INFO: task syz-executor.3:25159 blocked for more than 143 seconds. Not tainted 5.16.0-rc4-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz-executor.3 state:D stack:27520 pid:25159 ppid: 3631 flags:0x00004004 Call Trace: context_switch kernel/sched/core.c:4972 [inline] __schedule+0xa9a/0x4940 kernel/sched/core.c:6253 schedule+0xd2/0x260 kernel/sched/core.c:6326 rwsem_down_read_slowpath+0x589/0xa70 kernel/locking/rwsem.c:1041 __down_read_common kernel/locking/rwsem.c:1223 [inline] __down_read kernel/locking/rwsem.c:1232 [inline] down_read+0xe2/0x440 kernel/locking/rwsem.c:1472 mmap_read_lock include/linux/mmap_lock.h:117 [inline] exit_mm kernel/exit.c:483 [inline] do_exit+0xa0a/0x2b40 kernel/exit.c:819 do_group_exit+0x125/0x310 kernel/exit.c:929 get_signal+0x47d/0x2220 kernel/signal.c:2852 arch_do_signal_or_restart+0x2a9/0x1c40 arch/x86/kernel/signal.c:868 handle_signal_work kernel/entry/common.c:148 [inline] exit_to_user_mode_loop kernel/entry/common.c:172 [inline] exit_to_user_mode_prepare+0x17d/0x290 kernel/entry/common.c:207 __syscall_exit_to_user_mode_work kernel/entry/common.c:289 [inline] syscall_exit_to_user_mode+0x19/0x60 kernel/entry/common.c:300 do_syscall_64+0x42/0xb0 arch/x86/entry/common.c:86 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7f1d04e59e99 RSP: 002b:00007f1d037cf168 EFLAGS: 00000246 ORIG_RAX: 000000000000013d RAX: fffffffffffffe00 RBX: 00007f1d04f6cf60 RCX: 00007f1d04e59e99 RDX: 0000000020000040 RSI: 000000000000000a RDI: 0000000000000001 RBP: 00007f1d04eb4031 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffcece4ebaf R14: 00007f1d037cf300 R15: 0000000000022000 Showing all locks held in the system: 1 lock held by khungtaskd/27: #0: ffffffff8bb83d20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 kernel/locking/lockdep.c:6458 2 locks held by getty/3287: #0: ffff88807e7e3098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:252 #1: ffffc90002b962e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xcf0/0x1230 drivers/tty/n_tty.c:2113 3 locks held by syz-executor.3/24663: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888075116a28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888075116a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888075116a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c3d1d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c3d1d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c3d1d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24665: #0: ffff888075117828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_trylock include/linux/mmap_lock.h:136 [inline] #0: ffff888075117828 (&mm->mmap_lock#2){++++}-{3:3}, at: do_user_addr_fault+0x285/0x11c0 arch/x86/mm/fault.c:1338 3 locks held by syz-executor.3/24666: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888075112b28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888075112b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888075112b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888092ed2b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888092ed2b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888092ed2b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24667: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888075113228 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888075113228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888075113228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801cf18f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801cf18f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801cf18f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24674: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888075115528 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888075115528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888075115528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880885b4028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880885b4028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880885b4028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24675: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d9e4028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d9e4028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d9e4028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c046328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c046328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c046328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24676: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880225b5c28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880225b5c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880225b5c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888086873928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888086873928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888086873928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24677: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801f1adc28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801f1adc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801f1adc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808f6df128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808f6df128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808f6df128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24678: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d9e3928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d9e3928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d9e3928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888093078128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888093078128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888093078128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24679: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888075110f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888075110f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888075110f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c043228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c043228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c043228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24681: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801f1ae328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801f1ae328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801f1ae328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888089b88828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888089b88828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888089b88828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24682: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801addea28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801addea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801addea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88802fa18828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88802fa18828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88802fa18828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24683: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807de54728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807de54728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807de54728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880837edc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880837edc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880837edc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24684: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801f1a8828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801f1a8828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801f1a8828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c29b228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c29b228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c29b228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24685: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801f1a8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801f1a8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801f1a8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808d85f828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808d85f828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808d85f828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24686: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807de51d28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807de51d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807de51d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888093cbce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888093cbce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888093cbce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24687: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801add8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801add8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801add8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88807cf8ab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88807cf8ab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88807cf8ab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24688: #0: ffff888010e6ce28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_trylock include/linux/mmap_lock.h:136 [inline] #0: ffff888010e6ce28 (&mm->mmap_lock#2){++++}-{3:3}, at: do_user_addr_fault+0x285/0x11c0 arch/x86/mm/fault.c:1338 1 lock held by syz-executor.3/24689: #0: ffff888027ac00e0 (&type->s_umount_key#23/1){+.+.}-{3:3}, at: alloc_super+0x1dd/0xac0 fs/super.c:229 3 locks held by syz-executor.3/24690: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880863b4028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880863b4028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880863b4028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808a883228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808a883228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808a883228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24691: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888010e68828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888010e68828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888010e68828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888095673228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095673228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888095673228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24692: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801f1a9628 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801f1a9628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801f1a9628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801be1ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801be1ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801be1ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24695: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888010e6b228 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888010e6b228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888010e6b228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c299628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c299628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c299628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24697: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880863b7828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880863b7828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880863b7828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801be1c028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801be1c028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801be1c028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24698: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888010e6ab28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888010e6ab28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888010e6ab28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88809462f828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88809462f828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88809462f828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24699: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880863b2428 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880863b2428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880863b2428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801bb98f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801bb98f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801bb98f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24700: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880863b1628 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880863b1628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880863b1628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801be19d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801be19d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801be19d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24701: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888010e68f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888010e68f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888010e68f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880974b3928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880974b3928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880974b3928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24702: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880863b0f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880863b0f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880863b0f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888088661628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888088661628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888088661628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24703: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888010e6d528 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888010e6d528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888010e6d528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880974b1628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880974b1628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880974b1628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24705: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880863b2b28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880863b2b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880863b2b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888075790f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888075790f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888075790f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24706: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888010e6f128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888010e6f128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888010e6f128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808f58a428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808f58a428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808f58a428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24707: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029872428 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029872428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029872428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808f589d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808f589d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808f589d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24709: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880863b7128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880863b7128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880863b7128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88809307e328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88809307e328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88809307e328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24710: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807cd35c28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807cd35c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807cd35c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808dadf128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808dadf128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808dadf128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24712: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801cdbab28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801cdbab28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801cdbab28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888084de0f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888084de0f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888084de0f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24713: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880863b5528 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880863b5528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880863b5528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801be18128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801be18128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801be18128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24714: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807acbb928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807acbb928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807acbb928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880796fea28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880796fea28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880796fea28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24716: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801f1ad528 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801f1ad528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801f1ad528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c834e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c834e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c834e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24717: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880863b1d28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880863b1d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880863b1d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c298f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c298f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c298f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24720: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880863b6328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880863b6328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880863b6328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880974b5c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880974b5c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880974b5c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24721: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888010e6dc28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888010e6dc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888010e6dc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880974b2428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880974b2428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880974b2428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24722: #0: ffff88807cd34028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_trylock include/linux/mmap_lock.h:136 [inline] #0: ffff88807cd34028 (&mm->mmap_lock#2){++++}-{3:3}, at: do_user_addr_fault+0x285/0x11c0 arch/x86/mm/fault.c:1338 3 locks held by syz-executor.3/24719: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880863b3928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880863b3928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880863b3928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888095670128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095670128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888095670128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24723: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888010e6e328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888010e6e328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888010e6e328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808a880f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808a880f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808a880f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24724: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801f1ac028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801f1ac028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801f1ac028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888089864e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888089864e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888089864e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24727: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029876a28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029876a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029876a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808f6dc728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808f6dc728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808f6dc728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24728: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807cd32b28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807cd32b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807cd32b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c834728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c834728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c834728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24729: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807cd31d28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807cd31d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807cd31d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808a887828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808a887828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808a887828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24730: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880863b4e28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880863b4e28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880863b4e28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888095674028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095674028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888095674028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24732: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807acbdc28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807acbdc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807acbdc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888095670828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095670828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888095670828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24731: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880863b0828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880863b0828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880863b0828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888075796a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888075796a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888075796a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24735: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801f1ac728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801f1ac728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801f1ac728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808cde4e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808cde4e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808cde4e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24736: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807acb8828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807acb8828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807acb8828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888089865528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888089865528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888089865528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24737: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880863b5c28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880863b5c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880863b5c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808f6db928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808f6db928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808f6db928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24739: #0: ffff888065ef8828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_trylock include/linux/mmap_lock.h:136 [inline] #0: ffff888065ef8828 (&mm->mmap_lock#2){++++}-{3:3}, at: do_user_addr_fault+0x285/0x11c0 arch/x86/mm/fault.c:1338 3 locks held by syz-executor.3/24740: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888065eff828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888065eff828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888065eff828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c045528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c045528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c045528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24742: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888065ef8128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888065ef8128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888065ef8128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808ece8828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808ece8828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808ece8828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24743: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d290128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d290128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d290128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808f6dce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808f6dce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808f6dce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24745: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f2428 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f2428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f2428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888075794028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888075794028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888075794028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24746: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d290828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d290828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d290828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808817ea28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808817ea28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808817ea28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24748: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880863b0128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880863b0128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880863b0128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808bffdc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808bffdc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808bffdc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24749: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888065ef9d28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888065ef9d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888065ef9d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888088660828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888088660828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888088660828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24751: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888065efb228 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888065efb228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888065efb228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888084de0828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888084de0828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888084de0828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24752: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888065efb928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888065efb928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888065efb928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808a882428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808a882428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808a882428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24753: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d291d28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d291d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d291d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880904e2b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880904e2b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880904e2b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24754: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d9e6328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d9e6328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d9e6328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888095672428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095672428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888095672428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24755: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888065efa428 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888065efa428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888065efa428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808f6df828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808f6df828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808f6df828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24756: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d291628 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d291628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d291628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880974b4728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880974b4728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880974b4728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24758: #0: ffff888065efab28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_trylock include/linux/mmap_lock.h:136 [inline] #0: ffff888065efab28 (&mm->mmap_lock#2){++++}-{3:3}, at: do_user_addr_fault+0x285/0x11c0 arch/x86/mm/fault.c:1338 3 locks held by syz-executor.3/24759: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d295528 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d295528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d295528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880842b1d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880842b1d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880842b1d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24760: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d297828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d297828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d297828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880837ef128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880837ef128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880837ef128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24761: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8e8128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8e8128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8e8128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808f6db228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808f6db228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808f6db228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24762: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888065ef8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888065ef8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888065ef8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c298128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c298128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c298128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24763: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d290f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d290f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d290f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801be1ea28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801be1ea28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801be1ea28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24764: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888065efe328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888065efe328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888065efe328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880796fdc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880796fdc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880796fdc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24765: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a6ea28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a6ea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a6ea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808bffc728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808bffc728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808bffc728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24766: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888065efdc28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888065efdc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888065efdc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c835528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c835528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c835528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24768: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888065efc728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888065efc728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888065efc728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c041d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c041d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c041d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24769: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a6f128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a6f128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a6f128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888089866a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888089866a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888089866a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24770: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d295c28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d295c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d295c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880842b7828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880842b7828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880842b7828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24771: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d296328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d296328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d296328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888088178828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888088178828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888088178828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24772: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d294028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d294028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d294028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808bffa428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808bffa428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808bffa428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24767: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d294728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d294728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d294728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888075791628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888075791628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888075791628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24773: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d9e4728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d9e4728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d9e4728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c3d6328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c3d6328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c3d6328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24774: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888065ef9628 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888065ef9628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888065ef9628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888093cb8f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888093cb8f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888093cb8f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24775: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d292b28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d292b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d292b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c042b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c042b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c042b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24776: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888065efc028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888065efc028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888065efc028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888095675528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095675528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888095675528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24777: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f3928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f3928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f3928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808bfff128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808bfff128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808bfff128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24778: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888065efd528 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888065efd528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888065efd528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880891c0828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880891c0828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880891c0828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24780: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a6b228 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a6b228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a6b228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880974b5528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880974b5528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880974b5528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24781: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a68828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a68828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a68828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88802af15528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88802af15528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88802af15528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24782: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f1628 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f1628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f1628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888088664728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888088664728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888088664728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24784: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f0f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f0f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f0f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888084de3228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888084de3228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888084de3228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24785: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a6c728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a6c728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a6c728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808f6d9628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808f6d9628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808f6d9628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24786: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d297128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d297128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d297128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801bb99628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801bb99628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801bb99628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24787: #0: ffff88802e6e9d28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_trylock include/linux/mmap_lock.h:136 [inline] #0: ffff88802e6e9d28 (&mm->mmap_lock#2){++++}-{3:3}, at: do_user_addr_fault+0x285/0x11c0 arch/x86/mm/fault.c:1338 3 locks held by syz-executor.3/24788: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a68128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a68128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a68128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c045c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c045c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c045c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24789: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f7828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f7828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f7828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888083f6f128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888083f6f128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888083f6f128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24790: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f7128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f7128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f7128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808f6de328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808f6de328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808f6de328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24791: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f6a28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f6a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f6a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888084de6328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888084de6328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888084de6328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24792: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f5c28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f5c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f5c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c046a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c046a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c046a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24793: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f2b28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f2b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f2b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88809307b928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88809307b928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88809307b928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24794: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f4e28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f4e28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f4e28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888084e95528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888084e95528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888084e95528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24796: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f1d28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f1d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f1d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888088667128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888088667128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888088667128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24797: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a6ce28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a6ce28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a6ce28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888095672b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095672b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888095672b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24798: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a6f828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a6f828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a6f828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888088179628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888088179628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888088179628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24799: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d294e28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d294e28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d294e28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808d85ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808d85ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808d85ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24800: #0: ffff888065efce28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_trylock include/linux/mmap_lock.h:136 [inline] #0: ffff888065efce28 (&mm->mmap_lock#2){++++}-{3:3}, at: do_user_addr_fault+0x285/0x11c0 arch/x86/mm/fault.c:1338 3 locks held by syz-executor.3/24802: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f6328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f6328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f6328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888083f6ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888083f6ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888083f6ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24803: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f0128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f0128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f0128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c29c028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c29c028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c29c028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24801: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f4028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f4028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f4028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888084e94e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888084e94e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888084e94e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24804: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f3228 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f3228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f3228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880904e6a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880904e6a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880904e6a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24805: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f5528 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f5528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f5528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888088660128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888088660128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888088660128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24806: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888065efea28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888065efea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888065efea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888086875c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888086875c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888086875c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24807: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f0828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f0828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f0828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c833928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c833928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c833928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24808: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e6e8828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e6e8828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e6e8828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880885b7828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880885b7828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880885b7828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24810: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e6e8128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e6e8128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e6e8128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888095674e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095674e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888095674e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24811: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a69628 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a69628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a69628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88809307f828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88809307f828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88809307f828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24812: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a6dc28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a6dc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a6dc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888084de3928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888084de3928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888084de3928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24814: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e6ee328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e6ee328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e6ee328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88802fa1c028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88802fa1c028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88802fa1c028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24815: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e6e8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e6e8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e6e8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888084de4728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888084de4728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888084de4728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24816: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807e2f4728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807e2f4728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807e2f4728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801be1dc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801be1dc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801be1dc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24817: #0: ffff88806f8e8828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_trylock include/linux/mmap_lock.h:136 [inline] #0: ffff88806f8e8828 (&mm->mmap_lock#2){++++}-{3:3}, at: do_user_addr_fault+0x285/0x11c0 arch/x86/mm/fault.c:1338 3 locks held by syz-executor.3/24819: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d292428 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d292428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d292428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808f6ddc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808f6ddc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808f6ddc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24823: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a69d28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a69d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a69d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888086871d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888086871d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888086871d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24824: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a6b928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a6b928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a6b928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880796fa428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880796fa428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880796fa428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24826: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e6eb928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e6eb928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e6eb928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880904e5528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880904e5528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880904e5528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24827: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888065eff128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888065eff128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888065eff128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888084de5528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888084de5528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888084de5528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24828: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a6c028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a6c028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a6c028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808d298828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808d298828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808d298828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24829: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d293928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d293928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d293928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c29b928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c29b928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c29b928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24831: #0: ffff88802e6ece28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_trylock include/linux/mmap_lock.h:136 [inline] #0: ffff88802e6ece28 (&mm->mmap_lock#2){++++}-{3:3}, at: do_user_addr_fault+0x285/0x11c0 arch/x86/mm/fault.c:1338 3 locks held by syz-executor.3/24832: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e6eb228 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e6eb228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e6eb228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880891c2428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880891c2428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880891c2428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24833: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e6ea428 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e6ea428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e6ea428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808bffab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808bffab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808bffab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24834: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807d296a28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807d296a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807d296a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801be1c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801be1c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801be1c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24835: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a6d528 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a6d528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a6d528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888084de4028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888084de4028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888084de4028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24830: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a6a428 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a6a428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a6a428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808cde5c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808cde5c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808cde5c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24837: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888029a6e328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888029a6e328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888029a6e328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c3d2428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c3d2428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c3d2428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24838: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880731fb928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880731fb928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880731fb928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808a884028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808a884028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808a884028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24839: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e6e9628 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e6e9628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e6e9628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888086877828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888086877828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888086877828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24840: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e6ef128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e6ef128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e6ef128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88802fa1c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88802fa1c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88802fa1c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24841: #0: ffff8880731fab28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_trylock include/linux/mmap_lock.h:136 [inline] #0: ffff8880731fab28 (&mm->mmap_lock#2){++++}-{3:3}, at: do_user_addr_fault+0x285/0x11c0 arch/x86/mm/fault.c:1338 3 locks held by syz-executor.3/24842: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e6ef828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e6ef828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e6ef828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88802fa19d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88802fa19d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88802fa19d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24845: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e6ec728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e6ec728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e6ec728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808e622428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808e622428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808e622428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24854: #0: ffff8880846ac728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #0: ffff8880846ac728 (&mm->mmap_lock#2){++++}-{3:3}, at: do_mprotect_pkey+0x1e0/0x980 mm/mprotect.c:551 1 lock held by syz-executor.3/25159: #0: ffff8880846ac728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_lock include/linux/mmap_lock.h:117 [inline] #0: ffff8880846ac728 (&mm->mmap_lock#2){++++}-{3:3}, at: exit_mm kernel/exit.c:483 [inline] #0: ffff8880846ac728 (&mm->mmap_lock#2){++++}-{3:3}, at: do_exit+0xa0a/0x2b40 kernel/exit.c:819 3 locks held by syz-executor.3/24855: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8ece28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8ece28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8ece28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880796fb228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880796fb228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880796fb228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24856: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880846a8828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880846a8828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880846a8828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888086876a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888086876a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888086876a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24858: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880731f8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880731f8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880731f8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888086871628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888086871628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888086871628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24859: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e762428 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e762428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e762428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888092f7ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888092f7ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888092f7ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24860: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8ea428 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8ea428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8ea428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888086874e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888086874e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888086874e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24861: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8e9d28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8e9d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8e9d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808cde5528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808cde5528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808cde5528 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24862: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a260128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a260128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a260128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808f6dea28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808f6dea28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808f6dea28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24863: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a264e28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a264e28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a264e28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88802af16a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88802af16a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88802af16a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24864: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8e9628 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8e9628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8e9628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888092f7b228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888092f7b228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888092f7b228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24865: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8eb228 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8eb228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8eb228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88809699f128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88809699f128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88809699f128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24866: #0: ffff88801ab3a0e0 (&type->s_umount_key#23/1){+.+.}-{3:3}, at: alloc_super+0x1dd/0xac0 fs/super.c:229 3 locks held by syz-executor.3/24867: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e763228 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e763228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e763228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808a886328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808a886328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808a886328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24868: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8eb928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8eb928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8eb928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880842b4e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880842b4e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880842b4e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24869: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8ec028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8ec028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8ec028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880891c5c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880891c5c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880891c5c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24870: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a264728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a264728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a264728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88809699e328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88809699e328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88809699e328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24871: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8eab28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8eab28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8eab28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808dad9d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808dad9d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808dad9d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24872: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880731f9628 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880731f9628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880731f9628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888075af0f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888075af0f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888075af0f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24873: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e6eea28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e6eea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e6eea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801be1e328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801be1e328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801be1e328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24874: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8e8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8e8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8e8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888075790128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888075790128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888075790128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24875: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880731f8828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880731f8828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880731f8828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880956f6a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880956f6a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880956f6a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24877: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880731fe328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880731fe328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880731fe328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808bffea28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808bffea28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808bffea28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24878: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a263928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a263928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a263928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c298828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c298828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c298828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24879: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e760128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e760128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e760128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888075796328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888075796328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888075796328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24880: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e6ed528 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e6ed528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e6ed528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888075af1628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888075af1628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888075af1628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24881: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a262428 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a262428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a262428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c830828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c830828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c830828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24882: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a266328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a266328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a266328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880796fab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880796fab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880796fab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24883: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a260828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a260828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a260828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808a885c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808a885c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808a885c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24884: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880731f8128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880731f8128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880731f8128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880904e6328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880904e6328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880904e6328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24885: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e6edc28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e6edc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e6edc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c29c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c29c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c29c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24886: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880731fc728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880731fc728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880731fc728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808d85ab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808d85ab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808d85ab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24887: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807b442b28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807b442b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807b442b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808717c028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808717c028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808717c028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24888: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a265c28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a265c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a265c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c047828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c047828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c047828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24889: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880846af128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880846af128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880846af128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801bb9f128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801bb9f128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801bb9f128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24890: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880846aab28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880846aab28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880846aab28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88802af17128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88802af17128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88802af17128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24891: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880731fd528 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880731fd528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880731fd528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808f6dc028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808f6dc028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808f6dc028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24892: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a266a28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a266a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a266a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c3d0128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c3d0128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c3d0128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24893: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8ef828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8ef828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8ef828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c29ab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c29ab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c29ab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24894: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880731fb228 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880731fb228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880731fb228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888093cba428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888093cba428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888093cba428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24895: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888030761628 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888030761628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888030761628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888086b8c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888086b8c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888086b8c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24896: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8ef128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8ef128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8ef128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880796ff828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880796ff828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880796ff828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24897: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e764028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e764028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e764028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c3d1628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c3d1628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c3d1628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24898: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880731f9d28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880731f9d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880731f9d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888075790828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888075790828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888075790828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24899: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e762b28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e762b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e762b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888075af0828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888075af0828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888075af0828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24900: #0: ffff88807d9e1628 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_trylock include/linux/mmap_lock.h:136 [inline] #0: ffff88807d9e1628 (&mm->mmap_lock#2){++++}-{3:3}, at: do_user_addr_fault+0x285/0x11c0 arch/x86/mm/fault.c:1338 1 lock held by syz-executor.3/24901: #0: ffff888030763228 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_trylock include/linux/mmap_lock.h:136 [inline] #0: ffff888030763228 (&mm->mmap_lock#2){++++}-{3:3}, at: do_user_addr_fault+0x285/0x11c0 arch/x86/mm/fault.c:1338 3 locks held by syz-executor.3/24902: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880846aa428 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880846aa428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880846aa428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880904e4e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880904e4e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880904e4e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24903: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8edc28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8edc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8edc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880796ff128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880796ff128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880796ff128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24904: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880846ace28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880846ace28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880846ace28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880956f6328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880956f6328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880956f6328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24905: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e767128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e767128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e767128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888084e97828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888084e97828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888084e97828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24906: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a261d28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a261d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a261d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888084e97128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888084e97128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888084e97128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24907: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880846a8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880846a8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880846a8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c29a428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c29a428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c29a428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24908: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a265528 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a265528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a265528 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888092f7b928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888092f7b928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888092f7b928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24909: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e764e28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e764e28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e764e28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888092ed5c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888092ed5c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888092ed5c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24910: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801f1ab228 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801f1ab228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801f1ab228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808f6d8828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808f6d8828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808f6d8828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24912: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880846a9628 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880846a9628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880846a9628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880885b1d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880885b1d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880885b1d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24913: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8ec728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8ec728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8ec728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808331f128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808331f128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808331f128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24914: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a267128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a267128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a267128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880891c0128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880891c0128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880891c0128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24915: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888030760f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888030760f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888030760f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808a883928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808a883928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808a883928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24917: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a263228 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a263228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a263228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88802fa1b228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88802fa1b228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88802fa1b228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24911: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880731fce28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880731fce28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880731fce28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808dadc028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808dadc028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808dadc028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24918: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888030763928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888030763928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888030763928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c29ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c29ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c29ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24919: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880851bab28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880851bab28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880851bab28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c047128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c047128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c047128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24920: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8ee328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8ee328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8ee328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880866f7828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880866f7828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880866f7828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24921: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801f1aab28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801f1aab28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801f1aab28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888095675c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095675c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888095675c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24922: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a267828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a267828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a267828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808dadc728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808dadc728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808dadc728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24923: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a262b28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a262b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a262b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808d858f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808d858f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808d858f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24924: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e761628 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e761628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e761628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88802c2b8828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88802c2b8828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88802c2b8828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24925: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e6ec028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e6ec028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e6ec028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808f58b928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808f58b928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808f58b928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24926: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880846a8128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880846a8128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880846a8128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888075792428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888075792428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888075792428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24927: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880846ab928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880846ab928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880846ab928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888088667828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888088667828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888088667828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24929: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880731ff828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880731ff828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880731ff828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c831d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c831d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c831d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24930: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880808c5c28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880808c5c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880808c5c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888095670f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095670f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888095670f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24931: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880846ac028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880846ac028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880846ac028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888092a76a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888092a76a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888092a76a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24932: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888030764028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888030764028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888030764028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888095676a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095676a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888095676a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24933: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880808c6a28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880808c6a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880808c6a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888075380f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888075380f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888075380f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24934: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801f1af828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801f1af828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801f1af828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888092f7dc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888092f7dc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888092f7dc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24936: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880808c7128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880808c7128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880808c7128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888086873228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888086873228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888086873228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24937: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880846adc28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880846adc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880846adc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888086876328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888086876328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888086876328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24938: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880846ae328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880846ae328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880846ae328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880885b2428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880885b2428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880885b2428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24939: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880808c7828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880808c7828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880808c7828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888095676328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095676328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888095676328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24940: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880846ab228 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880846ab228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880846ab228 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808bfff828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808bfff828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808bfff828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24941: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888083319628 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888083319628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888083319628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808d299628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808d299628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808d299628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24942: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888076954728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888076954728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888076954728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801be1b228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801be1b228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801be1b228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24943: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888030761d28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888030761d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888030761d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888095671628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095671628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888095671628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24944: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808a264028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808a264028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808a264028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88807cf8c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88807cf8c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88807cf8c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24945: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888030765c28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888030765c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888030765c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888084115c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888084115c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888084115c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24946: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888076955c28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888076955c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888076955c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801be1b928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801be1b928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801be1b928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24947: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888030766328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888030766328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888030766328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808ece8128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808ece8128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808ece8128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24948: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88808481b928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88808481b928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88808481b928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880885b3928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880885b3928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880885b3928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24949: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880731fdc28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880731fdc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880731fdc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888075380128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888075380128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888075380128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24950: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888030767128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888030767128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888030767128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808817ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808817ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808817ce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24951: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888030760128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888030760128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888030760128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c299d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c299d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c299d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24952: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802ce57828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802ce57828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802ce57828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880885b1628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880885b1628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880885b1628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24953: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e760828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e760828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e760828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888088662b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888088662b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888088662b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24954: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801f1af128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801f1af128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801f1af128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808e622b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808e622b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808e622b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24955: #0: ffff88809cd8c0e0 (&type->s_umount_key#23/1){+.+.}-{3:3}, at: alloc_super+0x1dd/0xac0 fs/super.c:229 3 locks held by syz-executor.3/24956: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801f1aea28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801f1aea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801f1aea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880796fce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880796fce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880796fce28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24958: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801bb4ea28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801bb4ea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801bb4ea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888093cb8128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888093cb8128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888093cb8128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24959: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880851be328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880851be328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880851be328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808d1ef128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808d1ef128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808d1ef128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24960: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888076954028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888076954028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888076954028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808717c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808717c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808717c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24961: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880851b8128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880851b8128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880851b8128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801bb9c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801bb9c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801bb9c728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24962: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880837e8828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880837e8828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880837e8828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808a882b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808a882b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808a882b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24963: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888030766a28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888030766a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888030766a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808817c028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808817c028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808817c028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24964: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801bb4e328 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801bb4e328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801bb4e328 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c834028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c834028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c834028 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24965: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802ce51d28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802ce51d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802ce51d28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888092ed0128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888092ed0128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888092ed0128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24966: #0: ffff88807b441d28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_trylock include/linux/mmap_lock.h:136 [inline] #0: ffff88807b441d28 (&mm->mmap_lock#2){++++}-{3:3}, at: do_user_addr_fault+0x285/0x11c0 arch/x86/mm/fault.c:1338 3 locks held by syz-executor.3/24967: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e766a28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e766a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e766a28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888088178128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888088178128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888088178128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24968: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880731fa428 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880731fa428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880731fa428 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880904e3928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880904e3928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880904e3928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24969: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e765c28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e765c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e765c28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888093cb8828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888093cb8828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888093cb8828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24970: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880851bdc28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880851bdc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880851bdc28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888089865c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888089865c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888089865c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24971: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880851b8828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880851b8828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880851b8828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888095673928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095673928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888095673928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24972: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880851bce28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880851bce28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880851bce28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888093cbab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888093cbab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888093cbab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24973: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880731ff128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880731ff128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880731ff128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888084de4e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888084de4e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888084de4e28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24974: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880851bc028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880851bc028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880851bc028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880796fe328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880796fe328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880796fe328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24975: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888030767828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888030767828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888030767828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801cf1dc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801cf1dc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801cf1dc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24976: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880846af828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880846af828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880846af828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888075791d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888075791d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888075791d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 1 lock held by syz-executor.3/24977: #0: ffff8880851bc728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_trylock include/linux/mmap_lock.h:136 [inline] #0: ffff8880851bc728 (&mm->mmap_lock#2){++++}-{3:3}, at: do_user_addr_fault+0x285/0x11c0 arch/x86/mm/fault.c:1338 3 locks held by syz-executor.3/24978: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807acb8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807acb8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807acb8f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880866f6a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880866f6a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880866f6a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24979: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88806f8eea28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88806f8eea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88806f8eea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808bff8f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808bff8f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808bff8f28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24980: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801bb48128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801bb48128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801bb48128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808cde7128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808cde7128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808cde7128 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24981: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88801bb48828 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88801bb48828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88801bb48828 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888095674728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888095674728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888095674728 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24982: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802ce53928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802ce53928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802ce53928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880866f5c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880866f5c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880866f5c28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24983: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807b440f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807b440f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807b440f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880974b1d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880974b1d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880974b1d28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24984: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802ce50128 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802ce50128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802ce50128 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888083f6a428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888083f6a428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888083f6a428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24985: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888076952b28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888076952b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888076952b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808675dc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808675dc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808675dc28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24986: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802ce54e28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802ce54e28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802ce54e28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff888086872b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff888086872b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff888086872b28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24987: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888076950f28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888076950f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888076950f28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808c3d0828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808c3d0828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808c3d0828 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24989: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88807b443928 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88807b443928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88807b443928 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88802af13928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88802af13928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88802af13928 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24988: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802ce54028 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802ce54028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802ce54028 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808eceb228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808eceb228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808eceb228 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24990: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888030762b28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888030762b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888030762b28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff8880956f2428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff8880956f2428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff8880956f2428 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24992: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888030764e28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888030764e28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888030764e28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808cde1628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808cde1628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808cde1628 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24996: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880851b9628 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880851b9628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880851b9628 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808e626a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808e626a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808e626a28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24995: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff888030764728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff888030764728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff888030764728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88808cde6328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88808cde6328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88808cde6328 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24997: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff88802e764728 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff88802e764728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff88802e764728 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450 #2: ffff88801be1ab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: mmap_write_lock_nested include/linux/mmap_lock.h:78 [inline] #2: ffff88801be1ab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mmap kernel/fork.c:507 [inline] #2: ffff88801be1ab28 (&mm->mmap_lock/1){+.+.}-{3:3}, at: dup_mm+0x18a/0x13e0 kernel/fork.c:1450 3 locks held by syz-executor.3/24991: #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mmap kernel/fork.c:497 [inline] #0: ffffffff8bc58130 (dup_mmap_sem){++++}-{0:0}, at: dup_mm+0x108/0x13e0 kernel/fork.c:1450 #1: ffff8880846aea28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_write_lock_killable include/linux/mmap_lock.h:87 [inline] #1: ffff8880846aea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mmap kernel/fork.c:498 [inline] #1: ffff8880846aea28 (&mm->mmap_lock#2){++++}-{3:3}, at: dup_mm+0x12e/0x13e0 kernel/fork.c:1450