INFO: task syz-executor.2:3637 blocked for more than 143 seconds. Not tainted 5.16.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.2 state:D stack:20208 pid: 3637 ppid: 1 flags:0x00004004 Call Trace: context_switch kernel/sched/core.c:4986 [inline] __schedule+0x971/0x10e0 kernel/sched/core.c:6296 schedule+0x12b/0x1f0 kernel/sched/core.c:6369 percpu_rwsem_wait+0x3c2/0x580 kernel/locking/percpu-rwsem.c:160 __percpu_down_read+0xcf/0x100 kernel/locking/percpu-rwsem.c:174 percpu_down_read include/linux/percpu-rwsem.h:65 [inline] uprobe_start_dup_mmap+0x117/0x130 kernel/events/uprobes.c:1564 dup_mmap+0xc7/0xfd0 kernel/fork.c:497 dup_mm+0x8c/0x310 kernel/fork.c:1450 copy_mm kernel/fork.c:1502 [inline] copy_process+0x28d7/0x5ca0 kernel/fork.c:2191 kernel_clone+0x22a/0x7e0 kernel/fork.c:2582 __do_sys_clone kernel/fork.c:2699 [inline] __se_sys_clone kernel/fork.c:2683 [inline] __x64_sys_clone+0x245/0x2b0 kernel/fork.c:2683 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7fa23ae1d4ab RSP: 002b:00007ffc274fac40 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa23ae1d4ab RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555556d54400 R10: 0000555556d546d0 R11: 0000000000000246 R12: 0000000000000001 R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffc274fad20 INFO: task syz-executor.4:3639 blocked for more than 143 seconds. Not tainted 5.16.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.4 state:D stack:20240 pid: 3639 ppid: 1 flags:0x00004004 Call Trace: context_switch kernel/sched/core.c:4986 [inline] __schedule+0x971/0x10e0 kernel/sched/core.c:6296 schedule+0x12b/0x1f0 kernel/sched/core.c:6369 percpu_rwsem_wait+0x3c2/0x580 kernel/locking/percpu-rwsem.c:160 __percpu_down_read+0xcf/0x100 kernel/locking/percpu-rwsem.c:174 percpu_down_read include/linux/percpu-rwsem.h:65 [inline] uprobe_start_dup_mmap+0x117/0x130 kernel/events/uprobes.c:1564 dup_mmap+0xc7/0xfd0 kernel/fork.c:497 dup_mm+0x8c/0x310 kernel/fork.c:1450 copy_mm kernel/fork.c:1502 [inline] copy_process+0x28d7/0x5ca0 kernel/fork.c:2191 kernel_clone+0x22a/0x7e0 kernel/fork.c:2582 __do_sys_clone kernel/fork.c:2699 [inline] __se_sys_clone kernel/fork.c:2683 [inline] __x64_sys_clone+0x245/0x2b0 kernel/fork.c:2683 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7f048dd014ab RSP: 002b:00007fff841ceeb0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f048dd014ab RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 RBP: 0000000000000001 R08: 0000000000000000 R09: 00005555568be400 R10: 00005555568be6d0 R11: 0000000000000246 R12: 0000000000000001 R13: 0000000000000000 R14: 0000000000000001 R15: 00007fff841cef90 INFO: task syz-executor.5:3640 blocked for more than 144 seconds. Not tainted 5.16.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.5 state:D stack:19824 pid: 3640 ppid: 1 flags:0x00004004 Call Trace: context_switch kernel/sched/core.c:4986 [inline] __schedule+0x971/0x10e0 kernel/sched/core.c:6296 schedule+0x12b/0x1f0 kernel/sched/core.c:6369 percpu_rwsem_wait+0x3c2/0x580 kernel/locking/percpu-rwsem.c:160 __percpu_down_read+0xcf/0x100 kernel/locking/percpu-rwsem.c:174 percpu_down_read include/linux/percpu-rwsem.h:65 [inline] uprobe_start_dup_mmap+0x117/0x130 kernel/events/uprobes.c:1564 dup_mmap+0xc7/0xfd0 kernel/fork.c:497 dup_mm+0x8c/0x310 kernel/fork.c:1450 copy_mm kernel/fork.c:1502 [inline] copy_process+0x28d7/0x5ca0 kernel/fork.c:2191 kernel_clone+0x22a/0x7e0 kernel/fork.c:2582 __do_sys_clone kernel/fork.c:2699 [inline] __se_sys_clone kernel/fork.c:2683 [inline] __x64_sys_clone+0x245/0x2b0 kernel/fork.c:2683 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7f377dcd24ab RSP: 002b:00007ffd3b122800 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f377dcd24ab RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 RBP: 0000000000000001 R08: 0000000000000000 R09: 000055555719a400 R10: 000055555719a6d0 R11: 0000000000000246 R12: 0000000000000001 R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffd3b1228e0 INFO: task syz-executor.3:13424 blocked for more than 144 seconds. Not tainted 5.16.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.3 state:D stack:24272 pid:13424 ppid: 13361 flags:0x00004002 Call Trace: context_switch kernel/sched/core.c:4986 [inline] __schedule+0x971/0x10e0 kernel/sched/core.c:6296 schedule+0x12b/0x1f0 kernel/sched/core.c:6369 percpu_rwsem_wait+0x3c2/0x580 kernel/locking/percpu-rwsem.c:160 __percpu_down_read+0xcf/0x100 kernel/locking/percpu-rwsem.c:174 percpu_down_read include/linux/percpu-rwsem.h:65 [inline] uprobe_start_dup_mmap+0x117/0x130 kernel/events/uprobes.c:1564 dup_mmap+0xc7/0xfd0 kernel/fork.c:497 dup_mm+0x8c/0x310 kernel/fork.c:1450 copy_mm kernel/fork.c:1502 [inline] copy_process+0x28d7/0x5ca0 kernel/fork.c:2191 kernel_clone+0x22a/0x7e0 kernel/fork.c:2582 __do_sys_fork+0xac/0x110 kernel/fork.c:2645 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7f7962178eb9 RSP: 002b:00007f7960a49168 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 RAX: ffffffffffffffda RBX: 00007f796228c370 RCX: 00007f7962178eb9 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007f79621d308d R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd44a00e0f R14: 00007f7960a49300 R15: 0000000000022000 INFO: task syz-executor.3:13489 blocked for more than 145 seconds. Not tainted 5.16.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.3 state:D stack:24272 pid:13489 ppid: 13434 flags:0x00004002 Call Trace: context_switch kernel/sched/core.c:4986 [inline] __schedule+0x971/0x10e0 kernel/sched/core.c:6296 schedule+0x12b/0x1f0 kernel/sched/core.c:6369 percpu_rwsem_wait+0x3c2/0x580 kernel/locking/percpu-rwsem.c:160 __percpu_down_read+0xcf/0x100 kernel/locking/percpu-rwsem.c:174 percpu_down_read include/linux/percpu-rwsem.h:65 [inline] uprobe_start_dup_mmap+0x117/0x130 kernel/events/uprobes.c:1564 dup_mmap+0xc7/0xfd0 kernel/fork.c:497 dup_mm+0x8c/0x310 kernel/fork.c:1450 copy_mm kernel/fork.c:1502 [inline] copy_process+0x28d7/0x5ca0 kernel/fork.c:2191 kernel_clone+0x22a/0x7e0 kernel/fork.c:2582 __do_sys_fork+0xac/0x110 kernel/fork.c:2645 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7f7962178eb9 RSP: 002b:00007f7960a49168 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 RAX: ffffffffffffffda RBX: 00007f796228c370 RCX: 00007f7962178eb9 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007f79621d308d R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd44a00e0f R14: 00007f7960a49300 R15: 0000000000022000 INFO: task syz-executor.3:13746 blocked for more than 146 seconds. Not tainted 5.16.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.3 state:D stack:24272 pid:13746 ppid: 13514 flags:0x00004002 Call Trace: context_switch kernel/sched/core.c:4986 [inline] __schedule+0x971/0x10e0 kernel/sched/core.c:6296 schedule+0x12b/0x1f0 kernel/sched/core.c:6369 percpu_rwsem_wait+0x3c2/0x580 kernel/locking/percpu-rwsem.c:160 __percpu_down_read+0xcf/0x100 kernel/locking/percpu-rwsem.c:174 percpu_down_read include/linux/percpu-rwsem.h:65 [inline] uprobe_start_dup_mmap+0x117/0x130 kernel/events/uprobes.c:1564 dup_mmap+0xc7/0xfd0 kernel/fork.c:497 dup_mm+0x8c/0x310 kernel/fork.c:1450 copy_mm kernel/fork.c:1502 [inline] copy_process+0x28d7/0x5ca0 kernel/fork.c:2191 kernel_clone+0x22a/0x7e0 kernel/fork.c:2582 __do_sys_fork+0xac/0x110 kernel/fork.c:2645 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7f7962178eb9 RSP: 002b:00007f7960a49168 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 RAX: ffffffffffffffda RBX: 00007f796228c370 RCX: 00007f7962178eb9 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007f79621d308d R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd44a00e0f R14: 00007f7960a49300 R15: 0000000000022000 INFO: task syz-executor.3:13756 blocked for more than 146 seconds. Not tainted 5.16.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.3 state:D stack:24272 pid:13756 ppid: 13548 flags:0x00004002 Call Trace: context_switch kernel/sched/core.c:4986 [inline] __schedule+0x971/0x10e0 kernel/sched/core.c:6296 schedule+0x12b/0x1f0 kernel/sched/core.c:6369 percpu_rwsem_wait+0x3c2/0x580 kernel/locking/percpu-rwsem.c:160 __percpu_down_read+0xcf/0x100 kernel/locking/percpu-rwsem.c:174 percpu_down_read include/linux/percpu-rwsem.h:65 [inline] uprobe_start_dup_mmap+0x117/0x130 kernel/events/uprobes.c:1564 dup_mmap+0xc7/0xfd0 kernel/fork.c:497 dup_mm+0x8c/0x310 kernel/fork.c:1450 copy_mm kernel/fork.c:1502 [inline] copy_process+0x28d7/0x5ca0 kernel/fork.c:2191 kernel_clone+0x22a/0x7e0 kernel/fork.c:2582 __do_sys_fork+0xac/0x110 kernel/fork.c:2645 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7f7962178eb9 RSP: 002b:00007f7960a49168 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 RAX: ffffffffffffffda RBX: 00007f796228c370 RCX: 00007f7962178eb9 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007f79621d308d R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd44a00e0f R14: 00007f7960a49300 R15: 0000000000022000 INFO: task syz-executor.3:13925 blocked for more than 147 seconds. Not tainted 5.16.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.3 state:D stack:24272 pid:13925 ppid: 13442 flags:0x00004000 Call Trace: context_switch kernel/sched/core.c:4986 [inline] __schedule+0x971/0x10e0 kernel/sched/core.c:6296 schedule+0x12b/0x1f0 kernel/sched/core.c:6369 percpu_rwsem_wait+0x3c2/0x580 kernel/locking/percpu-rwsem.c:160 __percpu_down_read+0xcf/0x100 kernel/locking/percpu-rwsem.c:174 percpu_down_read include/linux/percpu-rwsem.h:65 [inline] uprobe_start_dup_mmap+0x117/0x130 kernel/events/uprobes.c:1564 dup_mmap+0xc7/0xfd0 kernel/fork.c:497 dup_mm+0x8c/0x310 kernel/fork.c:1450 copy_mm kernel/fork.c:1502 [inline] copy_process+0x28d7/0x5ca0 kernel/fork.c:2191 kernel_clone+0x22a/0x7e0 kernel/fork.c:2582 __do_sys_fork+0xac/0x110 kernel/fork.c:2645 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7f7962178eb9 RSP: 002b:00007f7960a49168 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 RAX: ffffffffffffffda RBX: 00007f796228c370 RCX: 00007f7962178eb9 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007f79621d308d R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd44a00e0f R14: 00007f7960a49300 R15: 0000000000022000 INFO: task syz-executor.3:14565 blocked for more than 148 seconds. Not tainted 5.16.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.3 state:D stack:25424 pid:14565 ppid: 13925 flags:0x00004002 Call Trace: context_switch kernel/sched/core.c:4986 [inline] __schedule+0x971/0x10e0 kernel/sched/core.c:6296 schedule+0x12b/0x1f0 kernel/sched/core.c:6369 percpu_rwsem_wait+0x3c2/0x580 kernel/locking/percpu-rwsem.c:160 __percpu_down_read+0xcf/0x100 kernel/locking/percpu-rwsem.c:174 percpu_down_read include/linux/percpu-rwsem.h:65 [inline] uprobe_start_dup_mmap+0x117/0x130 kernel/events/uprobes.c:1564 dup_mmap+0xc7/0xfd0 kernel/fork.c:497 dup_mm+0x8c/0x310 kernel/fork.c:1450 copy_mm kernel/fork.c:1502 [inline] copy_process+0x28d7/0x5ca0 kernel/fork.c:2191 kernel_clone+0x22a/0x7e0 kernel/fork.c:2582 __do_sys_fork+0xac/0x110 kernel/fork.c:2645 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7f7962178eb9 RSP: 002b:00007f7960a49168 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 RAX: ffffffffffffffda RBX: 00007f796228c370 RCX: 00007f7962178eb9 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 00007f79621d308d R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd44a00e0f R14: 00007f7960a49300 R15: 0000000000022000 INFO: task syz-executor.1:14569 blocked for more than 149 seconds. Not tainted 5.16.0-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.1 state:D stack:25712 pid:14569 ppid: 3605 flags:0x00004004 Call Trace: context_switch kernel/sched/core.c:4986 [inline] __schedule+0x971/0x10e0 kernel/sched/core.c:6296 schedule+0x12b/0x1f0 kernel/sched/core.c:6369 percpu_rwsem_wait+0x3c2/0x580 kernel/locking/percpu-rwsem.c:160 __percpu_down_read+0xcf/0x100 kernel/locking/percpu-rwsem.c:174 percpu_down_read include/linux/percpu-rwsem.h:65 [inline] uprobe_start_dup_mmap+0x117/0x130 kernel/events/uprobes.c:1564 dup_mmap+0xc7/0xfd0 kernel/fork.c:497 dup_mm+0x8c/0x310 kernel/fork.c:1450 copy_mm kernel/fork.c:1502 [inline] copy_process+0x28d7/0x5ca0 kernel/fork.c:2191 kernel_clone+0x22a/0x7e0 kernel/fork.c:2582 __do_sys_clone kernel/fork.c:2699 [inline] __se_sys_clone kernel/fork.c:2683 [inline] __x64_sys_clone+0x245/0x2b0 kernel/fork.c:2683 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x44/0xd0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7fce2f8bf4ab RSP: 002b:00007ffe06c52b30 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 RAX: ffffffffffffffda RBX: 00007ffe06c53188 RCX: 00007fce2f8bf4ab RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 RBP: 0000000000000000 R08: 0000000000000000 R09: 0000555556d1b400 R10: 0000555556d1b6d0 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffe06c52c20 R14: 00007fce2f9d44d8 R15: 0000000000000006 Showing all locks held in the system: 1 lock held by khungtaskd/26: #0: ffffffff8cb1e340 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x0/0x30 4 locks held by oom_reaper/27: 1 lock held by udevd/2974: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by dhcpcd/3185: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 2 locks held by getty/3285: #0: ffff888022564098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70 drivers/tty/tty_ldisc.c:252 #1: ffffc90002b962e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6c5/0x1c60 drivers/tty/n_tty.c:2113 1 lock held by syz-executor.2/3637: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/3638: #0: ffffffff8cbad490 (dup_mmap_sem ){++++}-{0:0} , at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.4/3639: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.5/3640: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.0/9701: #0: ffffffff8cb6d568 (event_mutex){+.+.}-{3:3}, at: perf_trace_destroy+0x27/0xb0 kernel/trace/trace_event_perf.c:241 1 lock held by syz-executor.0/9725: #0: ffffffff8cb6d568 (event_mutex){+.+.}-{3:3}, at: perf_trace_destroy+0x27/0xb0 kernel/trace/trace_event_perf.c:241 1 lock held by syz-executor.3/13360: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13361: 3 locks held by syz-executor.3/13363: 3 locks held by syz-executor.3/13364: 3 locks held by syz-executor.3/13371: 1 lock held by syz-executor.3/13374: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13376: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13378: 1 lock held by syz-executor.3/13384: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13394: 3 locks held by syz-executor.3/13395: 3 locks held by syz-executor.3/13396: 1 lock held by syz-executor.3/13398: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13399: 3 locks held by syz-executor.3/13400: 3 locks held by syz-executor.3/13402: 1 lock held by syz-executor.3/13403: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13404: 4 locks held by syz-executor.3/13405: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 #1: ffff88807dcf6a28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807dcf6a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap+0xde/0xfd0 kernel/fork.c:498 #2: ffff888095e14e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095e14e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap+0x128/0xfd0 kernel/fork.c:507 #3: ffffffff8cbb4708 (oom_lock){+.+.}-{3:3}, at: mem_cgroup_out_of_memory+0xf1/0x3b0 mm/memcontrol.c:1600 3 locks held by syz-executor.3/13413: 1 lock held by syz-executor.3/13414: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13415: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13417: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13418: 1 lock held by syz-executor.3/13419: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13420: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13421: 1 lock held by syz-executor.3/13422: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13423: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13424: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13425: 3 locks held by syz-executor.3/13426: 3 locks held by syz-executor.3/13427: 3 locks held by syz-executor.3/13428: 3 locks held by syz-executor.3/13429: 3 locks held by syz-executor.3/13430: 3 locks held by syz-executor.3/13431: 3 locks held by syz-executor.3/13432: 1 lock held by syz-executor.3/13433: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13434: 1 lock held by syz-executor.3/13437: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13438: 3 locks held by syz-executor.3/13439: 1 lock held by syz-executor.3/13440: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13441: 3 locks held by syz-executor.3/13442: 1 lock held by syz-executor.3/13444: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13445: 3 locks held by syz-executor.3/13446: 1 lock held by syz-executor.3/13447: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13449: 3 locks held by syz-executor.3/13450: 3 locks held by syz-executor.3/13451: 1 lock held by syz-executor.3/13453: 1 lock held by syz-executor.3/13454: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13456: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 4 locks held by syz-executor.3/13457: 1 lock held by syz-executor.3/13458: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13459: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13460: 3 locks held by syz-executor.3/13461: 3 locks held by syz-executor.3/13462: 3 locks held by syz-executor.3/13463: 3 locks held by syz-executor.3/13464: 3 locks held by syz-executor.3/13465: 3 locks held by syz-executor.3/13466: 3 locks held by syz-executor.3/13467: 1 lock held by syz-executor.3/13468: 3 locks held by syz-executor.3/13469: 3 locks held by syz-executor.3/13470: 3 locks held by syz-executor.3/13471: 3 locks held by syz-executor.3/13472: 3 locks held by syz-executor.3/13473: 3 locks held by syz-executor.3/13474: 3 locks held by syz-executor.3/13475: 1 lock held by syz-executor.3/13476: 3 locks held by syz-executor.3/13477: 1 lock held by syz-executor.3/13478: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13479: 1 lock held by syz-executor.3/13480: 1 lock held by syz-executor.3/13482: 3 locks held by syz-executor.3/13483: 1 lock held by syz-executor.3/13484: 3 locks held by syz-executor.3/13485: 3 locks held by syz-executor.3/13487: 3 locks held by syz-executor.3/13488: 1 lock held by syz-executor.3/13489: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13490: 3 locks held by syz-executor.3/13492: 3 locks held by syz-executor.3/13493: 3 locks held by syz-executor.3/13495: 3 locks held by syz-executor.3/13496: 3 locks held by syz-executor.3/13497: 3 locks held by syz-executor.3/13498: 3 locks held by syz-executor.3/13499: 3 locks held by syz-executor.3/13500: 3 locks held by syz-executor.3/13502: 3 locks held by syz-executor.3/13503: 3 locks held by syz-executor.3/13504: 1 lock held by syz-executor.3/13505: 3 locks held by syz-executor.3/13506: 3 locks held by syz-executor.3/13508: 1 lock held by syz-executor.3/13509: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13510: 1 lock held by syz-executor.3/13512: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13513: 1 lock held by syz-executor.3/13514: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13515: 3 locks held by syz-executor.3/13516: 1 lock held by syz-executor.3/13517: 1 lock held by syz-executor.3/13518: 1 lock held by syz-executor.3/13519: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13520: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13522: 3 locks held by syz-executor.3/13523: 1 lock held by syz-executor.3/13525: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13526: 1 lock held by syz-executor.3/13527: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13528: 4 locks held by syz-executor.3/13529: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 #1: ffff888079425528 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888079425528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap+0xde/0xfd0 kernel/fork.c:498 #2: ffff88808a0ddc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808a0ddc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap+0x128/0xfd0 kernel/fork.c:507 #3: ffffffff8cbb4708 (oom_lock){+.+.}-{3:3}, at: mem_cgroup_out_of_memory+0xf1/0x3b0 mm/memcontrol.c:1600 1 lock held by syz-executor.3/13532: 3 locks held by syz-executor.3/13533: 3 locks held by syz-executor.3/13534: 3 locks held by syz-executor.3/13535: 3 locks held by syz-executor.3/13537: 3 locks held by syz-executor.3/13539: 3 locks held by syz-executor.3/13541: 1 lock held by syz-executor.3/13544: 3 locks held by syz-executor.3/13546: 1 lock held by syz-executor.3/13548: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13549: 3 locks held by syz-executor.3/13552: 3 locks held by syz-executor.3/13553: 3 locks held by syz-executor.3/13554: 3 locks held by syz-executor.3/13555: 3 locks held by syz-executor.3/13556: 3 locks held by syz-executor.3/13557: 3 locks held by syz-executor.3/13558: 1 lock held by syz-executor.3/13560: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13561: 1 lock held by syz-executor.3/13562: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13563: 3 locks held by syz-executor.3/13565: 1 lock held by syz-executor.3/13566: 3 locks held by syz-executor.3/13567: 1 lock held by syz-executor.3/13568: 3 locks held by syz-executor.3/13570: 1 lock held by syz-executor.3/13571: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13572: 3 locks held by syz-executor.3/13575: 3 locks held by syz-executor.3/13577: 3 locks held by syz-executor.3/13578: 3 locks held by syz-executor.3/13579: 3 locks held by syz-executor.3/13580: 1 lock held by syz-executor.3/13582: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13584: 3 locks held by syz-executor.3/13585: 3 locks held by syz-executor.3/13586: 5 locks held by syz-executor.3/13587: 3 locks held by syz-executor.3/13588: 3 locks held by syz-executor.3/13590: 4 locks held by syz-executor.3/13591: 3 locks held by syz-executor.3/13593: 1 lock held by syz-executor.3/13594: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13595: 3 locks held by syz-executor.3/13596: 3 locks held by syz-executor.3/13598: 3 locks held by syz-executor.3/13599: 1 lock held by syz-executor.3/13600: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13601: 1 lock held by syz-executor.3/13602: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13604: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13605: 1 lock held by syz-executor.3/13607: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13608: 1 lock held by syz-executor.3/13609: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13610: 3 locks held by syz-executor.3/13612: 1 lock held by syz-executor.3/13614: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13616: 3 locks held by syz-executor.3/13618: 3 locks held by syz-executor.3/13619: 3 locks held by syz-executor.3/13620: 3 locks held by syz-executor.3/13622: 1 lock held by syz-executor.3/13623: 1 lock held by syz-executor.3/13624: 3 locks held by syz-executor.3/13626: 1 lock held by syz-executor.3/13627: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13631: 3 locks held by syz-executor.3/13632: 3 locks held by syz-executor.3/13633: 3 locks held by syz-executor.3/13634: 3 locks held by syz-executor.3/13635: 3 locks held by syz-executor.3/13636: 3 locks held by syz-executor.3/13637: 3 locks held by syz-executor.3/13638: 3 locks held by syz-executor.3/13639: 1 lock held by syz-executor.3/13640: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13641: 3 locks held by syz-executor.3/13642: 1 lock held by syz-executor.3/13644: 1 lock held by syz-executor.3/13645: 3 locks held by syz-executor.3/13646: 3 locks held by syz-executor.3/13647: 3 locks held by syz-executor.3/13648: 1 lock held by syz-executor.3/13649: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13650: 3 locks held by syz-executor.3/13651: 4 locks held by syz-executor.3/13653: 3 locks held by syz-executor.3/13652: 3 locks held by syz-executor.3/13654: 3 locks held by syz-executor.3/13655: 3 locks held by syz-executor.3/13657: 1 lock held by syz-executor.3/13658: 1 lock held by syz-executor.3/13659: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 4 locks held by syz-executor.3/13660: 3 locks held by syz-executor.3/13661: 3 locks held by syz-executor.3/13663: 3 locks held by syz-executor.3/13666: 1 lock held by syz-executor.3/13667: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13670: 1 lock held by syz-executor.3/13671: 1 lock held by syz-executor.3/13672: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 1 lock held by syz-executor.3/13673: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13674: 3 locks held by syz-executor.3/13675: 3 locks held by syz-executor.3/13676: 1 lock held by syz-executor.3/13677: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13678: 1 lock held by syz-executor.3/13679: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13681: 3 locks held by syz-executor.3/13682: 1 lock held by syz-executor.3/13683: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13684: 3 locks held by syz-executor.3/13685: 3 locks held by syz-executor.3/13686: 3 locks held by syz-executor.3/13687: 1 lock held by syz-executor.3/13688: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13689: 2 locks held by syz-executor.3/13690: 3 locks held by syz-executor.3/13691: 3 locks held by syz-executor.3/13692: 1 lock held by syz-executor.3/13693: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13694: 1 lock held by syz-executor.3/13696: #0: ffffffff8cbad490 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap+0xc7/0xfd0 kernel/fork.c:497 3 locks held by syz-executor.3/13701: 3 locks held by syz-executor.3/13702: 3 locks held by syz-executor.3/13703: 3 locks held by syz-executor.3/13704: 3 locks held by syz-executor.3/13705: 1 lock held by syz-executor.3/13708: 3 locks held by syz-executor.3/13709: 3 locks held by syz-executor.3/13710: 1 lock held by syz-executor.3/13711: 3 locks held by syz-executor.3/13713: