BUG: stack guard page was hit at 00000000e4085d43 (stack is 0000000051be063e..00000000cd7a0ee6) kernel stack overflow (double-fault): 0000 [#1] PREEMPT SMP KASAN CPU: 0 PID: 28611 Comm: syz-executor.5 Not tainted 5.9.0-rc1-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 RIP: 0010:mark_lock+0x8/0x1710 kernel/locking/lockdep.c:3971 Code: 00 00 be 00 00 01 00 48 c7 c7 c0 a6 f7 8b e8 2f 9b 3e 02 48 98 c3 66 90 66 2e 0f 1f 84 00 00 00 00 00 41 57 41 56 41 55 41 54 <55> 53 48 83 ec 20 83 fa 08 76 51 48 c7 c0 60 e1 96 8c 48 ba 00 00 RSP: 0018:ffffc90015570000 EFLAGS: 00010002 RAX: 0000000000000005 RBX: 0000000000000080 RCX: ffffffff815a02b0 RDX: 0000000000000003 RSI: ffff88804f81a968 RDI: ffff88804f81a080 RBP: ffff88804f81a968 R08: 0000000000000000 R09: ffffffff8c5f09ff R10: fffffbfff18be13f R11: 0000000000000000 R12: 0000000000000000 R13: ffff88804f81a98a R14: ffff88804f81a080 R15: ffffffff8c5fb9c8 FS: 00007f9dfc96d700(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: ffffc9001556fff8 CR3: 00000000976cc000 CR4: 00000000001526f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: mark_usage kernel/locking/lockdep.c:3911 [inline] __lock_acquire+0x11ca/0x5640 kernel/locking/lockdep.c:4380 lock_acquire+0x1f1/0xad0 kernel/locking/lockdep.c:5005 down_read_trylock kernel/locking/rwsem.c:1520 [inline] down_read_trylock+0x193/0x350 kernel/locking/rwsem.c:1515 mmap_read_trylock include/linux/mmap_lock.h:56 [inline] do_user_addr_fault+0x25e/0xbf0 arch/x86/mm/fault.c:1235 handle_page_fault arch/x86/mm/fault.c:1351 [inline] exc_page_fault+0xa8/0x160 arch/x86/mm/fault.c:1404 asm_exc_page_fault+0x1e/0x30 arch/x86/include/asm/idtentry.h:538 RIP: 0010:preempt_schedule_thunk+0x5/0x18 arch/x86/entry/thunk_64.S:40 Code: 24 50 00 00 00 00 eb e3 66 0f 1f 44 00 00 31 ed 65 48 8b 04 25 0c a0 00 00 48 8d a0 58 ff ff ff e8 49 05 46 00 55 48 89 e5 57 <00> 00 00 00 41 50 41 51 41 52 41 53 e8 23 66 f4 06 eb 18 55 48 89 RSP: 0018:ffffc90015570450 EFLAGS: 00010246 RAX: 0000000000000000 RBX: ffffc90015570760 RCX: 0000000000000000 RDX: 0000000000000001 RSI: ffffffff839a2e0b RDI: 0000000000000001 RBP: ffffc90015570458 R08: ffffffff83b1be30 R09: ffff8880a629b03f R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 R13: 000000000000000e R14: 0000000000000002 R15: 0000000000000000 search_module_extables+0xce/0x100 kernel/module.c:4469 search_exception_tables+0x42/0x50 kernel/extable.c:59 fixup_exception+0x4b/0xca arch/x86/mm/extable.c:161 no_context+0xe7/0x9f0 arch/x86/mm/fault.c:598 __bad_area_nosemaphore+0xa9/0x480 arch/x86/mm/fault.c:788 do_user_addr_fault+0x852/0xbf0 arch/x86/mm/fault.c:1257 handle_page_fault arch/x86/mm/fault.c:1351 [inline] exc_page_fault+0xa8/0x160 arch/x86/mm/fault.c:1404 asm_exc_page_fault+0x1e/0x30 arch/x86/include/asm/idtentry.h:538 RIP: 0010:preempt_schedule_thunk+0x5/0x18 arch/x86/entry/thunk_64.S:40 Code: 24 50 00 00 00 00 eb e3 66 0f 1f 44 00 00 31 ed 65 48 8b 04 25 0c a0 00 00 48 8d a0 58 ff ff ff e8 49 05 46 00 55 48 89 e5 57 <00> 00 00 00 41 50 41 51 41 52 41 53 e8 23 66 f4 06 eb 18 55 48 89 RSP: 0018:ffffc90015570780 EFLAGS: 00010246 RAX: 0000000000000000 RBX: ffffc90015570a90 RCX: 0000000000000000 RDX: 0000000000000001 RSI: ffffffff839a2e0b RDI: 0000000000000001 RBP: ffffc90015570788 R08: ffffffff83b1be30 R09: ffff8880a629b03f R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 R13: 000000000000000e R14: 0000000000000002 R15: 0000000000000000 search_module_extables+0xce/0x100 kernel/module.c:4469 search_exception_tables+0x42/0x50 kernel/extable.c:59 fixup_exception+0x4b/0xca arch/x86/mm/extable.c:161 no_context+0xe7/0x9f0 arch/x86/mm/fault.c:598 __bad_area_nosemaphore+0xa9/0x480 arch/x86/mm/fault.c:788 do_user_addr_fault+0x852/0xbf0 arch/x86/mm/fault.c:1257 handle_page_fault arch/x86/mm/fault.c:1351 [inline] exc_page_fault+0xa8/0x160 arch/x86/mm/fault.c:1404 asm_exc_page_fault+0x1e/0x30 arch/x86/include/asm/idtentry.h:538 RIP: 0010:preempt_schedule_thunk+0x5/0x18 arch/x86/entry/thunk_64.S:40 Code: 24 50 00 00 00 00 eb e3 66 0f 1f 44 00 00 31 ed 65 48 8b 04 25 0c a0 00 00 48 8d a0 58 ff ff ff e8 49 05 46 00 55 48 89 e5 57 <00> 00 00 00 41 50 41 51 41 52 41 53 e8 23 66 f4 06 eb 18 55 48 89 RSP: 0018:ffffc90015570ab0 EFLAGS: 00010246 RAX: 0000000000000000 RBX: ffffc90015570dc0 RCX: 0000000000000000 RDX: 0000000000000001 RSI: ffffffff839a2e0b RDI: 0000000000000001 RBP: ffffc90015570ab8 R08: ffffffff83b1be30 R09: ffff8880a629b03f R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 R13: 000000000000000e R14: 0000000000000002 R15: 0000000000000000 search_module_extables+0xce/0x100 kernel/module.c:4469 search_exception_tables+0x42/0x50 kernel/extable.c:59 fixup_exception+0x4b/0xca arch/x86/mm/extable.c:161 no_context+0xe7/0x9f0 arch/x86/mm/fault.c:598 __bad_area_nosemaphore+0xa9/0x480 arch/x86/mm/fault.c:788 do_user_addr_fault+0x852/0xbf0 arch/x86/mm/fault.c:1257 handle_page_fault arch/x86/mm/fault.c:1351 [inline] exc_page_fault+0xa8/0x160 arch/x86/mm/fault.c:1404 asm_exc_page_fault+0x1e/0x30 arch/x86/include/asm/idtentry.h:538 RIP: 0010:preempt_schedule_thunk+0x5/0x18 arch/x86/entry/thunk_64.S:40 Code: 24 50 00 00 00 00 eb e3 66 0f 1f 44 00 00 31 ed 65 48 8b 04 25 0c a0 00 00 48 8d a0 58 ff ff ff e8 49 05 46 00 55 48 89 e5 57 <00> 00 00 00 41 50 41 51 41 52 41 53 e8 23 66 f4 06 eb 18 55 48 89 RSP: 0018:ffffc90015570de0 EFLAGS: 00010246 RAX: 0000000000000000 RBX: ffffc900155710f0 RCX: 0000000000000000 RDX: 0000000000000001 RSI: ffffffff839a2e0b RDI: 0000000000000001 RBP: ffffc90015570de8 R08: ffffffff83b1be30 R09: ffff8880a629b03f R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 R13: 000000000000000e R14: 0000000000000002 R15: 0000000000000000 search_module_extables+0xce/0x100 kernel/module.c:4469 search_exception_tables+0x42/0x50 kernel/extable.c:59 fixup_exception+0x4b/0xca arch/x86/mm/extable.c:161 no_context+0xe7/0x9f0 arch/x86/mm/fault.c:598 __bad_area_nosemaphore+0xa9/0x480 arch/x86/mm/fault.c:788 do_user_addr_fault+0x852/0xbf0 arch/x86/mm/fault.c:1257 handle_page_fault arch/x86/mm/fault.c:1351 [inline] exc_page_fault+0xa8/0x160 arch/x86/mm/fault.c:1404 asm_exc_page_fault+0x1e/0x30 arch/x86/include/asm/idtentry.h:538 RIP: 0010:preempt_schedule_thunk+0x5/0x18 arch/x86/entry/thunk_64.S:40 Code: 24 50 00 00 00 00 eb e3 66 0f 1f 44 00 00 31 ed 65 48 8b 04 25 0c a0 00 00 48 8d a0 58 ff ff ff e8 49 05 46 00 55 48 89 e5 57 <00> 00 00 00 41 50 41 51 41 52 41 53 e8 23 66 f4 06 eb 18 55 48 89 RSP: 0018:ffffc90015571110 EFLAGS: 00010246 RAX: 0000000000000000 RBX: ffffc90015571420 RCX: 0000000000000000 RDX: 0000000000000001 RSI: ffffffff839a2e0b RDI: 0000000000000001 RBP: ffffc90015571118 R08: ffffffff83b1be30 R09: ffff8880a629b03f R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 R13: 000000000000000e R14: 0000000000000002 R15: 0000000000000000 search_module_extables+0xce/0x100 kernel/module.c:4469 search_exception_tables+0x42/0x50 kernel/extable.c:59 fixup_exception+0x4b/0xca arch/x86/mm/extable.c:161 no_context+0xe7/0x9f0 arch/x86/mm/fault.c:598 __bad_area_nosemaphore+0xa9/0x480 arch/x86/mm/fault.c:788 do_user_addr_fault+0x852/0xbf0 arch/x86/mm/fault.c:1257 handle_page_fault arch/x86/mm/fault.c:1351 [inline] exc_page_fault+0xa8/0x160 arch/x86/mm/fault.c:1404 asm_exc_page_fault+0x1e/0x30 arch/x86/include/asm/idtentry.h:538 RIP: 0010:preempt_schedule_thunk+0x5/0x18 arch/x86/entry/thunk_64.S:40 Code: 24 50 00 00 00 00 eb e3 66 0f 1f 44 00 00 31 ed 65 48 8b 04 25 0c a0 00 00 48 8d a0 58 ff ff ff e8 49 05 46 00 55 48 89 e5 57 <00> 00 00 00 41 50 41 51 41 52 41 53 e8 23 66 f4 06 eb 18 55 48 89 RSP: 0018:ffffc90015571440 EFLAGS: 00010246 RAX: 0000000000000000 RBX: ffffc90015571750 RCX: 0000000000000000 RDX: 0000000000000001 RSI: ffffffff839a2e0b RDI: 0000000000000001 RBP: ffffc90015571448 R08: ffffffff83b1be30 R09: ffff8880a629b03f R10: 0000000000000000 R11: Lost 936 message(s)! BUG: stack guard page was hit at 0000000008855d67 (stack is 00000000cc510b87..00000000f74248de) ---[ end trace 274b8552745ddbe6 ]--- RIP: 0010:mark_lock+0x8/0x1710 kernel/locking/lockdep.c:3971 Code: 00 00 be 00 00 01 00 48 c7 c7 c0 a6 f7 8b e8 2f 9b 3e 02 48 98 c3 66 90 66 2e 0f 1f 84 00 00 00 00 00 41 57 41 56 41 55 41 54 <55> 53 48 83 ec 20 83 fa 08 76 51 48 c7 c0 60 e1 96 8c 48 ba 00 00 RSP: 0018:ffffc90015570000 EFLAGS: 00010002 RAX: 0000000000000005 RBX: 0000000000000080 RCX: ffffffff815a02b0 RDX: 0000000000000003 RSI: ffff88804f81a968 RDI: ffff88804f81a080 RBP: ffff88804f81a968 R08: 0000000000000000 R09: ffffffff8c5f09ff R10: fffffbfff18be13f R11: 0000000000000000 R12: 0000000000000000 R13: ffff88804f81a98a R14: ffff88804f81a080 R15: ffffffff8c5fb9c8 FS: 00007f9dfc96d700(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: ffffc9001556fff8 CR3: 00000000976cc000 CR4: 00000000001526f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400