x15b0 [ 39.494230][ T147] #2: ffff8881f684bee0 (lock#2){..-.}-{2:2}, at: __alloc_pages_bulk+0x406/0x1600 [ 39.503472][ T147] [ 39.503472][ T147] stack backtrace: [ 39.509384][ T147] CPU: 0 PID: 147 Comm: kworker/u4:3 Not tainted 5.14.0-rc1-syzkaller #0 [ 39.517804][ T147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.527864][ T147] Workqueue: events_unbound call_usermodehelper_exec_work [ 39.534999][ T147] Call Trace: [ 39.538282][ T147] dump_stack_lvl+0xcd/0x134 [ 39.542890][ T147] check_noncircular+0x25f/0x2e0 [ 39.547840][ T147] ? deref_stack_reg+0x150/0x150 [ 39.552833][ T147] ? print_circular_bug+0x1e0/0x1e0 [ 39.558041][ T147] ? __unwind_start+0x51b/0x800 [ 39.563365][ T147] ? create_prof_cpu_mask+0x20/0x20 [ 39.568577][ T147] ? lockdep_lock+0xba/0x200 [ 39.573180][ T147] ? call_rcu_zapped+0xb0/0xb0 [ 39.577958][ T147] __lock_acquire+0x2a07/0x54a0 [ 39.582813][ T147] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 39.588799][ T147] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 39.595054][ T147] ? register_early_stack+0xb0/0xb0 [ 39.600278][ T147] lock_acquire+0x19d/0x4d0 [ 39.604819][ T147] ? fs_reclaim_acquire+0xf7/0x160 [ 39.609947][ T147] ? lock_release+0x6e0/0x6e0 [ 39.614634][ T147] ? lock_chain_count+0x20/0x20 [ 39.619504][ T147] ? mark_lock+0xef/0x17b0 [ 39.623927][ T147] ? deref_stack_reg+0xee/0x150 [ 39.628800][ T147] fs_reclaim_acquire+0x117/0x160 [ 39.633839][ T147] ? fs_reclaim_acquire+0xf7/0x160 [ 39.638971][ T147] prepare_alloc_pages+0x155/0x4f0 [ 39.644096][ T147] ? ret_from_fork+0x1f/0x30 [ 39.648694][ T147] __alloc_pages+0x12f/0x4e0 [ 39.653305][ T147] ? __alloc_pages_slowpath.constprop.0+0x20e0/0x20e0 [ 39.660078][ T147] ? __unwind_start+0x51b/0x800 [ 39.664944][ T147] alloc_pages+0x18c/0x2a0 [ 39.669372][ T147] stack_depot_save+0x39d/0x4e0 [ 39.674238][ T147] save_stack+0x102/0x1d0 [ 39.678583][ T147] ? register_early_stack+0xb0/0xb0 [ 39.683792][ T147] ? __alloc_pages_bulk+0x7ed/0x1600 [ 39.689087][ T147] ? __vmalloc_node_range+0x39d/0x960 [ 39.694468][ T147] ? copy_process+0x8db/0x7040 [ 39.699240][ T147] ? kernel_clone+0xe7/0xa70 [ 39.703870][ T147] ? kernel_thread+0xb5/0xf0 [ 39.708469][ T147] ? call_usermodehelper_exec_work+0x69/0x180 [ 39.714550][ T147] ? process_one_work+0x98d/0x15b0 [ 39.719677][ T147] ? worker_thread+0x658/0x11f0 [ 39.724538][ T147] ? kthread+0x3c0/0x4a0 [ 39.728788][ T147] ? ret_from_fork+0x1f/0x30 [ 39.733387][ T147] ? lock_release+0x6e0/0x6e0 [ 39.738071][ T147] __set_page_owner+0x50/0x290 [ 39.742848][ T147] ? post_alloc_hook+0x145/0x1e0 [ 39.747797][ T147] __alloc_pages_bulk+0x7ed/0x1600 [ 39.752919][ T147] ? __alloc_pages+0x4e0/0x4e0 [ 39.757691][ T147] ? rwlock_bug.part.0+0x90/0x90 [ 39.762643][ T147] ? rcu_read_lock_sched_held+0x3a/0x70 [ 39.768209][ T147] ? trace_kmalloc_node+0x32/0xe0 [ 39.773246][ T147] __vmalloc_node_range+0x39d/0x960 [ 39.778463][ T147] ? vfree_atomic+0xe0/0xe0 [ 39.782976][ T147] ? rcu_read_lock_sched_held+0x3a/0x70 [ 39.788539][ T147] ? kernel_clone+0xe7/0xa70 [ 39.793144][ T147] copy_process+0x8db/0x7040 [ 39.797745][ T147] ? kernel_clone+0xe7/0xa70 [ 39.802351][ T147] ? mark_lock+0xef/0x17b0 [ 39.806775][ T147] ? mark_lock+0xef/0x17b0 [ 39.811198][ T147] ? lock_chain_count+0x20/0x20 [ 39.816065][ T147] ? __cleanup_sighand+0xb0/0xb0 [ 39.821017][ T147] ? kernel_clone+0xc4/0xa70 [ 39.825660][ T147] kernel_clone+0xe7/0xa70 [ 39.830089][ T147] ? create_io_thread+0xf0/0xf0 [ 39.834952][ T147] ? mark_lock+0xef/0x17b0 [ 39.839377][ T147] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 39.845366][ T147] ? debug_object_deactivate+0x264/0x300 [ 39.851016][ T147] ? lock_chain_count+0x20/0x20 [ 39.855876][ T147] ? umh_complete+0x90/0x90 [ 39.860393][ T147] kernel_thread+0xb5/0xf0 [ 39.864854][ T147] ? __do_sys_clone3+0x2e0/0x2e0 [ 39.869803][ T147] ? umh_complete+0x90/0x90 [ 39.874319][ T147] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 39.880311][ T147] ? _raw_spin_unlock_irq+0x1f/0x30 [ 39.885524][ T147] ? trace_hardirqs_on+0x5b/0x1a0 [ 39.890565][ T147] call_usermodehelper_exec_work+0x69/0x180 [ 39.896475][ T147] process_one_work+0x98d/0x15b0 [ 39.901427][ T147] ? pwq_dec_nr_in_flight+0x320/0x320 [ 39.906853][ T147] ? rwlock_bug.part.0+0x90/0x90 [ 39.911918][ T147] worker_thread+0x658/0x11f0 [ 39.916606][ T147] ? __kthread_parkme+0x126/0x1f0 [ 39.921650][ T147] ? process_one_work+0x15b0/0x15b0 [ 39.926865][ T147] kthread+0x3c0/0x4a0 [ 39.930972][ T147] ? _raw_spin_unlock_irq+0x1f/0x30 [ 39.936208][ T147] ? set_kthread_struct+0x130/0x130 [ 39.941414][ T147] ret_from_fork+0x1f/0x30 [ 39.945845][ T147] BUG: sleeping function called from invalid context at mm/page_alloc.c:5167 [ 39.954602][ T147] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 147, name: kworker/u4:3 [ 39.963718][ T147] INFO: lockdep is turned off. [ 39.968496][ T147] irq event stamp: 91186 [ 39.972731][ T147] hardirqs last enabled at (91185): [] _raw_spin_unlock_irqrestore+0x42/0x50 [ 39.983159][ T147] hardirqs last disabled at (91186): [] __alloc_pages_bulk+0xebb/0x1600 [ 39.993059][ T147] softirqs last enabled at (91108): [] fpu_clone+0x13c/0x580 [ 40.002090][ T147] softirqs last disabled at (91106): [] fpu_clone+0x7e/0x580 [ 40.011038][ T147] CPU: 0 PID: 147 Comm: kworker/u4:3 Not tainted 5.14.0-rc1-syzkaller #0 [ 40.019455][ T147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.029522][ T147] Workqueue: events_unbound call_usermodehelper_exec_work [ 40.036666][ T147] Call Trace: [ 40.039953][ T147] dump_stack_lvl+0xcd/0x134 [ 40.044561][ T147] ___might_sleep.cold+0x141/0x16f [ 40.049686][ T147] prepare_alloc_pages+0x32d/0x4f0 [ 40.054818][ T147] ? ret_from_fork+0x1f/0x30 [ 40.059420][ T147] __alloc_pages+0x12f/0x4e0 [ 40.064019][ T147] ? __alloc_pages_slowpath.constprop.0+0x20e0/0x20e0 [ 40.070819][ T147] ? __unwind_start+0x51b/0x800 [ 40.075691][ T147] alloc_pages+0x18c/0x2a0 [ 40.080118][ T147] stack_depot_save+0x39d/0x4e0 [ 40.085007][ T147] save_stack+0x102/0x1d0 [ 40.089348][ T147] ? register_early_stack+0xb0/0xb0 [ 40.094624][ T147] ? __alloc_pages_bulk+0x7ed/0x1600 [ 40.099927][ T147] ? __vmalloc_node_range+0x39d/0x960 [ 40.105313][ T147] ? copy_process+0x8db/0x7040 [ 40.110089][ T147] ? kernel_clone+0xe7/0xa70 [ 40.114778][ T147] ? kernel_thread+0xb5/0xf0 [ 40.119378][ T147] ? call_usermodehelper_exec_work+0x69/0x180 [ 40.125466][ T147] ? process_one_work+0x98d/0x15b0 [ 40.130588][ T147] ? worker_thread+0x658/0x11f0 [ 40.135451][ T147] ? kthread+0x3c0/0x4a0 [ 40.139702][ T147] ? ret_from_fork+0x1f/0x30 [ 40.144301][ T147] ? lock_release+0x6e0/0x6e0 [ 40.148988][ T147] __set_page_owner+0x50/0x290 [ 40.153759][ T147] ? post_alloc_hook+0x145/0x1e0 [ 40.158713][ T147] __alloc_pages_bulk+0x7ed/0x1600 [ 40.163835][ T147] ? __alloc_pages+0x4e0/0x4e0 [ 40.168607][ T147] ? rwlock_bug.part.0+0x90/0x90 [ 40.173562][ T147] ? rcu_read_lock_sched_held+0x3a/0x70 [ 40.179122][ T147] ? trace_kmalloc_node+0x32/0xe0 [ 40.184161][ T147] __vmalloc_node_range+0x39d/0x960 [ 40.189370][ T147] ? vfree_atomic+0xe0/0xe0 [ 40.193880][ T147] ? rcu_read_lock_sched_held+0x3a/0x70 [ 40.199440][ T147] ? kernel_clone+0xe7/0xa70 [ 40.204045][ T147] copy_process+0x8db/0x7040 [ 40.208643][ T147] ? kernel_clone+0xe7/0xa70 [ 40.213250][ T147] ? mark_lock+0xef/0x17b0 [ 40.217680][ T147] ? mark_lock+0xef/0x17b0 [ 40.222143][ T147] ? lock_chain_count+0x20/0x20 [ 40.227002][ T147] ? __cleanup_sighand+0xb0/0xb0 [ 40.231952][ T147] ? kernel_clone+0xc4/0xa70 [ 40.236553][ T147] kernel_clone+0xe7/0xa70 [ 40.241067][ T147] ? create_io_thread+0xf0/0xf0 [ 40.245932][ T147] ? mark_lock+0xef/0x17b0 [ 40.250361][ T147] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 40.256356][ T147] ? debug_object_deactivate+0x264/0x300 [ 40.262031][ T147] ? lock_chain_count+0x20/0x20 [ 40.266936][ T147] ? umh_complete+0x90/0x90 [ 40.271501][ T147] kernel_thread+0xb5/0xf0 [ 40.275934][ T147] ? __do_sys_clone3+0x2e0/0x2e0 [ 40.280886][ T147] ? umh_complete+0x90/0x90 [ 40.285416][ T147] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 40.291413][ T147] ? _raw_spin_unlock_irq+0x1f/0x30 [ 40.296633][ T147] ? trace_hardirqs_on+0x5b/0x1a0 [ 40.301688][ T147] call_usermodehelper_exec_work+0x69/0x180 [ 40.307634][ T147] process_one_work+0x98d/0x15b0 [ 40.312598][ T147] ? pwq_dec_nr_in_flight+0x320/0x320 [ 40.317988][ T147] ? rwlock_bug.part.0+0x90/0x90 [ 40.322940][ T147] worker_thread+0x658/0x11f0 [ 40.327675][ T147] ? __kthread_parkme+0x126/0x1f0 [ 40.332716][ T147] ? process_one_work+0x15b0/0x15b0 [ 40.337930][ T147] kthread+0x3c0/0x4a0 [ 40.342006][ T147] ? _raw_spin_unlock_irq+0x1f/0x30 [ 40.347216][ T147] ? set_kthread_struct+0x130/0x130 [ 40.352423][ T147] ret_from_fork+0x1f/0x30 [ 48.068677][ T30] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 48.358669][ T30] usb 5-1: too many configurations: 96, using maximum allowed: 8 [ 48.366514][ T2640] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 48.478915][ T7023] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 48.658946][ T2640] usb 4-1: too many configurations: 96, using maximum allowed: 8 [ 48.678753][ T7] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 48.768525][ T7023] usb 6-1: too many configurations: 96, using maximum allowed: 8 [ 48.888666][ T7048] usb 3-1: new high-speed USB device number 2 using dummy_hcd