====================================================== WARNING: possible circular locking dependency detected 4.17.0-rc6+ #25 Not tainted ------------------------------------------------------ syz-executor1/8168 is trying to acquire lock: (ptrval) (&htab->buckets[i].lock#2){+...}, at: bpf_tcp_close+0x822/0x10b0 kernel/bpf/sockmap.c:285 but task is already holding lock: (ptrval) (clock-AF_INET6){++..}, at: bpf_tcp_close+0x241/0x10b0 kernel/bpf/sockmap.c:260 which lock already depends on the new lock. the existing dependency chain (in reverse order) is: -> #1 (clock-AF_INET6){++..}: __raw_write_lock_bh include/linux/rwlock_api_smp.h:203 [inline] _raw_write_lock_bh+0x31/0x40 kernel/locking/spinlock.c:312 sock_hash_delete_elem+0x7c6/0xaf0 kernel/bpf/sockmap.c:2338 map_delete_elem+0x32e/0x4e0 kernel/bpf/syscall.c:815 __do_sys_bpf kernel/bpf/syscall.c:2349 [inline] __se_sys_bpf kernel/bpf/syscall.c:2317 [inline] __x64_sys_bpf+0x342/0x510 kernel/bpf/syscall.c:2317 do_syscall_64+0x1b1/0x800 arch/x86/entry/common.c:287 entry_SYSCALL_64_after_hwframe+0x49/0xbe -> #0 (&htab->buckets[i].lock#2){+...}: lock_acquire+0x1dc/0x520 kernel/locking/lockdep.c:3920 __raw_spin_lock_bh include/linux/spinlock_api_smp.h:135 [inline] _raw_spin_lock_bh+0x31/0x40 kernel/locking/spinlock.c:168 bpf_tcp_close+0x822/0x10b0 kernel/bpf/sockmap.c:285 inet_release+0x104/0x1f0 net/ipv4/af_inet.c:427 inet6_release+0x50/0x70 net/ipv6/af_inet6.c:459 sock_release+0x96/0x1b0 net/socket.c:594 sock_close+0x16/0x20 net/socket.c:1149 __fput+0x34d/0x890 fs/file_table.c:209 ____fput+0x15/0x20 fs/file_table.c:243 task_work_run+0x1e4/0x290 kernel/task_work.c:113 exit_task_work include/linux/task_work.h:22 [inline] do_exit+0x1aee/0x2730 kernel/exit.c:865 do_group_exit+0x16f/0x430 kernel/exit.c:968 get_signal+0x886/0x1960 kernel/signal.c:2482 do_signal+0x98/0x2040 arch/x86/kernel/signal.c:810 exit_to_usermode_loop+0x28a/0x310 arch/x86/entry/common.c:162 prepare_exit_to_usermode arch/x86/entry/common.c:196 [inline] syscall_return_slowpath arch/x86/entry/common.c:265 [inline] do_syscall_64+0x6ac/0x800 arch/x86/entry/common.c:290 entry_SYSCALL_64_after_hwframe+0x49/0xbe other info that might help us debug this: Possible unsafe locking scenario: CPU0 CPU1 ---- ---- lock(clock-AF_INET6); lock(&htab->buckets[i].lock#2); lock(clock-AF_INET6); lock(&htab->buckets[i].lock#2); *** DEADLOCK *** 2 locks held by syz-executor1/8168: #0: (ptrval) (rcu_read_lock){....}, at: bpf_tcp_close+0x0/0x10b0 kernel/bpf/sockmap.c:2106 #1: (ptrval) (clock-AF_INET6){++..}, at: bpf_tcp_close+0x241/0x10b0 kernel/bpf/sockmap.c:260 stack backtrace: CPU: 1 PID: 8168 Comm: syz-executor1 Not tainted 4.17.0-rc6+ #25 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1b9/0x294 lib/dump_stack.c:113 print_circular_bug.isra.36.cold.54+0x1bd/0x27d kernel/locking/lockdep.c:1223 check_prev_add kernel/locking/lockdep.c:1863 [inline] check_prevs_add kernel/locking/lockdep.c:1976 [inline] validate_chain kernel/locking/lockdep.c:2417 [inline] __lock_acquire+0x343e/0x5140 kernel/locking/lockdep.c:3431 lock_acquire+0x1dc/0x520 kernel/locking/lockdep.c:3920 __raw_spin_lock_bh include/linux/spinlock_api_smp.h:135 [inline] _raw_spin_lock_bh+0x31/0x40 kernel/locking/spinlock.c:168 bpf_tcp_close+0x822/0x10b0 kernel/bpf/sockmap.c:285 inet_release+0x104/0x1f0 net/ipv4/af_inet.c:427 inet6_release+0x50/0x70 net/ipv6/af_inet6.c:459 sock_release+0x96/0x1b0 net/socket.c:594 sock_close+0x16/0x20 net/socket.c:1149 __fput+0x34d/0x890 fs/file_table.c:209 ____fput+0x15/0x20 fs/file_table.c:243 task_work_run+0x1e4/0x290 kernel/task_work.c:113 exit_task_work include/linux/task_work.h:22 [inline] do_exit+0x1aee/0x2730 kernel/exit.c:865 do_group_exit+0x16f/0x430 kernel/exit.c:968 get_signal+0x886/0x1960 kernel/signal.c:2482 do_signal+0x98/0x2040 arch/x86/kernel/signal.c:810 exit_to_usermode_loop+0x28a/0x310 arch/x86/entry/common.c:162 prepare_exit_to_usermode arch/x86/entry/common.c:196 [inline] syscall_return_slowpath arch/x86/entry/common.c:265 [inline] do_syscall_64+0x6ac/0x800 arch/x86/entry/common.c:290 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x455a09 RSP: 002b:00007f5ec11face8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca RAX: fffffffffffffe00 RBX: 000000000072c028 RCX: 0000000000455a09 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000072c028 RBP: 000000000072c028 R08: 0000000000000000 R09: 000000000072c000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffde15ba24f R14: 00007f5ec11fb9c0 R15: 0000000000000002 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 1 CPU: 1 PID: 8216 Comm: syz-executor3 Not tainted 4.17.0-rc6+ #25 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1b9/0x294 lib/dump_stack.c:113 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold.4+0xa/0x1a lib/fault-inject.c:149 __should_failslab+0x124/0x180 mm/failslab.c:32 should_failslab+0x9/0x14 mm/slab_common.c:1522 slab_pre_alloc_hook mm/slab.h:423 [inline] slab_alloc mm/slab.c:3378 [inline] __do_kmalloc mm/slab.c:3716 [inline] __kmalloc+0x2c8/0x760 mm/slab.c:3727 kmalloc include/linux/slab.h:517 [inline] sock_kmalloc+0x14e/0x1d0 net/core/sock.c:1996 ___sys_sendmsg+0x2de/0x940 net/socket.c:2084 __sys_sendmsg+0x115/0x270 net/socket.c:2155 __do_sys_sendmsg net/socket.c:2164 [inline] __se_sys_sendmsg net/socket.c:2162 [inline] __x64_sys_sendmsg+0x78/0xb0 net/socket.c:2162 do_syscall_64+0x1b1/0x800 arch/x86/entry/common.c:287 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x455a09 RSP: 002b:00007f524636bc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e RAX: ffffffffffffffda RBX: 00007f524636c6d4 RCX: 0000000000455a09 RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000013 RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 R13: 000000000000059c R14: 00000000006fc740 R15: 0000000000000000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 0 PID: 8282 Comm: syz-executor3 Not tainted 4.17.0-rc6+ #25 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1b9/0x294 lib/dump_stack.c:113 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold.4+0xa/0x1a lib/fault-inject.c:149 __should_failslab+0x124/0x180 mm/failslab.c:32 should_failslab+0x9/0x14 mm/slab_common.c:1522 slab_pre_alloc_hook mm/slab.h:423 [inline] slab_alloc mm/slab.c:3378 [inline] kmem_cache_alloc+0x47/0x760 mm/slab.c:3552 sctp_bucket_create net/sctp/socket.c:7784 [inline] sctp_get_port_local+0xb1e/0x1540 net/sctp/socket.c:7543 sctp_get_port+0x12b/0x1b0 net/sctp/socket.c:7592 inet_autobind+0xbd/0x1a0 net/ipv4/af_inet.c:182 inet_sendmsg+0x4c3/0x690 net/ipv4/af_inet.c:795 sock_sendmsg_nosec net/socket.c:629 [inline] sock_sendmsg+0xd5/0x120 net/socket.c:639 ___sys_sendmsg+0x805/0x940 net/socket.c:2117 __sys_sendmsg+0x115/0x270 net/socket.c:2155 __do_sys_sendmsg net/socket.c:2164 [inline] __se_sys_sendmsg net/socket.c:2162 [inline] __x64_sys_sendmsg+0x78/0xb0 net/socket.c:2162 do_syscall_64+0x1b1/0x800 arch/x86/entry/common.c:287 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x455a09 RSP: 002b:00007f524636bc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e RAX: ffffffffffffffda RBX: 00007f524636c6d4 RCX: 0000000000455a09 RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000013 RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 R13: 000000000000059c R14: 00000000006fc740 R15: 0000000000000001 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 1 PID: 8305 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #25 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1b9/0x294 lib/dump_stack.c:113 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold.4+0xa/0x1a lib/fault-inject.c:149 __should_failslab+0x124/0x180 mm/failslab.c:32 should_failslab+0x9/0x14 mm/slab_common.c:1522 slab_pre_alloc_hook mm/slab.h:423 [inline] slab_alloc mm/slab.c:3378 [inline] kmem_cache_alloc_trace+0x2cb/0x780 mm/slab.c:3618 kmalloc include/linux/slab.h:512 [inline] kzalloc include/linux/slab.h:701 [inline] perf_event_alloc.part.91+0x195/0x3090 kernel/events/core.c:9922 perf_event_alloc kernel/events/core.c:10394 [inline] __do_sys_perf_event_open+0xa8a/0x2fa0 kernel/events/core.c:10495 __se_sys_perf_event_open kernel/events/core.c:10384 [inline] __x64_sys_perf_event_open+0xbe/0x150 kernel/events/core.c:10384 do_syscall_64+0x1b1/0x800 arch/x86/entry/common.c:287 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x455a09 RSP: 002b:00007fef10341c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012a RAX: ffffffffffffffda RBX: 00007fef103426d4 RCX: 0000000000455a09 RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000020000100 RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000013 R13: 000000000000050c R14: 00000000006fb9c0 R15: 0000000000000000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 1 PID: 8361 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #25 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1b9/0x294 lib/dump_stack.c:113 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold.4+0xa/0x1a lib/fault-inject.c:149 autofs4:pid:8373:autofs4_fill_super: called with bogus options autofs4:pid:8376:autofs4_fill_super: called with bogus options __should_failslab+0x124/0x180 mm/failslab.c:32 should_failslab+0x9/0x14 mm/slab_common.c:1522 slab_pre_alloc_hook mm/slab.h:423 [inline] slab_alloc mm/slab.c:3378 [inline] kmem_cache_alloc+0x2af/0x760 mm/slab.c:3552 __d_alloc+0xc0/0xd30 fs/dcache.c:1638 autofs4:pid:8382:autofs4_fill_super: called with bogus options d_alloc_pseudo+0x1d/0x30 fs/dcache.c:1766 anon_inode_getfile+0x1e2/0x4c0 fs/anon_inodes.c:92 __do_sys_perf_event_open+0x174d/0x2fa0 kernel/events/core.c:10614 __se_sys_perf_event_open kernel/events/core.c:10384 [inline] __x64_sys_perf_event_open+0xbe/0x150 kernel/events/core.c:10384 do_syscall_64+0x1b1/0x800 arch/x86/entry/common.c:287 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x455a09 RSP: 002b:00007fef10341c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012a RAX: ffffffffffffffda RBX: 00007fef103426d4 RCX: 0000000000455a09 RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000020000100 RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000013 R13: 000000000000050c R14: 00000000006fb9c0 R15: 0000000000000001 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 1 PID: 8411 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #25 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1b9/0x294 lib/dump_stack.c:113 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold.4+0xa/0x1a lib/fault-inject.c:149 __should_failslab+0x124/0x180 mm/failslab.c:32 should_failslab+0x9/0x14 mm/slab_common.c:1522 slab_pre_alloc_hook mm/slab.h:423 [inline] slab_alloc mm/slab.c:3378 [inline] kmem_cache_alloc+0x2af/0x760 mm/slab.c:3552 kmem_cache_zalloc include/linux/slab.h:691 [inline] get_empty_filp+0x125/0x520 fs/file_table.c:122 alloc_file+0x24/0x3e0 fs/file_table.c:163 anon_inode_getfile+0x29a/0x4c0 fs/anon_inodes.c:105 __do_sys_perf_event_open+0x174d/0x2fa0 kernel/events/core.c:10614 __se_sys_perf_event_open kernel/events/core.c:10384 [inline] __x64_sys_perf_event_open+0xbe/0x150 kernel/events/core.c:10384 do_syscall_64+0x1b1/0x800 arch/x86/entry/common.c:287 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x455a09 RSP: 002b:00007fef10341c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012a RAX: ffffffffffffffda RBX: 00007fef103426d4 RCX: 0000000000455a09 RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000020000100 RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000013 R13: 000000000000050c R14: 00000000006fb9c0 R15: 0000000000000002 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 1 PID: 8719 Comm: syz-executor7 Not tainted 4.17.0-rc6+ #25 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1b9/0x294 lib/dump_stack.c:113 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold.4+0xa/0x1a lib/fault-inject.c:149 __should_failslab+0x124/0x180 mm/failslab.c:32 should_failslab+0x9/0x14 mm/slab_common.c:1522 slab_pre_alloc_hook mm/slab.h:423 [inline] slab_alloc_node mm/slab.c:3299 [inline] kmem_cache_alloc_node_trace+0x26f/0x770 mm/slab.c:3661 kmalloc_node include/linux/slab.h:550 [inline] kzalloc_node include/linux/slab.h:712 [inline] __get_vm_area_node+0x12d/0x390 mm/vmalloc.c:1402 __vmalloc_node_range+0xc4/0x760 mm/vmalloc.c:1754 __vmalloc_node mm/vmalloc.c:1804 [inline] __vmalloc+0x45/0x50 mm/vmalloc.c:1810 bpf_prog_alloc+0xdb/0x3c0 kernel/bpf/core.c:85 bpf_prog_load+0x435/0x1c70 kernel/bpf/syscall.c:1306 __do_sys_bpf kernel/bpf/syscall.c:2355 [inline] __se_sys_bpf kernel/bpf/syscall.c:2317 [inline] __x64_sys_bpf+0x36c/0x510 kernel/bpf/syscall.c:2317 do_syscall_64+0x1b1/0x800 arch/x86/entry/common.c:287 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x455a09 RSP: 002b:00007f2f6bddcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 RAX: ffffffffffffffda RBX: 00007f2f6bddd6d4 RCX: 0000000000455a09 RDX: 0000000000000048 RSI: 0000000020000340 RDI: 0000000000000005 RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000013 R13: 0000000000000046 R14: 00000000006f4730 R15: 0000000000000000 syz-executor7: vmalloc: allocation failure: 4096 bytes, mode:0x14280c0(GFP_USER|__GFP_ZERO), nodemask=(null) syz-executor7 cpuset=syz7 mems_allowed=0 CPU: 1 PID: 8719 Comm: syz-executor7 Not tainted 4.17.0-rc6+ #25 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1b9/0x294 lib/dump_stack.c:113 warn_alloc.cold.118+0xb2/0x1b8 mm/page_alloc.c:3429 __vmalloc_node_range+0x472/0x760 mm/vmalloc.c:1775 __vmalloc_node mm/vmalloc.c:1804 [inline] __vmalloc+0x45/0x50 mm/vmalloc.c:1810 bpf_prog_alloc+0xdb/0x3c0 kernel/bpf/core.c:85 bpf_prog_load+0x435/0x1c70 kernel/bpf/syscall.c:1306 __do_sys_bpf kernel/bpf/syscall.c:2355 [inline] __se_sys_bpf kernel/bpf/syscall.c:2317 [inline] __x64_sys_bpf+0x36c/0x510 kernel/bpf/syscall.c:2317 do_syscall_64+0x1b1/0x800 arch/x86/entry/common.c:287 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x455a09 RSP: 002b:00007f2f6bddcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 RAX: ffffffffffffffda RBX: 00007f2f6bddd6d4 RCX: 0000000000455a09 RDX: 0000000000000048 RSI: 0000000020000340 RDI: 0000000000000005 RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000013 R13: 0000000000000046 R14: 00000000006f4730 R15: 0000000000000000 Mem-Info: active_anon:31529 inactive_anon:75 isolated_anon:0 active_file:3756 inactive_file:8912 isolated_file:0 unevictable:0 dirty:112 writeback:0 unstable:0 slab_reclaimable:11038 slab_unreclaimable:104550 mapped:74192 shmem:85 pagetables:835 bounce:0 free:1371503 free_pcp:389 free_cma:0 Node 0 active_anon:126088kB inactive_anon:304kB active_file:15024kB inactive_file:35672kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:296712kB dirty:484kB writeback:0kB shmem:340kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 75776kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 2830 6335 6335 Node 0 DMA32 free:2900400kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901128kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:728kB local_pcp:0kB free_cma:0kB lowmem_reserve[]: 0 0 3505 3505 Node 0 Normal free:2569632kB min:37300kB low:46624kB high:55948kB active_anon:126088kB inactive_anon:304kB active_file:15024kB inactive_file:35672kB unevictable:0kB writepending:484kB present:4718592kB managed:3589428kB mlocked:0kB kernel_stack:5248kB pagetables:3328kB bounce:0kB free_pcp:836kB local_pcp:120kB free_cma:0kB lowmem_reserve[]: 0 0 0 0 Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB Node 0 DMA32: 2*4kB (M) 5*8kB (M) 2*16kB (M) 3*32kB (M) 2*64kB (M) 1*128kB (M) 4*256kB (M) 2*512kB (M) 2*1024kB (M) 2*2048kB (M) 706*4096kB (M) = 2900400kB Node 0 Normal: 242*4kB (UM) 174*8kB (UM) 282*16kB (UM) 215*32kB (UME) 101*64kB (UM) 3*128kB (ME) 43*256kB (U) 57*512kB (UME) 42*1024kB (UM) 4*2048kB (UM) 600*4096kB (UM) = 2569592kB Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 12761 total pagecache pages 0 pages in swap cache Swap cache stats: add 0, delete 0, find 0/0 Free swap = 0kB Total swap = 0kB 1965969 pages RAM 0 pages HighMem/MovableOnly 339353 pages reserved FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 0 PID: 8817 Comm: syz-executor1 Not tainted 4.17.0-rc6+ #25 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1b9/0x294 lib/dump_stack.c:113 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold.4+0xa/0x1a lib/fault-inject.c:149 __should_failslab+0x124/0x180 mm/failslab.c:32 should_failslab+0x9/0x14 mm/slab_common.c:1522 slab_pre_alloc_hook mm/slab.h:423 [inline] slab_alloc_node mm/slab.c:3299 [inline] kmem_cache_alloc_node+0x56/0x780 mm/slab.c:3642 __alloc_skb+0x111/0x780 net/core/skbuff.c:193 alloc_skb_fclone include/linux/skbuff.h:1031 [inline] tipc_buf_acquire+0x2d/0xf0 net/tipc/msg.c:66 tipc_msg_create+0x37/0x260 net/tipc/msg.c:98 __tipc_shutdown+0x93d/0xce0 net/tipc/socket.c:532 tipc_release+0x106/0x1290 net/tipc/socket.c:574 sock_release+0x96/0x1b0 net/socket.c:594 sock_close+0x16/0x20 net/socket.c:1149 __fput+0x34d/0x890 fs/file_table.c:209 ____fput+0x15/0x20 fs/file_table.c:243 task_work_run+0x1e4/0x290 kernel/task_work.c:113 tracehook_notify_resume include/linux/tracehook.h:191 [inline] exit_to_usermode_loop+0x2bd/0x310 arch/x86/entry/common.c:166 prepare_exit_to_usermode arch/x86/entry/common.c:196 [inline] syscall_return_slowpath arch/x86/entry/common.c:265 [inline] do_syscall_64+0x6ac/0x800 arch/x86/entry/common.c:290 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x455a09 RSP: 002b:00007f5ec123cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 RAX: 0000000000000000 RBX: 00007f5ec123d6d4 RCX: 0000000000455a09 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000015 RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 R13: 0000000000000053 R14: 00000000006f4868 R15: 0000000000000000 FAULT_INJECTION: forcing a failure. name fail_page_alloc, interval 1, probability 0, space 0, times 1 FAULT_INJECTION: forcing a failure. name fail_page_alloc, interval 1, probability 0, space 0, times 1 CPU: 1 PID: 8864 Comm: syz-executor5 Not tainted 4.17.0-rc6+ #25 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1b9/0x294 lib/dump_stack.c:113 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold.4+0xa/0x1a lib/fault-inject.c:149 should_fail_alloc_page mm/page_alloc.c:3060 [inline] prepare_alloc_pages mm/page_alloc.c:4319 [inline] __alloc_pages_nodemask+0x34e/0xd70 mm/page_alloc.c:4358 __alloc_pages include/linux/gfp.h:456 [inline] __alloc_pages_node include/linux/gfp.h:469 [inline] alloc_pages_vma+0x3a0/0x540 mm/mempolicy.c:2049 do_huge_pmd_anonymous_page+0x583/0x1cc0 mm/huge_memory.c:722 create_huge_pmd mm/memory.c:3854 [inline] __handle_mm_fault+0x2d02/0x4310 mm/memory.c:4058 handle_mm_fault+0x53a/0xc70 mm/memory.c:4124 __do_page_fault+0x60b/0xe40 arch/x86/mm/fault.c:1399 do_page_fault+0xee/0x8a7 arch/x86/mm/fault.c:1474 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160 RIP: 0010:__put_user_4+0x1c/0x30 arch/x86/lib/putuser.S:68 RSP: 0018:ffff8801afb17d00 EFLAGS: 00010293 RAX: 0000000000000015 RBX: 00007fffffffeffd RCX: 0000000020000140 RDX: 0000000000000046 RSI: ffffffff81a71a53 RDI: 0000000000000286 RBP: ffff8801afb17df0 R08: 1ffff10035f62f7d R09: ffff8801afb17a28 R10: 0000000000000000 R11: ffff88019c64e540 R12: 0000000000000015 R13: 0000000020000140 R14: 0000000000000001 R15: dffffc0000000000 __do_sys_socketpair net/socket.c:1459 [inline] __se_sys_socketpair net/socket.c:1456 [inline] __x64_sys_socketpair+0x97/0xf0 net/socket.c:1456 do_syscall_64+0x1b1/0x800 arch/x86/entry/common.c:287 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x455a09 RSP: 002b:00007f962e955c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 RAX: ffffffffffffffda RBX: 00007f962e9566d4 RCX: 0000000000455a09 RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000001e RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000014 R13: 00000000000006f0 R14: 00000000006fe720 R15: 0000000000000000 CPU: 0 PID: 8865 Comm: syz-executor1 Not tainted 4.17.0-rc6+ #25 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1b9/0x294 lib/dump_stack.c:113 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold.4+0xa/0x1a lib/fault-inject.c:149 should_fail_alloc_page mm/page_alloc.c:3060 [inline] prepare_alloc_pages mm/page_alloc.c:4319 [inline] __alloc_pages_nodemask+0x34e/0xd70 mm/page_alloc.c:4358 __alloc_pages include/linux/gfp.h:456 [inline] __alloc_pages_node include/linux/gfp.h:469 [inline] kmem_getpages mm/slab.c:1411 [inline] cache_grow_begin+0x6e/0x6c0 mm/slab.c:2678 cache_alloc_refill mm/slab.c:3045 [inline] ____cache_alloc mm/slab.c:3127 [inline] slab_alloc_node mm/slab.c:3322 [inline] kmem_cache_alloc_node+0x6a0/0x780 mm/slab.c:3642 __alloc_skb+0x111/0x780 net/core/skbuff.c:193 alloc_skb_fclone include/linux/skbuff.h:1031 [inline] tipc_buf_acquire+0x2d/0xf0 net/tipc/msg.c:66 tipc_msg_create+0x37/0x260 net/tipc/msg.c:98 __tipc_shutdown+0x93d/0xce0 net/tipc/socket.c:532 tipc_release+0x106/0x1290 net/tipc/socket.c:574 sock_release+0x96/0x1b0 net/socket.c:594 sock_close+0x16/0x20 net/socket.c:1149 __fput+0x34d/0x890 fs/file_table.c:209 ____fput+0x15/0x20 fs/file_table.c:243 task_work_run+0x1e4/0x290 kernel/task_work.c:113 tracehook_notify_resume include/linux/tracehook.h:191 [inline] exit_to_usermode_loop+0x2bd/0x310 arch/x86/entry/common.c:166 prepare_exit_to_usermode arch/x86/entry/common.c:196 [inline] syscall_return_slowpath arch/x86/entry/common.c:265 [inline] do_syscall_64+0x6ac/0x800 arch/x86/entry/common.c:290 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x455a09 RSP: 002b:00007f5ec123cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 RAX: 0000000000000000 RBX: 00007f5ec123d6d4 RCX: 0000000000455a09 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000015 RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 R13: 0000000000000053 R14: 00000000006f4868 R15: 0000000000000001 FAULT_INJECTION: forcing a failure. name fail_page_alloc, interval 1, probability 0, space 0, times 0 CPU: 0 PID: 8904 Comm: syz-executor5 Not tainted 4.17.0-rc6+ #25 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1b9/0x294 lib/dump_stack.c:113 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold.4+0xa/0x1a lib/fault-inject.c:149 overlayfs: missing 'lowerdir' should_fail_alloc_page mm/page_alloc.c:3060 [inline] prepare_alloc_pages mm/page_alloc.c:4319 [inline] __alloc_pages_nodemask+0x34e/0xd70 mm/page_alloc.c:4358 alloc_pages_current+0x10c/0x210 mm/mempolicy.c:2093 alloc_pages include/linux/gfp.h:492 [inline] pte_alloc_one+0x1b/0x120 arch/x86/mm/pgtable.c:30 __do_huge_pmd_anonymous_page mm/huge_memory.c:564 [inline] do_huge_pmd_anonymous_page+0x82b/0x1cc0 mm/huge_memory.c:728 create_huge_pmd mm/memory.c:3854 [inline] __handle_mm_fault+0x2d02/0x4310 mm/memory.c:4058 handle_mm_fault+0x53a/0xc70 mm/memory.c:4124 __do_page_fault+0x60b/0xe40 arch/x86/mm/fault.c:1399 do_page_fault+0xee/0x8a7 arch/x86/mm/fault.c:1474 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160 RIP: 0010:__put_user_4+0x1c/0x30 arch/x86/lib/putuser.S:68 RSP: 0018:ffff88019eec7d00 EFLAGS: 00010293 RAX: 0000000000000015 RBX: 00007fffffffeffd RCX: 0000000020000140 RDX: 00000000000000b8 RSI: ffffffff81a71a53 RDI: 0000000000000286 RBP: ffff88019eec7df0 R08: 1ffff10033dd8f7d R09: ffff88019eec7a28 R10: 0000000000000000 R11: ffff88019c828580 R12: 0000000000000015 R13: 0000000020000140 R14: 0000000000000001 R15: dffffc0000000000 __do_sys_socketpair net/socket.c:1459 [inline] __se_sys_socketpair net/socket.c:1456 [inline] __x64_sys_socketpair+0x97/0xf0 net/socket.c:1456 do_syscall_64+0x1b1/0x800 arch/x86/entry/common.c:287 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x455a09 RSP: 002b:00007f962e955c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 RAX: ffffffffffffffda RBX: 00007f962e9566d4 RCX: 0000000000455a09 RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000001e RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000014 R13: 00000000000006f0 R14: 00000000006fe720 R15: 0000000000000001 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 0 PID: 8929 Comm: syz-executor5 Not tainted 4.17.0-rc6+ #25 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1b9/0x294 lib/dump_stack.c:113 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold.4+0xa/0x1a lib/fault-inject.c:149 __should_failslab+0x124/0x180 mm/failslab.c:32 should_failslab+0x9/0x14 mm/slab_common.c:1522 slab_pre_alloc_hook mm/slab.h:423 [inline] slab_alloc mm/slab.c:3378 [inline] kmem_cache_alloc+0x2af/0x760 mm/slab.c:3552 ptlock_alloc+0x20/0x80 mm/memory.c:4712 ptlock_init include/linux/mm.h:1809 [inline] pgtable_page_ctor include/linux/mm.h:1843 [inline] pte_alloc_one+0x6b/0x120 arch/x86/mm/pgtable.c:33 __do_huge_pmd_anonymous_page mm/huge_memory.c:564 [inline] do_huge_pmd_anonymous_page+0x82b/0x1cc0 mm/huge_memory.c:728 create_huge_pmd mm/memory.c:3854 [inline] __handle_mm_fault+0x2d02/0x4310 mm/memory.c:4058 handle_mm_fault+0x53a/0xc70 mm/memory.c:4124 __do_page_fault+0x60b/0xe40 arch/x86/mm/fault.c:1399 do_page_fault+0xee/0x8a7 arch/x86/mm/fault.c:1474 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160 RIP: 0010:__put_user_4+0x1c/0x30 arch/x86/lib/putuser.S:68 RSP: 0018:ffff88019c25fd00 EFLAGS: 00010293 RAX: 0000000000000015 RBX: 00007fffffffeffd RCX: 0000000020000140 RDX: 00000000000000b8 RSI: ffffffff81a71a53 RDI: 0000000000000286 RBP: ffff88019c25fdf0 R08: 1ffff1003384bf7d R09: 0000000000000000 R10: 0000000000000000 R11: ffff8801cb142040 R12: 0000000000000015 R13: 0000000020000140 R14: 0000000000000001 R15: dffffc0000000000 __do_sys_socketpair net/socket.c:1459 [inline] __se_sys_socketpair net/socket.c:1456 [inline] __x64_sys_socketpair+0x97/0xf0 net/socket.c:1456 do_syscall_64+0x1b1/0x800 arch/x86/entry/common.c:287 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x455a09 RSP: 002b:00007f962e955c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 RAX: ffffffffffffffda RBX: 00007f962e9566d4 RCX: 0000000000455a09 RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000001e RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000014 R13: 00000000000006f0 R14: 00000000006fe720 R15: 0000000000000002 overlayfs: missing 'lowerdir'