====================================================== WARNING: possible circular locking dependency detected 4.14.284-syzkaller #0 Not tainted ------------------------------------------------------ kworker/u4:0/5 is trying to acquire lock: (sk_lock-AF_INET){+.+.}, at: [] do_strp_work net/strparser/strparser.c:415 [inline] (sk_lock-AF_INET){+.+.}, at: [] strp_work+0x3e/0x100 net/strparser/strparser.c:434 but task is already holding lock: ((&strp->work)){+.+.}, at: [] process_one_work+0x6e6/0x14a0 kernel/workqueue.c:2092 which lock already depends on the new lock. the existing dependency chain (in reverse order) is: -> #1 ((&strp->work)){+.+.}: flush_work+0xad/0x770 kernel/workqueue.c:2890 __cancel_work_timer+0x321/0x460 kernel/workqueue.c:2965 strp_done+0x53/0xd0 net/strparser/strparser.c:519 kcm_attach net/kcm/kcmsock.c:1429 [inline] kcm_attach_ioctl net/kcm/kcmsock.c:1490 [inline] kcm_ioctl+0x828/0xfb0 net/kcm/kcmsock.c:1701 sock_do_ioctl net/socket.c:974 [inline] sock_ioctl+0x2cc/0x4c0 net/socket.c:1071 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb -> #0 (sk_lock-AF_INET){+.+.}: lock_acquire+0x170/0x3f0 kernel/locking/lockdep.c:3998 lock_sock_nested+0xb7/0x100 net/core/sock.c:2813 do_strp_work net/strparser/strparser.c:415 [inline] strp_work+0x3e/0x100 net/strparser/strparser.c:434 process_one_work+0x793/0x14a0 kernel/workqueue.c:2117 worker_thread+0x5cc/0xff0 kernel/workqueue.c:2251 kthread+0x30d/0x420 kernel/kthread.c:232 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404 other info that might help us debug this: Possible unsafe locking scenario: CPU0 CPU1 ---- ---- lock((&strp->work)); lock(sk_lock-AF_INET); lock((&strp->work)); lock(sk_lock-AF_INET); *** DEADLOCK *** 2 locks held by kworker/u4:0/5: #0: ("%s""kstrp"){+.+.}, at: [] process_one_work+0x6b0/0x14a0 kernel/workqueue.c:2088 #1: ((&strp->work)){+.+.}, at: [] process_one_work+0x6e6/0x14a0 kernel/workqueue.c:2092 stack backtrace: CPU: 1 PID: 5 Comm: kworker/u4:0 Not tainted 4.14.284-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Workqueue: kstrp strp_work Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 print_circular_bug.constprop.0.cold+0x2d7/0x41e kernel/locking/lockdep.c:1258 check_prev_add kernel/locking/lockdep.c:1905 [inline] check_prevs_add kernel/locking/lockdep.c:2022 [inline] validate_chain kernel/locking/lockdep.c:2464 [inline] __lock_acquire+0x2e0e/0x3f20 kernel/locking/lockdep.c:3491 lock_acquire+0x170/0x3f0 kernel/locking/lockdep.c:3998 lock_sock_nested+0xb7/0x100 net/core/sock.c:2813 do_strp_work net/strparser/strparser.c:415 [inline] strp_work+0x3e/0x100 net/strparser/strparser.c:434 process_one_work+0x793/0x14a0 kernel/workqueue.c:2117 worker_thread+0x5cc/0xff0 kernel/workqueue.c:2251 kthread+0x30d/0x420 kernel/kthread.c:232 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404 audit: type=1800 audit(1656127237.523:48): pid=12751 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.5" name="file0" dev="sda1" ino=14211 res=0 audit: type=1804 audit(1656127237.543:49): pid=12751 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.5" name="/root/syzkaller-testdir3461471413/syzkaller.QAkWuU/67/file0" dev="sda1" ino=14211 res=1 audit: type=1804 audit(1656127237.543:50): pid=12751 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="ToMToU" comm="syz-executor.5" name="/root/syzkaller-testdir3461471413/syzkaller.QAkWuU/67/file0" dev="sda1" ino=14211 res=1 audit: type=1800 audit(1656127238.943:51): pid=12940 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.0" name="file0" dev="sda1" ino=14114 res=0 audit: type=1804 audit(1656127238.963:52): pid=12940 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.0" name="/root/syzkaller-testdir2905742503/syzkaller.emOCHL/74/file0" dev="sda1" ino=14114 res=1 audit: type=1804 audit(1656127238.973:53): pid=12940 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="ToMToU" comm="syz-executor.0" name="/root/syzkaller-testdir2905742503/syzkaller.emOCHL/74/file0" dev="sda1" ino=14114 res=1 audit: type=1800 audit(1656127239.413:54): pid=12970 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.2" name="file0" dev="sda1" ino=14171 res=0 FAULT_INJECTION: forcing a failure. name fail_page_alloc, interval 1, probability 0, space 0, times 1 CPU: 0 PID: 13132 Comm: syz-executor.4 Not tainted 4.14.284-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_fail_alloc_page mm/page_alloc.c:2898 [inline] prepare_alloc_pages mm/page_alloc.c:4131 [inline] __alloc_pages_nodemask+0x22c/0x2720 mm/page_alloc.c:4179 alloc_pages_current+0x155/0x260 mm/mempolicy.c:2107 alloc_pages include/linux/gfp.h:520 [inline] pte_alloc_one+0x15/0x100 arch/x86/mm/pgtable.c:30 do_huge_pmd_anonymous_page+0x500/0x1700 mm/huge_memory.c:692 create_huge_pmd mm/memory.c:3997 [inline] __handle_mm_fault+0x2ac4/0x4620 mm/memory.c:4200 handle_mm_fault+0x455/0x9c0 mm/memory.c:4266 __do_page_fault+0x549/0xad0 arch/x86/mm/fault.c:1442 page_fault+0x25/0x50 arch/x86/entry/entry_64.S:1123 RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20 arch/x86/lib/copy_user_64.S:181 RSP: 0018:ffff8880963bfaa8 EFLAGS: 00050246 RAX: 0000000000040000 RBX: ffff888058424880 RCX: 0000000000000040 RDX: 0000000000000040 RSI: 0000000020fe8000 RDI: ffff8880584248a8 RBP: 0000000020fe8000 R08: 0000000000000040 R09: ffff888058420540 R10: ffff8880584248e7 R11: ffff88809b576580 R12: 0000000000000040 R13: ffff8880584248a8 R14: ffff88804eac7580 R15: 0000000000000040 copy_user_generic arch/x86/include/asm/uaccess_64.h:37 [inline] raw_copy_from_user arch/x86/include/asm/uaccess_64.h:55 [inline] __copy_from_user include/linux/uaccess.h:75 [inline] kvm_read_guest_cached+0x18b/0x350 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2106 record_steal_time arch/x86/kvm/x86.c:2260 [inline] vcpu_enter_guest arch/x86/kvm/x86.c:7094 [inline] vcpu_run arch/x86/kvm/x86.c:7380 [inline] kvm_arch_vcpu_ioctl_run+0x2c49/0x5c80 arch/x86/kvm/x86.c:7547 kvm_vcpu_ioctl+0x3de/0xc50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2698 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f36947cc109 RSP: 002b:00007f3693141168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f36948def60 RCX: 00007f36947cc109 RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 RBP: 00007f36931411d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffded65733f R14: 00007f3693141300 R15: 0000000000022000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 1 CPU: 1 PID: 13180 Comm: syz-executor.4 Not tainted 4.14.284-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x28e/0x3c0 mm/slab.c:3550 ptlock_alloc+0x1d/0x70 mm/memory.c:4861 ptlock_init include/linux/mm.h:1764 [inline] pgtable_page_ctor include/linux/mm.h:1798 [inline] pte_alloc_one+0x57/0x100 arch/x86/mm/pgtable.c:33 do_huge_pmd_anonymous_page+0x500/0x1700 mm/huge_memory.c:692 create_huge_pmd mm/memory.c:3997 [inline] __handle_mm_fault+0x2ac4/0x4620 mm/memory.c:4200 handle_mm_fault+0x455/0x9c0 mm/memory.c:4266 __do_page_fault+0x549/0xad0 arch/x86/mm/fault.c:1442 page_fault+0x25/0x50 arch/x86/entry/entry_64.S:1123 RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20 arch/x86/lib/copy_user_64.S:181 RSP: 0018:ffff88805287faa8 EFLAGS: 00050246 RAX: 0000000000040000 RBX: ffff88805170cbc0 RCX: 0000000000000040 RDX: 0000000000000040 RSI: 0000000020fe8000 RDI: ffff88805170cbe8 RBP: 0000000020fe8000 R08: 0000000000000040 R09: ffff888051708880 R10: ffff88805170cc27 R11: ffff8880979c8540 R12: 0000000000000040 R13: ffff88805170cbe8 R14: ffff8880515a3800 R15: 0000000000000040 copy_user_generic arch/x86/include/asm/uaccess_64.h:37 [inline] raw_copy_from_user arch/x86/include/asm/uaccess_64.h:55 [inline] __copy_from_user include/linux/uaccess.h:75 [inline] kvm_read_guest_cached+0x18b/0x350 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2106 record_steal_time arch/x86/kvm/x86.c:2260 [inline] vcpu_enter_guest arch/x86/kvm/x86.c:7094 [inline] vcpu_run arch/x86/kvm/x86.c:7380 [inline] kvm_arch_vcpu_ioctl_run+0x2c49/0x5c80 arch/x86/kvm/x86.c:7547 kvm_vcpu_ioctl+0x3de/0xc50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2698 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f36947cc109 RSP: 002b:00007f3693141168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f36948def60 RCX: 00007f36947cc109 RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 RBP: 00007f36931411d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffded65733f R14: 00007f3693141300 R15: 0000000000022000 FAULT_INJECTION: forcing a failure. name fail_page_alloc, interval 1, probability 0, space 0, times 0 CPU: 1 PID: 13210 Comm: syz-executor.4 Not tainted 4.14.284-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_fail_alloc_page mm/page_alloc.c:2898 [inline] prepare_alloc_pages mm/page_alloc.c:4131 [inline] __alloc_pages_nodemask+0x22c/0x2720 mm/page_alloc.c:4179 __alloc_pages include/linux/gfp.h:484 [inline] __alloc_pages_node include/linux/gfp.h:497 [inline] alloc_pages_vma+0x4b3/0x6d0 mm/mempolicy.c:2064 do_huge_pmd_wp_page+0x7c6/0x4730 mm/huge_memory.c:1287 wp_huge_pmd mm/memory.c:4006 [inline] __handle_mm_fault+0x20b2/0x4620 mm/memory.c:4219 handle_mm_fault+0x455/0x9c0 mm/memory.c:4266 __do_page_fault+0x549/0xad0 arch/x86/mm/fault.c:1442 page_fault+0x25/0x50 arch/x86/entry/entry_64.S:1123 RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20 arch/x86/lib/copy_user_64.S:181 RSP: 0018:ffff888051547a90 EFLAGS: 00050246 RAX: 0000000000040000 RBX: 0000000000000000 RCX: 0000000000000040 RDX: 0000000000000040 RSI: ffff888051c7cc68 RDI: 0000000020fe8000 RBP: ffff888051c7cc40 R08: 0000000000000040 R09: ffff888051c78900 R10: ffff888051c7cca7 R11: ffff8880999c65c0 R12: 0000000000000040 R13: ffff888051c7cc68 R14: ffff888050ac4880 R15: 0000000020fe8000 copy_user_generic arch/x86/include/asm/uaccess_64.h:37 [inline] raw_copy_to_user arch/x86/include/asm/uaccess_64.h:112 [inline] __copy_to_user include/linux/uaccess.h:105 [inline] kvm_write_guest_offset_cached+0x1d9/0x3d0 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2073 record_steal_time arch/x86/kvm/x86.c:2271 [inline] vcpu_enter_guest arch/x86/kvm/x86.c:7094 [inline] vcpu_run arch/x86/kvm/x86.c:7380 [inline] kvm_arch_vcpu_ioctl_run+0x2cfc/0x5c80 arch/x86/kvm/x86.c:7547 kvm_vcpu_ioctl+0x3de/0xc50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2698 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f36947cc109 RSP: 002b:00007f3693141168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f36948def60 RCX: 00007f36947cc109 RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 RBP: 00007f36931411d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffded65733f R14: 00007f3693141300 R15: 0000000000022000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 0 PID: 13268 Comm: syz-executor.4 Not tainted 4.14.284-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x28e/0x3c0 mm/slab.c:3550 kmem_cache_zalloc include/linux/slab.h:651 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:977 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:969 [inline] mmu_topup_memory_caches+0x83/0x300 arch/x86/kvm/mmu.c:1023 kvm_mmu_load+0x1e/0xd00 arch/x86/kvm/mmu.c:4820 kvm_mmu_reload arch/x86/kvm/mmu.h:86 [inline] vcpu_enter_guest arch/x86/kvm/x86.c:7181 [inline] vcpu_run arch/x86/kvm/x86.c:7380 [inline] kvm_arch_vcpu_ioctl_run+0x370e/0x5c80 arch/x86/kvm/x86.c:7547 kvm_vcpu_ioctl+0x3de/0xc50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2698 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f36947cc109 RSP: 002b:00007f3693141168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f36948def60 RCX: 00007f36947cc109 RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 RBP: 00007f36931411d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffded65733f R14: 00007f3693141300 R15: 0000000000022000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 1 PID: 13339 Comm: syz-executor.4 Not tainted 4.14.284-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x28e/0x3c0 mm/slab.c:3550 kmem_cache_zalloc include/linux/slab.h:651 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:977 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:969 [inline] mmu_topup_memory_caches+0x83/0x300 arch/x86/kvm/mmu.c:1023 kvm_mmu_load+0x1e/0xd00 arch/x86/kvm/mmu.c:4820 kvm_mmu_reload arch/x86/kvm/mmu.h:86 [inline] vcpu_enter_guest arch/x86/kvm/x86.c:7181 [inline] vcpu_run arch/x86/kvm/x86.c:7380 [inline] kvm_arch_vcpu_ioctl_run+0x370e/0x5c80 arch/x86/kvm/x86.c:7547 kvm_vcpu_ioctl+0x3de/0xc50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2698 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f36947cc109 RSP: 002b:00007f3693141168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f36948def60 RCX: 00007f36947cc109 RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 RBP: 00007f36931411d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffded65733f R14: 00007f3693141300 R15: 0000000000022000 unregister_netdevice: waiting for ip6gre0 to become free. Usage count = -1 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 1 PID: 13404 Comm: syz-executor.4 Not tainted 4.14.284-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x28e/0x3c0 mm/slab.c:3550 kmem_cache_zalloc include/linux/slab.h:651 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:977 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:969 [inline] mmu_topup_memory_caches+0x83/0x300 arch/x86/kvm/mmu.c:1023 kvm_mmu_load+0x1e/0xd00 arch/x86/kvm/mmu.c:4820 kvm_mmu_reload arch/x86/kvm/mmu.h:86 [inline] vcpu_enter_guest arch/x86/kvm/x86.c:7181 [inline] vcpu_run arch/x86/kvm/x86.c:7380 [inline] kvm_arch_vcpu_ioctl_run+0x370e/0x5c80 arch/x86/kvm/x86.c:7547 kvm_vcpu_ioctl+0x3de/0xc50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2698 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f36947cc109 RSP: 002b:00007f3693141168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f36948def60 RCX: 00007f36947cc109 RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 RBP: 00007f36931411d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffded65733f R14: 00007f3693141300 R15: 0000000000022000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 0 PID: 13455 Comm: syz-executor.4 Not tainted 4.14.284-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x28e/0x3c0 mm/slab.c:3550 kmem_cache_zalloc include/linux/slab.h:651 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:977 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:969 [inline] mmu_topup_memory_caches+0x83/0x300 arch/x86/kvm/mmu.c:1023 kvm_mmu_load+0x1e/0xd00 arch/x86/kvm/mmu.c:4820 kvm_mmu_reload arch/x86/kvm/mmu.h:86 [inline] vcpu_enter_guest arch/x86/kvm/x86.c:7181 [inline] vcpu_run arch/x86/kvm/x86.c:7380 [inline] kvm_arch_vcpu_ioctl_run+0x370e/0x5c80 arch/x86/kvm/x86.c:7547 kvm_vcpu_ioctl+0x3de/0xc50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2698 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f36947cc109 RSP: 002b:00007f3693141168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f36948def60 RCX: 00007f36947cc109 RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 RBP: 00007f36931411d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffded65733f R14: 00007f3693141300 R15: 0000000000022000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 0 PID: 13495 Comm: syz-executor.4 Not tainted 4.14.284-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x28e/0x3c0 mm/slab.c:3550 kmem_cache_zalloc include/linux/slab.h:651 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:977 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:969 [inline] mmu_topup_memory_caches+0x83/0x300 arch/x86/kvm/mmu.c:1023 kvm_mmu_load+0x1e/0xd00 arch/x86/kvm/mmu.c:4820 kvm_mmu_reload arch/x86/kvm/mmu.h:86 [inline] vcpu_enter_guest arch/x86/kvm/x86.c:7181 [inline] vcpu_run arch/x86/kvm/x86.c:7380 [inline] kvm_arch_vcpu_ioctl_run+0x370e/0x5c80 arch/x86/kvm/x86.c:7547 kvm_vcpu_ioctl+0x3de/0xc50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2698 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f36947cc109 RSP: 002b:00007f3693141168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f36948def60 RCX: 00007f36947cc109 RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 RBP: 00007f36931411d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffded65733f R14: 00007f3693141300 R15: 0000000000022000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 1 PID: 13548 Comm: syz-executor.4 Not tainted 4.14.284-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x28e/0x3c0 mm/slab.c:3550 kmem_cache_zalloc include/linux/slab.h:651 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:977 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:969 [inline] mmu_topup_memory_caches+0x83/0x300 arch/x86/kvm/mmu.c:1023 kvm_mmu_load+0x1e/0xd00 arch/x86/kvm/mmu.c:4820 kvm_mmu_reload arch/x86/kvm/mmu.h:86 [inline] vcpu_enter_guest arch/x86/kvm/x86.c:7181 [inline] vcpu_run arch/x86/kvm/x86.c:7380 [inline] kvm_arch_vcpu_ioctl_run+0x370e/0x5c80 arch/x86/kvm/x86.c:7547 kvm_vcpu_ioctl+0x3de/0xc50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2698 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f36947cc109 RSP: 002b:00007f3693141168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f36948def60 RCX: 00007f36947cc109 RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 RBP: 00007f36931411d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 R13: 00007ffded65733f R14: 00007f3693141300 R15: 0000000000022000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 1 PID: 13594 Comm: syz-executor.4 Not tainted 4.14.284-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x28e/0x3c0 mm/slab.c:3550 kmem_cache_zalloc include/linux/slab.h:651 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:977 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:969 [inline] mmu_topup_memory_caches+0x83/0x300 arch/x86/kvm/mmu.c:1023 kvm_mmu_load+0x1e/0xd00 arch/x86/kvm/mmu.c:4820 kvm_mmu_reload arch/x86/kvm/mmu.h:86 [inline] vcpu_enter_guest arch/x86/kvm/x86.c:7181 [inline] vcpu_run arch/x86/kvm/x86.c:7380 [inline] kvm_arch_vcpu_ioctl_run+0x370e/0x5c80 arch/x86/kvm/x86.c:7547 kvm_vcpu_ioctl+0x3de/0xc50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2698 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f36947cc109 RSP: 002b:00007f3693141168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f36948def60 RCX: 00007f36947cc109 RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 RBP: 00007f36931411d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 R13: 00007ffded65733f R14: 00007f3693141300 R15: 0000000000022000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 0 PID: 13653 Comm: syz-executor.4 Not tainted 4.14.284-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x28e/0x3c0 mm/slab.c:3550 kmem_cache_zalloc include/linux/slab.h:651 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:977 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:969 [inline] mmu_topup_memory_caches+0x83/0x300 arch/x86/kvm/mmu.c:1023 kvm_mmu_load+0x1e/0xd00 arch/x86/kvm/mmu.c:4820 kvm_mmu_reload arch/x86/kvm/mmu.h:86 [inline] vcpu_enter_guest arch/x86/kvm/x86.c:7181 [inline] vcpu_run arch/x86/kvm/x86.c:7380 [inline] kvm_arch_vcpu_ioctl_run+0x370e/0x5c80 arch/x86/kvm/x86.c:7547 kvm_vcpu_ioctl+0x3de/0xc50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2698 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f36947cc109 RSP: 002b:00007f3693141168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f36948def60 RCX: 00007f36947cc109 RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 RBP: 00007f36931411d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 R13: 00007ffded65733f R14: 00007f3693141300 R15: 0000000000022000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 0 PID: 13692 Comm: syz-executor.4 Not tainted 4.14.284-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x28e/0x3c0 mm/slab.c:3550 kmem_cache_zalloc include/linux/slab.h:651 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:977 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:969 [inline] mmu_topup_memory_caches+0x83/0x300 arch/x86/kvm/mmu.c:1023 kvm_mmu_load+0x1e/0xd00 arch/x86/kvm/mmu.c:4820 kvm_mmu_reload arch/x86/kvm/mmu.h:86 [inline] vcpu_enter_guest arch/x86/kvm/x86.c:7181 [inline] vcpu_run arch/x86/kvm/x86.c:7380 [inline] kvm_arch_vcpu_ioctl_run+0x370e/0x5c80 arch/x86/kvm/x86.c:7547 kvm_vcpu_ioctl+0x3de/0xc50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2698 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f36947cc109 RSP: 002b:00007f3693141168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f36948def60 RCX: 00007f36947cc109 RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 RBP: 00007f36931411d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 R13: 00007ffded65733f R14: 00007f3693141300 R15: 0000000000022000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 1 PID: 13742 Comm: syz-executor.4 Not tainted 4.14.284-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x28e/0x3c0 mm/slab.c:3550 kmem_cache_zalloc include/linux/slab.h:651 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:977 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:969 [inline] mmu_topup_memory_caches+0x83/0x300 arch/x86/kvm/mmu.c:1023 kvm_mmu_load+0x1e/0xd00 arch/x86/kvm/mmu.c:4820 kvm_mmu_reload arch/x86/kvm/mmu.h:86 [inline] vcpu_enter_guest arch/x86/kvm/x86.c:7181 [inline] vcpu_run arch/x86/kvm/x86.c:7380 [inline] kvm_arch_vcpu_ioctl_run+0x370e/0x5c80 arch/x86/kvm/x86.c:7547 kvm_vcpu_ioctl+0x3de/0xc50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2698 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f36947cc109 RSP: 002b:00007f3693141168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f36948def60 RCX: 00007f36947cc109 RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 RBP: 00007f36931411d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 R13: 00007ffded65733f R14: 00007f3693141300 R15: 0000000000022000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 0 PID: 13799 Comm: syz-executor.4 Not tainted 4.14.284-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0x10a/0x149 lib/fault-inject.c:149 should_failslab+0xd6/0x130 mm/failslab.c:32 slab_pre_alloc_hook mm/slab.h:421 [inline] slab_alloc mm/slab.c:3376 [inline] kmem_cache_alloc+0x28e/0x3c0 mm/slab.c:3550 kmem_cache_zalloc include/linux/slab.h:651 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:977 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:969 [inline] mmu_topup_memory_caches+0x83/0x300 arch/x86/kvm/mmu.c:1023 kvm_mmu_load+0x1e/0xd00 arch/x86/kvm/mmu.c:4820 kvm_mmu_reload arch/x86/kvm/mmu.h:86 [inline] vcpu_enter_guest arch/x86/kvm/x86.c:7181 [inline] vcpu_run arch/x86/kvm/x86.c:7380 [inline] kvm_arch_vcpu_ioctl_run+0x370e/0x5c80 arch/x86/kvm/x86.c:7547 kvm_vcpu_ioctl+0x3de/0xc50 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2698 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:500 [inline] do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684 SYSC_ioctl fs/ioctl.c:701 [inline] SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f36947cc109 RSP: 002b:00007f3693141168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f36948def60 RCX: 00007f36947cc109 RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 RBP: 00007f36931411d0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 R13: 00007ffded65733f R14: 00007f3693141300 R15: 0000000000022000 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 CPU: 1 PID: 13855 Comm: syz-executor.4 Not tainted 4.14.284-syzkaller #0