tmpfs: Bad value 'prefer=relative:0/4:2' for mount option 'mpol' BUG: MAX_LOCKDEP_CHAINS too low! turning off the locking correctness validator. CPU: 1 PID: 19963 Comm: syz-executor.0 Not tainted 4.19.211-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1fc/0x2ef lib/dump_stack.c:118 add_chain_cache kernel/locking/lockdep.c:2259 [inline] lookup_chain_cache_add kernel/locking/lockdep.c:2371 [inline] validate_chain kernel/locking/lockdep.c:2391 [inline] __lock_acquire.cold+0x420/0x57e kernel/locking/lockdep.c:3416 lock_acquire+0x170/0x3c0 kernel/locking/lockdep.c:3908 __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline] _raw_spin_lock_irqsave+0x8c/0xc0 kernel/locking/spinlock.c:152 lock_hrtimer_base kernel/time/hrtimer.c:174 [inline] hrtimer_start_range_ns+0xe6/0xd60 kernel/time/hrtimer.c:1180 perf_swevent_start_hrtimer kernel/events/core.c:9276 [inline] cpu_clock_event_start kernel/events/core.c:9346 [inline] cpu_clock_event_add+0xbd/0xe0 kernel/events/core.c:9358 event_sched_in+0x414/0xdb0 kernel/events/core.c:2288 group_sched_in+0xbe/0x370 kernel/events/core.c:2324 flexible_sched_in+0x5e3/0x9f0 kernel/events/core.c:3330 visit_groups_merge.isra.0+0x2f3/0x550 kernel/events/core.c:3278 ctx_flexible_sched_in kernel/events/core.c:3367 [inline] ctx_sched_in+0x2f0/0x790 kernel/events/core.c:3412 perf_event_sched_in+0x69/0xa0 kernel/events/core.c:2433 perf_event_context_sched_in kernel/events/core.c:3452 [inline] __perf_event_task_sched_in+0x6a7/0x9b0 kernel/events/core.c:3491 perf_event_task_sched_in include/linux/perf_event.h:1115 [inline] finish_task_switch+0x437/0x760 kernel/sched/core.c:2676 context_switch kernel/sched/core.c:2831 [inline] __schedule+0x88f/0x2040 kernel/sched/core.c:3517 preempt_schedule_irq+0xb0/0x140 kernel/sched/core.c:3744 retint_kernel+0x1b/0x2d RIP: 0010:rcu_is_watching+0x1/0xc0 kernel/rcu/tree.c:1021 Code: 00 e9 24 f4 ff ff 48 8b bc 24 a8 00 00 00 e8 f6 d7 46 00 e9 f4 f3 ff ff 48 8b 7c 24 18 e8 07 d9 46 00 e9 c8 f3 ff ff 66 90 55 <53> 48 83 ec 08 65 ff 05 13 53 b0 7e e8 2e 94 25 02 48 c7 c3 c0 2a RSP: 0018:ffff888093c27730 EFLAGS: 00000216 ORIG_RAX: ffffffffffffff13 RAX: 0000000000040000 RBX: 0000000000000000 RCX: ffffc90009050000 RDX: 0000000000004473 RSI: ffffffff816d11a9 RDI: 0000000000000001 RBP: 00007f627ff0b0f9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000074071 R12: 0000000000000000 R13: 0000000000000000 R14: ffff88813bff01c0 R15: 0000000000000010 rcu_read_unlock include/linux/rcupdate.h:677 [inline] is_bpf_text_address+0x10e/0x1b0 kernel/bpf/core.c:548 kernel_text_address kernel/extable.c:152 [inline] kernel_text_address+0xbd/0xf0 kernel/extable.c:122 __kernel_text_address+0x9/0x30 kernel/extable.c:107 unwind_get_return_address arch/x86/kernel/unwind_orc.c:297 [inline] unwind_get_return_address+0x51/0x90 arch/x86/kernel/unwind_orc.c:292 __save_stack_trace+0xaf/0x190 arch/x86/kernel/stacktrace.c:45 save_stack mm/kasan/kasan.c:448 [inline] set_track mm/kasan/kasan.c:460 [inline] kasan_kmalloc+0xeb/0x160 mm/kasan/kasan.c:553 kmem_cache_alloc_node_trace+0x151/0x3b0 mm/slab.c:3668 __do_kmalloc_node mm/slab.c:3688 [inline] __kmalloc_node+0x38/0x70 mm/slab.c:3696 kmalloc_node include/linux/slab.h:557 [inline] kvmalloc_node+0x61/0xf0 mm/util.c:423 kvmalloc include/linux/mm.h:577 [inline] memcg_init_list_lru_node mm/list_lru.c:365 [inline] memcg_init_list_lru mm/list_lru.c:456 [inline] __list_lru_init+0x4c6/0x7f0 mm/list_lru.c:624 alloc_super fs/super.c:269 [inline] sget_userns+0x810/0xcd0 fs/super.c:519 kernfs_mount_ns+0x11b/0x890 fs/kernfs/mount.c:325 sysfs_mount+0xd3/0x1c0 fs/sysfs/mount.c:36 mount_fs+0xa3/0x310 fs/super.c:1261 vfs_kern_mount.part.0+0x68/0x470 fs/namespace.c:961 vfs_kern_mount fs/namespace.c:951 [inline] do_new_mount fs/namespace.c:2492 [inline] do_mount+0x115c/0x2f50 fs/namespace.c:2822 ksys_mount+0xcf/0x130 fs/namespace.c:3038 __do_sys_mount fs/namespace.c:3052 [inline] __se_sys_mount fs/namespace.c:3049 [inline] __x64_sys_mount+0xba/0x150 fs/namespace.c:3049 do_syscall_64+0xf9/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7f627ff0b0f9 Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f627e45c168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f628002b050 RCX: 00007f627ff0b0f9 RDX: 0000000020000100 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f627ff66ae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffccfc7168f R14: 00007f627e45c300 R15: 0000000000022000 netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. audit: type=1804 audit(1678073245.697:813): pid=20061 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir2596182859/syzkaller.tq0Ifn/102/bus" dev="sda1" ino=14021 res=1 netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. netlink: 40 bytes leftover after parsing attributes in process `syz-executor.5'. audit: type=1804 audit(1678073246.967:814): pid=20134 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir2596182859/syzkaller.tq0Ifn/104/bus" dev="sda1" ino=13893 res=1 netlink: 40 bytes leftover after parsing attributes in process `syz-executor.5'. netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. hub 9-0:1.0: USB hub found hub 9-0:1.0: 8 ports detected audit: type=1804 audit(1678073247.747:815): pid=20165 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir4094027899/syzkaller.J4QdL8/3277/bus" dev="sda1" ino=14007 res=1 netlink: 40 bytes leftover after parsing attributes in process `syz-executor.5'. netlink: 40 bytes leftover after parsing attributes in process `syz-executor.5'. audit: type=1804 audit(1678073247.817:816): pid=20181 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir4094027899/syzkaller.J4QdL8/3277/bus" dev="sda1" ino=14007 res=1 audit: type=1804 audit(1678073247.977:817): pid=20187 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir4094027899/syzkaller.J4QdL8/3277/bus" dev="sda1" ino=14007 res=1 netlink: 'syz-executor.5': attribute type 1 has an invalid length. netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. netlink: 'syz-executor.5': attribute type 1 has an invalid length. hub 9-0:1.0: USB hub found hub 9-0:1.0: 8 ports detected audit: type=1804 audit(1678073248.987:818): pid=20342 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir4094027899/syzkaller.J4QdL8/3278/bus" dev="sda1" ino=13964 res=1 audit: type=1804 audit(1678073249.047:819): pid=20338 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir4094027899/syzkaller.J4QdL8/3278/bus" dev="sda1" ino=13964 res=1 audit: type=1804 audit(1678073249.047:820): pid=20342 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir4094027899/syzkaller.J4QdL8/3278/bus" dev="sda1" ino=13964 res=1 netlink: 'syz-executor.5': attribute type 1 has an invalid length. mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium IPVS: ftp: loaded support on port[0] = 21 hub 9-0:1.0: USB hub found nla_parse: 1 callbacks suppressed netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. hub 9-0:1.0: 8 ports detected audit: type=1804 audit(1678073250.248:821): pid=20447 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir4094027899/syzkaller.J4QdL8/3279/bus" dev="sda1" ino=14036 res=1 audit: type=1804 audit(1678073250.308:822): pid=20448 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir4094027899/syzkaller.J4QdL8/3279/bus" dev="sda1" ino=14036 res=1 netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. IPVS: ftp: loaded support on port[0] = 21 mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. IPVS: ftp: loaded support on port[0] = 21 netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. kauditd_printk_skb: 1 callbacks suppressed audit: type=1804 audit(1678073254.928:824): pid=20621 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir839780349/syzkaller.6Fi8fX/3214/bus" dev="sda1" ino=14307 res=1 audit: type=1804 audit(1678073255.078:825): pid=20634 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.5" name="/root/syzkaller-testdir839780349/syzkaller.6Fi8fX/3214/bus" dev="sda1" ino=14307 res=1 netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. IPVS: ftp: loaded support on port[0] = 21 netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. IPVS: ftp: loaded support on port[0] = 21 netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. audit: type=1804 audit(1678073256.418:826): pid=20667 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir839780349/syzkaller.6Fi8fX/3215/bus" dev="sda1" ino=14246 res=1 audit: type=1804 audit(1678073256.508:827): pid=20670 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.5" name="/root/syzkaller-testdir839780349/syzkaller.6Fi8fX/3215/bus" dev="sda1" ino=14246 res=1 netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. IPVS: ftp: loaded support on port[0] = 21 IPVS: ftp: loaded support on port[0] = 21 audit: type=1804 audit(1678073258.438:828): pid=20743 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir839780349/syzkaller.6Fi8fX/3216/bus" dev="sda1" ino=13952 res=1 audit: type=1804 audit(1678073258.468:829): pid=20743 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir839780349/syzkaller.6Fi8fX/3216/bus" dev="sda1" ino=13952 res=1 audit: type=1804 audit(1678073258.598:830): pid=20796 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.5" name="/root/syzkaller-testdir839780349/syzkaller.6Fi8fX/3216/bus" dev="sda1" ino=13952 res=1 audit: type=1804 audit(1678073258.638:831): pid=20829 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.5" name="/root/syzkaller-testdir839780349/syzkaller.6Fi8fX/3216/bus" dev="sda1" ino=13952 res=1 ---------------- Code disassembly (best guess), 1 bytes skipped: 0: e9 24 f4 ff ff jmpq 0xfffff429 5: 48 8b bc 24 a8 00 00 mov 0xa8(%rsp),%rdi c: 00 d: e8 f6 d7 46 00 callq 0x46d808 12: e9 f4 f3 ff ff jmpq 0xfffff40b 17: 48 8b 7c 24 18 mov 0x18(%rsp),%rdi 1c: e8 07 d9 46 00 callq 0x46d928 21: e9 c8 f3 ff ff jmpq 0xfffff3ee 26: 66 90 xchg %ax,%ax 28: 55 push %rbp * 29: 53 push %rbx <-- trapping instruction 2a: 48 83 ec 08 sub $0x8,%rsp 2e: 65 ff 05 13 53 b0 7e incl %gs:0x7eb05313(%rip) # 0x7eb05348 35: e8 2e 94 25 02 callq 0x2259468 3a: 48 rex.W 3b: c7 .byte 0xc7 3c: c3 retq 3d: c0 .byte 0xc0 3e: 2a .byte 0x2a