SELinux: Context sys is not valid (left unmapped). INFO: task syz-executor5:6542 blocked for more than 140 seconds. Not tainted 4.9.133+ #52 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. syz-executor5 D28824 6542 2122 0x80000000 ffff8801c9cbdf00 ffff88019e22cd00 ffff88019e229080 ffff88019e170000 ffff8801db721018 ffff8801c44b7b10 ffffffff827f3792 ffff8801c44b7ae8 ffffffff81206a57 0000000000000000 00ff8801c9cbe7a8 ffff8801db7218f0 Call Trace: [] schedule+0x7f/0x1b0 kernel/sched/core.c:3553 [] rwsem_down_read_failed+0x26c/0x400 kernel/locking/rwsem-xadd.c:260 [] call_rwsem_down_read_failed+0x18/0x30 arch/x86/lib/rwsem.S:94 [] __down_read arch/x86/include/asm/rwsem.h:65 [inline] [] down_read+0x52/0xb0 kernel/locking/rwsem.c:24 [] exit_mm kernel/exit.c:480 [inline] [] do_exit+0x3c1/0x29d0 kernel/exit.c:820 [] do_group_exit+0x111/0x300 kernel/exit.c:937 [] SYSC_exit_group kernel/exit.c:948 [inline] [] SyS_exit_group+0x1d/0x20 kernel/exit.c:946 [] do_syscall_64+0x19f/0x550 arch/x86/entry/common.c:285 [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb Showing all locks held in the system: 2 locks held by khungtaskd/24: #0: (rcu_read_lock){......}, at: [] check_hung_uninterruptible_tasks kernel/hung_task.c:168 [inline] #0: (rcu_read_lock){......}, at: [] watchdog+0x11c/0xa20 kernel/hung_task.c:239 #1: (tasklist_lock){.+.+..}, at: [] debug_show_all_locks+0x79/0x218 kernel/locking/lockdep.c:4336 2 locks held by getty/2029: #0: (&tty->ldisc_sem){++++++}, at: [] ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:367 #1: (&ldata->atomic_read_lock){+.+...}, at: [] n_tty_read+0x202/0x16e0 drivers/tty/n_tty.c:2142 1 lock held by syz-executor5/6542: #0: (&mm->mmap_sem){++++++}, at: [] exit_mm kernel/exit.c:480 [inline] #0: (&mm->mmap_sem){++++++}, at: [] do_exit+0x3c1/0x29d0 kernel/exit.c:820 1 lock held by syz-executor5/6548: #0: (&mm->mmap_sem){++++++}, at: [] exit_mm kernel/exit.c:480 [inline] #0: (&mm->mmap_sem){++++++}, at: [] do_exit+0x3c1/0x29d0 kernel/exit.c:820 1 lock held by syz-executor5/6574: #0: (&mm->mmap_sem){++++++}, at: [] exit_mm kernel/exit.c:480 [inline] #0: (&mm->mmap_sem){++++++}, at: [] do_exit+0x3c1/0x29d0 kernel/exit.c:820 1 lock held by syz-executor5/6587: #0: (&mm->mmap_sem){++++++}, at: [] exit_mm kernel/exit.c:480 [inline] #0: (&mm->mmap_sem){++++++}, at: [] do_exit+0x3c1/0x29d0 kernel/exit.c:820 ============================================= NMI backtrace for cpu 0 CPU: 0 PID: 24 Comm: khungtaskd Not tainted 4.9.133+ #52 ffff8801d9907d08 ffffffff81b37069 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ffffffff81098330 ffff8801d9907d40 ffffffff81b42179 0000000000000000 0000000000000000 0000000000000003 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] nmi_cpu_backtrace.cold.0+0x48/0x87 lib/nmi_backtrace.c:99 [] nmi_trigger_cpumask_backtrace+0x12c/0x151 lib/nmi_backtrace.c:60 [] arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:37 [] trigger_all_cpu_backtrace include/linux/nmi.h:58 [inline] [] check_hung_task kernel/hung_task.c:125 [inline] [] check_hung_uninterruptible_tasks kernel/hung_task.c:182 [inline] [] watchdog+0x6ad/0xa20 kernel/hung_task.c:239 [] kthread+0x26d/0x300 kernel/kthread.c:211 [] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373 Sending NMI from CPU 0 to CPUs 1: NMI backtrace for cpu 1 CPU: 1 PID: 6590 Comm: syz-executor5 Not tainted 4.9.133+ #52 task: ffff88019e34df00 task.stack: ffff88019e910000 RIP: 0010:[] c [] iterate_chain_key kernel/locking/lockdep.c:317 [inline] RIP: 0010:[] c [] __lock_acquire+0x7f5/0x4a10 kernel/locking/lockdep.c:3340 RSP: 0018:ffff88019e917900 EFLAGS: 00000002 RAX: 000000001b9d1058 RBX: ffff88019e34e7d8 RCX: 0000000062daa79d RDX: 0000000049fe184e RSI: ffff88019e34e7d8 RDI: 0000000000000000 RBP: ffff88019e917ab0 R08: ffff88019e34e7f8 R09: 0000000000000001 R10: ffff88019e34df00 R11: 0000000000000000 R12: 0000000059a603d3 R13: 0000000000000000 R14: 00000000a61e3c64 R15: 0000000010581b9d FS: 00007efc4eeaf700(0000) GS:ffff8801db700000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007fa15b090140 CR3: 00000001d48e6000 CR4: 00000000001606b0 DR0: 0000000020000000 DR1: 0000000020000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600 Stack: ffff88019e34e7b0c ffffed0033c69cf5c ffff88019e34df00c 0000000000000001c ffff88019e34e7b0c ffffed0033c69cf5c ffff88019e34df00c dffffc0000000000c ffff88019e917990c ffffffff81206a57c ffffffff83ccbce0c ffff88019e34e7a8c Call Trace: [] lock_acquire+0x130/0x3e0 kernel/locking/lockdep.c:3756 [] __mutex_lock_common kernel/locking/mutex.c:521 [inline] [] mutex_lock_nested+0xc0/0x900 kernel/locking/mutex.c:621 [] perf_mmap+0x4f7/0x1430 kernel/events/core.c:5265 [] mmap_region+0x80c/0xf90 mm/mmap.c:1726 [] do_mmap+0x53d/0xbb0 mm/mmap.c:1505 [] do_mmap_pgoff include/linux/mm.h:2032 [inline] [] vm_mmap_pgoff+0x168/0x1b0 mm/util.c:329 [] SYSC_mmap_pgoff mm/mmap.c:1555 [inline] [] SyS_mmap_pgoff+0xfe/0x1b0 mm/mmap.c:1513 [] SYSC_mmap arch/x86/kernel/sys_x86_64.c:96 [inline] [] SyS_mmap+0x16/0x20 arch/x86/kernel/sys_x86_64.c:87 [] do_syscall_64+0x19f/0x550 arch/x86/entry/common.c:285 [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb Code: cc6 c06 c48 c8b cbc c24 c98 c00 c00 c00 c41 c31 cce c44 c89 cf0 c45 c29 cf7 c41 c01 cd6 cc1 cc0 c08 c44 c31 cf8 c29 cc2 c41 c89 cc7 c41 cc1 cc7 c10 c41 c89 cd4 c45 c31 cfc c<46> c8d c3c c30 c44 c89 ce0 c45 c29 ce6 cc1 cc8 c0d c44 c89 cfa c45 c01 ce7 c41 c31 c