audit: type=1400 audit(1556842857.273:141771): avc: denied { net_admin } for pid=31885 comm="syz-executor.3" capability=12 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 audit: type=1400 audit(1556842857.273:141772): avc: denied { net_admin } for pid=31885 comm="syz-executor.3" capability=12 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1 INFO: task init:12976 blocked for more than 140 seconds. Not tainted 4.9.141+ #1 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. init D28848 12976 1 0x00000000 ffff8801a0b38000 ffff8801cefa2c00 ffff8801c683d800 ffff8801cece4740 ffff8801db721018 ffff8801d6e47580 ffffffff828075c2 ffff8801a0b388b0 000000000000015c 0000000000000000 0000000000000000 ffff8801db7218f0 Call Trace: [] schedule+0x7f/0x1b0 kernel/sched/core.c:3553 [] schedule_timeout+0x735/0xe20 kernel/time/timer.c:1771 [] __down_common kernel/locking/semaphore.c:221 [inline] [] __down+0x191/0x2b0 kernel/locking/semaphore.c:238 [] down+0x5e/0x80 kernel/locking/semaphore.c:61 [] console_lock+0x2c/0x80 kernel/printk/printk.c:2217 [] console_device+0x1c/0xc0 kernel/printk/printk.c:2554 [] tty_lookup_driver drivers/tty/tty_io.c:2008 [inline] [] tty_open_by_driver drivers/tty/tty_io.c:2053 [inline] [] tty_open+0x6f5/0xdf0 drivers/tty/tty_io.c:2130 [] chrdev_open+0x22d/0x5c0 fs/char_dev.c:392 [] do_dentry_open+0x3ef/0xc90 fs/open.c:766 [] vfs_open+0x11c/0x210 fs/open.c:879 [] do_last fs/namei.c:3410 [inline] [] path_openat+0x542/0x2790 fs/namei.c:3534 [] do_filp_open+0x197/0x270 fs/namei.c:3568 [] do_sys_open+0x30d/0x5c0 fs/open.c:1072 [] SYSC_open fs/open.c:1090 [inline] [] SyS_open+0x2d/0x40 fs/open.c:1085 [] do_syscall_64+0x19f/0x550 arch/x86/entry/common.c:285 [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb Showing all locks held in the system: 2 locks held by khungtaskd/24: #0: (rcu_read_lock){......}, at: [] check_hung_uninterruptible_tasks kernel/hung_task.c:168 [inline] #0: (rcu_read_lock){......}, at: [] watchdog+0x11c/0xa20 kernel/hung_task.c:239 #1: (tasklist_lock){.+.+..}, at: [] debug_show_all_locks+0x79/0x218 kernel/locking/lockdep.c:4336 1 lock held by rsyslogd/1914: #0: (&f->f_pos_lock){+.+.+.}, at: [] __fdget_pos+0xac/0xd0 fs/file.c:781 2 locks held by getty/2042: #0: (&tty->ldisc_sem){++++++}, at: [] ldsem_down_read+0x32/0x40 drivers/tty/tty_ldsem.c:367 #1: (&ldata->atomic_read_lock){+.+.+.}, at: [] n_tty_read+0x202/0x16e0 drivers/tty/n_tty.c:2142 1 lock held by init/12976: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/14827: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/14828: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/15857: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/15969: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by init/16042: #0: (tty_mutex){+.+.+.}, at: [] tty_open_by_driver drivers/tty/tty_io.c:2052 [inline] #0: (tty_mutex){+.+.+.}, at: [] tty_open+0x476/0xdf0 drivers/tty/tty_io.c:2130 1 lock held by syz-executor.3/23584: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/30330: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/31074: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/31139: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/31312: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/31852: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/31889: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/31894: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/32013: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/32023: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/32087: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/720: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/734: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/744: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/750: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/757: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/850: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/1472: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/3156: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/3162: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/3187: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/3201: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/3203: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/3204: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/3207: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/3212: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/3244: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/3392: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/3589: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/3957: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/4306: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/4401: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/4411: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/4422: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/4428: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/4468: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/4639: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/4641: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/4663: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/4678: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/4683: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/4736: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/4744: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/4749: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/4813: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/4874: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/4881: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/4887: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/4930: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/4938: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/4939: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/4940: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/4974: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/4975: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/4987: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5003: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5019: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5020: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5030: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/5037: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5043: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/5058: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5061: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5068: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5071: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5074: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5078: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 4 locks held by syz-executor.3/5079: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 4 locks held by syz-executor.3/5083: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5086: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5090: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5101: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5122: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 4 locks held by syz-executor.3/5127: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5128: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5129: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5130: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5132: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5134: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5136: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5137: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5142: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/5144: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5145: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5146: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5151: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/5163: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 4 locks held by syz-executor.3/5167: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 4 locks held by syz-executor.3/5169: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5171: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5173: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/5179: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5181: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5184: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5185: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5190: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/5191: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5195: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5197: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5201: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5207: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5209: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5211: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5214: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5220: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5234: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5235: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5237: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5238: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5240: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5241: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5243: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5252: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5255: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5258: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5261: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5263: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5281: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5284: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5314: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5851: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5868: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5873: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5875: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5879: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/5882: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5887: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5888: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5889: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5890: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5891: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5894: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5895: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5896: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5898: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5901: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5902: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5903: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5908: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5909: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 4 locks held by syz-executor.3/5910: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5911: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5912: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5914: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5915: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5916: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5918: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5917: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5920: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/5919: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 4 locks held by syz-executor.3/5921: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5922: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5923: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5924: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5925: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5926: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 4 locks held by syz-executor.3/5927: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5929: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5930: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5931: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5932: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5933: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5934: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5937: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5939: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/5940: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5941: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5942: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5943: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5944: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5945: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5946: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5948: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5949: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5951: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5952: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5953: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5955: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5957: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5958: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5959: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5960: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5962: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 4 locks held by syz-executor.3/5961: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5963: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5964: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5965: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/5966: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5968: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/5969: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5970: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5972: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5973: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/5975: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5976: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5977: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5978: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5979: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5980: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5981: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5982: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5984: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5985: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5989: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5990: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5991: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5992: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5993: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/5994: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5995: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/5996: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/5997: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 4 locks held by syz-executor.3/5998: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/5999: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6000: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/6003: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/6004: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6005: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/6006: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/6007: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6008: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/6009: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 4 locks held by syz-executor.3/6010: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/6011: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/6012: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/6014: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6013: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6015: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6016: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6017: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6018: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6019: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6021: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6022: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6025: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6027: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6028: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6031: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6033: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6034: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6035: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6036: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6038: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6039: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6041: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6042: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6049: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/6050: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7183: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7256: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7285: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7293: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7295: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7298: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7299: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7301: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7300: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7302: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7310: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7314: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7317: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7320: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7322: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7324: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7325: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7326: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7327: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7328: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7329: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7330: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7333: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7334: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7336: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7337: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7338: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7340: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7341: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7344: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7345: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7347: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7348: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7349: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7350: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7351: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7352: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7354: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7355: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7356: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7360: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7362: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7363: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7369: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7371: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7374: #0: (&anon_vma->rwsem){++++..}, at: [] anon_vma_lock_write include/linux/rmap.h:117 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] anon_vma_free mm/rmap.c:116 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] __put_anon_vma+0x1d8/0x2c0 mm/rmap.c:1806 1 lock held by syz-executor.3/7375: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7376: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7378: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7381: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7380: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7382: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7383: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7384: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7385: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7387: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7390: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7391: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7392: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7393: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7395: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7396: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7399: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7401: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7402: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7408: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7410: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/7411: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/7412: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7413: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7416: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7420: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7422: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7425: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/7424: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/7427: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7428: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7430: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/7431: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/7432: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7433: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 4 locks held by syz-executor.3/7434: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/7435: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7436: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7439: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7438: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7440: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7442: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7441: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7444: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7443: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7446: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7447: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7448: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7449: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7450: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7451: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7452: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7453: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7454: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7456: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7455: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7457: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7458: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7459: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7462: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7463: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7464: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7465: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7466: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7468: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7469: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7470: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/7471: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/7472: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7473: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7475: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7476: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7477: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7478: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7479: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7480: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7481: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7482: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7483: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7485: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 4 locks held by syz-executor.3/7486: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/7487: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7488: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7489: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/7491: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/7492: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7494: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7495: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7497: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7496: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7498: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7501: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7500: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7502: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7503: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7504: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7505: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7507: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7506: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7508: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7509: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7510: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7511: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7512: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7513: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7514: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7515: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 1 lock held by syz-executor.3/7516: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7517: #0: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #0: (&anon_vma->rwsem){++++..}, at: [] unlink_anon_vmas+0x184/0x840 mm/rmap.c:385 4 locks held by syz-executor.3/7518: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/7521: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/7520: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 4 locks held by syz-executor.3/7522: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/7523: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7525: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7524: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7526: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7527: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/7528: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/7529: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7530: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7531: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7533: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7534: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7535: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7536: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7537: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/7538: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/7539: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7540: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/7542: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/7543: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7545: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/7546: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/7547: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7548: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 4 locks held by syz-executor.3/7549: #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mmap kernel/fork.c:573 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] dup_mm kernel/fork.c:1156 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_mm kernel/fork.c:1210 [inline] #0: (&dup_mmap_sem){.+.+.+}, at: [] copy_process.part.8+0x3d95/0x6a10 kernel/fork.c:1692 #1: (&mm->mmap_sem){++++++}, at: [] dup_mmap kernel/fork.c:574 [inline] #1: (&mm->mmap_sem){++++++}, at: [] dup_mm kernel/fork.c:1156 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_mm kernel/fork.c:1210 [inline] #1: (&mm->mmap_sem){++++++}, at: [] copy_process.part.8+0x3db0/0x6a10 kernel/fork.c:1692 #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mmap kernel/fork.c:583 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] dup_mm kernel/fork.c:1156 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_mm kernel/fork.c:1210 [inline] #2: (&mm->mmap_sem/1){+.+.+.}, at: [] copy_process.part.8+0x3df9/0x6a10 kernel/fork.c:1692 #3: (&anon_vma->rwsem){++++..}, at: [] lock_anon_vma_root mm/rmap.c:235 [inline] #3: (&anon_vma->rwsem){++++..}, at: [] anon_vma_clone+0x143/0x4b0 mm/rmap.c:275 1 lock held by syz-executor.3/7551: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7550: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7552: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7553: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7554: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7555: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7556: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7557: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7559: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7558: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7560: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7562: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7564: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7565: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7566: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7567: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7569: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7570: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7571: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7572: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7573: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7574: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7576: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7577: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7578: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7579: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7580: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7583: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7584: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7586: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7588: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7589: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7590: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7591: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7592: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7593: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7594: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7595: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7596: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7597: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7600: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7603: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7604: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7605: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7606: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7607: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7608: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7609: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7612: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7615: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7616: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7617: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7619: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7620: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7621: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7623: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7624: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7625: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7627: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7629: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7633: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 1 lock held by syz-executor.3/7634: #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] __blocking_notifier_call_chain kernel/notifier.c:316 [inline] #0: ((task_exit_notifier).rwsem){.+.+..}, at: [] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:328 ============================================= NMI backtrace for cpu 1 CPU: 1 PID: 24 Comm: khungtaskd Not tainted 4.9.141+ #1 ffff8801d9907d08 ffffffff81b42e79 0000000000000000 0000000000000001 0000000000000001 0000000000000001 ffffffff810983b0 ffff8801d9907d40 ffffffff81b4df89 0000000000000001 0000000000000000 0000000000000002 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] nmi_cpu_backtrace.cold.0+0x48/0x87 lib/nmi_backtrace.c:99 [] nmi_trigger_cpumask_backtrace+0x12c/0x151 lib/nmi_backtrace.c:60 [] arch_trigger_cpumask_backtrace+0x14/0x20 arch/x86/kernel/apic/hw_nmi.c:37 [] trigger_all_cpu_backtrace include/linux/nmi.h:58 [inline] [] check_hung_task kernel/hung_task.c:125 [inline] [] check_hung_uninterruptible_tasks kernel/hung_task.c:182 [inline] [] watchdog+0x6ad/0xa20 kernel/hung_task.c:239 [] kthread+0x26d/0x300 kernel/kthread.c:211 [] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373 Sending NMI from CPU 1 to CPUs 0: NMI backtrace for cpu 0 CPU: 0 PID: 5888 Comm: syz-executor.3 Not tainted 4.9.141+ #1 task: ffff8801a1e04740 task.stack: ffff880120f00000 RIP: 0010:[] c [] zap_pte_range mm/memory.c:1129 [inline] RIP: 0010:[] c [] zap_pmd_range mm/memory.c:1249 [inline] RIP: 0010:[] c [] zap_pud_range mm/memory.c:1270 [inline] RIP: 0010:[] c [] unmap_page_range+0x9fe/0x1680 mm/memory.c:1291 RSP: 0018:ffff880120f07718 EFLAGS: 00000246 RAX: ffffea0006b7db00 RBX: 00007ff49b46f000 RCX: 0000000000000000 RDX: 0000000000000000 RSI: ffffffff81496ab2 RDI: 80000001adf6c007 RBP: ffff880120f07868 R08: ffff8801a1e05010 R09: fe0a7008cd4e2740 R10: ffff8801a1e04740 R11: 0000000000000001 R12: 00007ff49b470000 R13: 0000000000001049 R14: ffffea00072514c0 R15: ffff8801a7804378 FS: 0000000000000000(0000) GS:ffff8801db600000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000000000000000f CR3: 0000000140e5b000 CR4: 00000000001606b0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Stack: 1ffff100241e0efcc dffffc0000000003c fffffbfff067cf3ac 0000000000000019c 00007ff49b511fffc 00007ff49b511fffc 00007ff49b511fffc 00007ff49b512000c 00000000a1e0503ac ffffed003a7426dac ffff880126cae318c 00007ff49b512000c Call Trace: [] unmap_single_vma+0x11c/0x170 mm/memory.c:1336 [] unmap_vmas+0x81/0xd0 mm/memory.c:1366 [] exit_mmap+0x1cc/0x3a0 mm/mmap.c:3021 [] __mmput kernel/fork.c:884 [inline] [] mmput+0xcd/0x360 kernel/fork.c:906 [] exit_mm kernel/exit.c:514 [inline] [] do_exit+0x6c9/0x2a50 kernel/exit.c:820 [] do_group_exit+0x111/0x300 kernel/exit.c:937 [] get_signal+0x4e1/0x1460 kernel/signal.c:2321 [] do_signal+0x95/0x1b00 arch/x86/kernel/signal.c:807 [] exit_to_usermode_loop+0x10e/0x150 arch/x86/entry/common.c:158 [] prepare_exit_to_usermode arch/x86/entry/common.c:194 [inline] [] syscall_return_slowpath arch/x86/entry/common.c:263 [inline] [] do_syscall_64+0x3e2/0x550 arch/x86/entry/common.c:290 [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb Code: ce9 cb2 cfd cff cff ce8 cd3 c23 ce8 cff c48 c8b cbd c38 cff cff cff c4c c89 ce2 c48 c89 cde c4c c8d ca3 c00 c10 c00 c00 ce8 cfa cd2 cff cff c48 c83 cbd c58 cff cff cff c00 c<49> c89 cc6 c0f c85 c17 c08 c00 c00 ce8 ca4 c23 ce8 cff c48 c8b c85 c70 cff cff cff c